Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SE8s9YDBER9PytiDZFk5nTGYjHI.roa
File: SE8s9YDBER9PytiDZFk5nTGYjHI.roa (raw, json)
Hash identifier: 8RZs9x5ckxFg+EvaMAVV0AQpdtcUk8KrXGKRucclA9k=
Subject key identifier: 48:4F:2C:F5:80:C1:11:1F:4F:CA:D8:83:64:59:39:9D:31:98:8C:72
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0A9811416198605BF94DF541A8DC6
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SE8s9YDBER9PytiDZFk5nTGYjHI.roa
Signing time: Wed 07 Feb 2024 05:00:49 +0000
ROA not before: Wed 07 Feb 2024 05:00:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211738
IP address blocks: 2a0f:b241:148::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:a9:81:14:16:19:86:05:bf:94:df:54:1a:8d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=484f2cf580c1111f4fcad8836459399d31988c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:78:35:c7:4c:11:9c:93:11:88:b4:01:3d:d6:
d7:0b:b3:b8:cc:57:de:a3:d4:a7:78:cc:49:50:08:
3f:f6:c7:dc:e5:11:6e:7d:fb:a7:da:c4:cb:30:0c:
56:20:e5:34:f5:89:9b:69:e0:b5:3d:e8:1c:73:32:
1f:7a:d3:c6:7d:08:07:8a:b2:e6:80:0d:be:e0:01:
02:bb:a4:3c:78:63:83:ab:d5:9f:b0:de:59:48:37:
08:6a:15:e4:8c:5c:e8:68:42:48:5d:83:c0:68:10:
18:bb:ed:82:6b:64:00:de:e8:9a:49:d0:86:51:df:
47:6b:26:dc:20:a0:51:95:ac:97:ba:43:ab:7e:0d:
64:4b:ab:ec:97:19:3b:a8:0d:3e:13:14:cd:d7:4e:
54:c1:f7:52:c7:13:0f:4e:36:23:f9:5c:2b:ce:17:
5c:3a:d1:74:0c:83:df:b9:78:3a:a9:01:12:f7:ce:
1c:a9:47:de:67:a9:d7:80:c6:7e:18:34:34:d8:80:
4c:70:b9:90:94:fa:70:76:cb:32:a2:e5:44:63:75:
50:91:f8:0d:b4:a4:59:ac:9b:48:8c:f8:78:d2:c8:
3d:e1:f5:05:65:1a:f1:28:7e:3b:ac:4c:e4:20:af:
e8:ae:af:8c:32:31:d5:60:ba:35:9c:6e:b4:11:ed:
47:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:4F:2C:F5:80:C1:11:1F:4F:CA:D8:83:64:59:39:9D:31:98:8C:72
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SE8s9YDBER9PytiDZFk5nTGYjHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:148::/48
Signature Algorithm: sha256WithRSAEncryption
3a:ce:9b:83:89:2b:64:e0:86:f3:fa:fd:44:58:33:33:b1:2d:
e9:6c:80:ad:66:6b:1c:a2:73:8a:2e:64:71:14:30:ce:f6:ae:
f1:d1:99:d5:03:1b:db:b2:f4:d3:f0:ac:a2:76:37:04:0a:51:
c0:f1:4a:1f:6f:10:49:d0:75:b9:0b:3e:d7:d1:84:d8:72:0b:
31:b2:05:4b:f2:1e:b9:db:c0:8e:9b:77:cc:d3:9d:0d:be:59:
ab:b7:12:eb:f5:a2:7a:d7:e0:87:6f:bf:86:9d:e7:ae:ea:36:
e0:b3:5a:86:35:70:f0:9a:ed:aa:40:ec:56:6c:f6:6c:52:90:
6f:25:6f:09:bc:65:9c:22:6e:7c:95:4a:79:a3:20:ab:b4:c2:
2e:a2:e2:8e:fb:e6:79:4f:09:01:b4:44:02:a7:f7:05:c5:bf:
1f:8d:c6:04:cb:68:9d:4a:05:f8:6d:68:2f:8d:0c:b5:94:89:
88:f7:45:7e:fe:62:a1:79:21:9b:46:19:5d:f8:fe:39:4e:60:
32:18:cc:2c:b2:8a:f0:dd:d9:e8:a7:1e:9c:89:f0:20:90:6f:
31:50:33:a8:c1:ca:75:d7:e7:a4:1b:98:61:db:81:e4:47:14:
30:46:e7:ef:58:df:2b:85:07:30:fa:f6:7d:47:d5:c0:eb:9a:
9e:bb:23:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org