Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/U-fpFUeZU3daZPF5rfX2keIWlcY.roa
File: U-fpFUeZU3daZPF5rfX2keIWlcY.roa (raw, json)
Hash identifier: 7ZlzunmO52ZzDZl72vog3bhDtCYjO4oO4v/IT4lJolg=
Subject key identifier: 53:E7:E9:15:47:99:53:77:5A:64:F1:79:AD:F5:F6:91:E2:16:95:C6
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD94DF7A3F1398B88D18E09A332716
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/U-fpFUeZU3daZPF5rfX2keIWlcY.roa
Signing time: Tue 06 Feb 2024 18:28:18 +0000
ROA not before: Tue 06 Feb 2024 18:28:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216452
IP address blocks: 2a0f:b241:10e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:94:df:7a:3f:13:98:b8:8d:18:e0:9a:33:27:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53e7e915479953775a64f179adf5f691e21695c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:1f:b8:e2:2d:0a:16:86:17:08:cf:4d:f9:aa:
51:8b:d6:50:5b:e1:cd:66:83:43:af:10:86:df:a5:
37:b4:8f:2b:38:5e:f0:bc:63:3c:ad:f7:b0:70:d9:
e2:00:68:18:38:15:3e:ba:b7:b3:5b:de:67:3a:3c:
1c:a4:b7:c8:e5:96:70:7f:67:93:c8:31:ea:4a:0a:
d3:8a:1a:db:93:a7:6b:5d:90:d6:ff:63:35:14:ce:
3f:f1:a0:ee:ad:1d:8e:d7:73:06:15:ae:5f:25:c5:
de:57:13:95:be:79:ad:79:c4:68:7f:5f:6e:7f:7f:
f1:f9:f5:6c:8e:ba:f5:47:f1:a8:2f:9a:86:35:e9:
5a:0b:ef:cf:a0:10:95:3e:32:21:cf:5e:8b:c9:83:
9f:3a:77:de:a3:2c:ad:bc:f4:cc:91:ac:af:16:2b:
6e:82:04:fe:a9:3d:5f:c4:0f:cf:56:89:9a:70:34:
47:45:67:4f:eb:b8:36:53:e3:3b:d4:a3:da:ef:80:
e6:d0:22:0a:4c:1e:28:2f:a7:b6:17:f2:51:f5:ec:
85:59:17:22:35:68:b1:26:63:d5:e6:76:75:79:b6:
67:d2:d6:38:d3:c9:93:6f:91:ca:9d:54:d2:45:5b:
cd:26:dc:38:87:f3:5d:9e:70:f8:64:34:80:f9:fe:
c4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E7:E9:15:47:99:53:77:5A:64:F1:79:AD:F5:F6:91:E2:16:95:C6
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/U-fpFUeZU3daZPF5rfX2keIWlcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10e::/48
Signature Algorithm: sha256WithRSAEncryption
53:5d:1a:92:8e:cb:9a:a6:7e:9c:48:9a:b8:47:b7:09:72:91:
b1:c4:9b:9c:b6:19:26:f3:33:a5:a4:e8:bf:a8:af:6e:c0:29:
b2:59:5a:fa:e4:5f:fd:4d:e1:b9:44:a2:a0:f3:48:36:81:a1:
8f:a1:56:fb:c6:82:1b:0f:a6:71:17:32:de:4d:ef:09:31:81:
34:82:04:f8:78:0c:74:68:66:60:fc:bf:7c:e9:24:73:2f:17:
a7:d3:91:a5:0f:1f:43:81:a5:5b:86:88:9a:3c:6a:38:67:1c:
e5:e3:c9:7a:bd:71:a0:14:93:8c:b8:57:11:a1:f5:89:bd:13:
e4:7a:29:f2:bf:d3:78:15:42:ee:35:72:63:0b:c7:3e:f3:d8:
61:82:b7:1a:2e:5f:23:c3:8e:18:66:ab:2b:5e:aa:9b:29:5d:
74:f7:18:69:31:93:7a:d8:b2:77:ab:cb:a3:84:37:66:c4:5e:
52:78:8b:ee:6a:5b:0a:b4:d5:08:b7:f3:09:b7:53:2c:72:4f:
db:e0:68:cd:d9:d1:75:6f:43:fa:e3:dd:9a:2b:ea:b4:30:3e:
d4:4d:48:bb:f7:d1:28:24:d3:e1:00:14:f0:43:20:92:1c:41:
58:47:ba:c2:36:9e:13:55:c6:92:80:68:ee:b8:25:7c:73:8c:
48:ec:fd:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org