Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Rqh8Wx6VPJY_-GHjC4LJr_xrSxY.roa
File: Rqh8Wx6VPJY_-GHjC4LJr_xrSxY.roa (raw, json)
Hash identifier: 4c9RBoBYrBqCmhQYx/uZ07Zyw2ph4zhrncN5zz3YwuQ=
Subject key identifier: 46:A8:7C:5B:1E:95:3C:96:3F:F8:61:E3:0B:82:C9:AF:FC:6B:4B:16
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95CA6DD938C4DFA0F88117A41873D2
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Rqh8Wx6VPJY_-GHjC4LJr_xrSxY.roa
Signing time: Tue 06 Feb 2024 18:02:19 +0000
ROA not before: Tue 06 Feb 2024 18:02:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215741
IP address blocks: 2a0f:b241:52::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:ca:6d:d9:38:c4:df:a0:f8:81:17:a4:18:73:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46a87c5b1e953c963ff861e30b82c9affc6b4b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0f:5c:68:b1:49:68:5f:e2:da:ae:00:0c:de:
cd:e0:55:4a:d3:62:da:56:06:c6:6d:8b:27:2a:d4:
20:a2:7a:21:19:6d:a1:86:e6:d0:34:38:0d:c8:6d:
79:83:c2:40:d0:8a:ff:58:d4:53:1e:d4:a0:64:61:
e8:be:f5:a5:db:09:96:84:ff:45:77:b3:89:5c:28:
60:a7:3d:b1:12:e2:a3:0c:ae:8c:9d:04:28:fb:24:
3d:74:3e:d6:e1:ae:24:3e:d2:73:a4:69:7c:06:41:
fe:2e:fd:9f:ca:63:3f:4b:44:1a:95:2d:01:5b:90:
60:fe:f4:d8:14:9f:d4:9b:1c:86:a5:de:35:a7:73:
c7:fc:2d:e3:d9:92:f0:b5:58:d1:7b:08:6c:db:e7:
3c:f6:1a:82:a6:27:44:ad:f5:df:9f:f2:5b:10:59:
2b:3e:dc:68:0c:2e:eb:87:4a:e0:71:7d:97:0f:78:
fa:8a:85:86:f9:e8:8b:12:9c:9f:3c:a4:2b:6b:3c:
f7:8a:80:f7:17:5e:62:47:3c:b0:9f:c8:0c:c6:12:
b2:2b:2b:c1:35:e4:2a:df:1c:fd:e1:bd:99:9d:0d:
2a:19:c4:15:51:86:90:72:6e:26:77:00:b0:12:2e:
9f:ab:b6:ab:84:5b:83:87:e5:59:8b:22:79:0c:77:
5e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A8:7C:5B:1E:95:3C:96:3F:F8:61:E3:0B:82:C9:AF:FC:6B:4B:16
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Rqh8Wx6VPJY_-GHjC4LJr_xrSxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:52::/48
Signature Algorithm: sha256WithRSAEncryption
19:6a:d8:2b:0b:81:df:8d:c8:8a:e8:37:a1:25:8d:c3:82:6a:
b6:46:4a:a3:49:35:3b:a7:e0:cf:2d:2a:2b:86:87:34:48:1a:
03:7c:40:13:03:ed:ad:7a:2c:15:85:5b:74:56:cf:5a:f3:e2:
2f:b6:46:1b:14:1f:3b:62:06:cf:75:47:19:f1:bd:e1:0a:da:
98:d3:d9:4c:f4:e1:a8:be:4e:17:97:06:30:3e:7e:3a:fc:d9:
1f:2f:2a:e8:39:71:45:c8:cb:b1:50:87:ed:93:d5:58:67:52:
cc:36:03:2a:b4:8b:63:12:41:6c:0f:fa:cf:b1:be:9e:5d:59:
29:08:c6:f5:01:aa:3f:1e:16:5d:05:9e:fd:d9:1d:27:18:17:
0a:e6:5b:1d:90:d6:07:2d:7f:ce:bf:1e:38:8b:51:53:fa:e4:
c4:05:ac:3f:d8:68:0d:cc:1c:0b:dc:02:1c:73:7e:9c:25:ec:
7a:b2:7a:f3:aa:e7:f1:ce:21:63:22:76:71:34:a6:d0:49:c6:
9f:b0:d5:8f:b6:32:e2:c9:28:68:09:de:6a:8a:f9:76:eb:83:
7c:a9:e7:a0:61:97:25:50:84:52:54:c2:80:e9:d3:6e:96:0a:
cb:7f:64:92:6b:c9:f4:a9:b2:d5:f2:fc:2c:91:1b:59:a6:ad:
26:9e:d7:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org