Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/V7eyW9UiX1cJXU8bW-fbCJn4RsQ.roa
File: V7eyW9UiX1cJXU8bW-fbCJn4RsQ.roa (raw, json)
Hash identifier: HrYtfMbg6B9mZawUUciNKUsOZRHz5vPe8GwQXTWZePM=
Subject key identifier: 57:B7:B2:5B:D5:22:5F:57:09:5D:4F:1B:5B:E7:DB:08:99:F8:46:C4
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FABBAC0730B489B6397A08404AE53FC
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/V7eyW9UiX1cJXU8bW-fbCJn4RsQ.roa
Signing time: Tue 06 Feb 2024 18:26:17 +0000
ROA not before: Tue 06 Feb 2024 18:26:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206016
IP address blocks: 2a0f:b241:ef::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ab:ba:c0:73:0b:48:9b:63:97:a0:84:04:ae:53:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:26:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=57b7b25bd5225f57095d4f1b5be7db0899f846c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:bb:b9:8b:1b:5f:d6:d2:ee:6d:14:f0:a8:11:
57:0a:f0:11:46:69:5c:ca:13:92:81:1e:77:c6:07:
f7:56:45:2e:12:06:b4:c2:9a:f2:11:19:35:28:c5:
ba:b7:40:9e:ea:e8:a6:8f:41:f1:7a:93:fa:b1:b2:
27:da:fd:a1:41:93:5c:0f:8c:c3:73:45:7e:08:c6:
31:cc:a8:ff:fe:4e:3f:19:8c:60:8c:c5:b4:2b:b1:
9f:e9:1f:e0:ae:86:4c:ce:97:cd:06:9b:a1:15:73:
5b:27:7c:c1:28:40:d1:28:d2:c4:49:29:7e:04:4a:
e5:04:ec:46:65:4e:cc:81:81:c2:29:75:8e:b1:a8:
d1:4d:2d:77:38:10:37:37:8e:76:bf:a9:5b:65:f3:
93:a3:a5:d4:25:8a:51:db:7e:cb:4b:2a:6d:d4:53:
07:dd:9f:c6:17:1c:e2:54:db:73:0a:a2:26:9a:d4:
65:e5:04:a9:29:22:c2:f8:c9:85:9a:88:06:ab:73:
10:c5:75:56:f7:b7:15:80:c3:70:36:62:94:5a:32:
55:9a:2d:d6:75:6e:f5:96:07:99:7f:c7:74:4a:0b:
13:b6:f7:c9:5d:ef:32:8b:4a:1a:6d:d2:7d:b6:13:
a8:d1:9f:a7:48:85:93:77:8b:be:5c:87:21:ed:1f:
33:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B7:B2:5B:D5:22:5F:57:09:5D:4F:1B:5B:E7:DB:08:99:F8:46:C4
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/V7eyW9UiX1cJXU8bW-fbCJn4RsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:ef::/48
Signature Algorithm: sha256WithRSAEncryption
59:83:13:0d:71:3a:f7:66:bf:f4:20:2c:b5:91:cb:0f:50:72:
9d:ff:f7:40:ee:72:2c:d3:6c:83:24:c9:8e:9c:e6:8c:00:31:
76:b9:b1:0e:dc:9b:ac:c9:2d:06:69:cd:4d:83:f3:75:00:d6:
81:0d:c0:ba:22:60:3f:bd:15:c0:ae:8e:69:11:4a:8b:d7:4c:
10:fa:53:85:66:31:7f:96:88:af:24:37:48:4b:61:04:b7:20:
47:34:70:4c:fc:b2:63:c4:1d:2f:ea:bf:80:b0:4b:99:f7:27:
16:f4:e6:ab:19:50:1e:b1:48:96:e9:c6:ad:33:5c:ad:6e:79:
49:df:38:3c:b2:b8:cd:8a:94:fd:03:89:20:f3:19:6b:9e:7f:
a2:c1:82:41:44:2f:f9:1e:0c:26:d0:1c:c8:7c:7e:e2:8d:42:
25:ac:51:57:b8:af:db:b9:3e:29:d7:54:52:0e:7b:32:a6:3f:
49:0a:88:a2:e8:31:ee:fa:76:0b:8e:5d:8c:62:8e:3f:80:4a:
92:dd:12:1c:d3:c9:5a:dc:64:a1:17:5d:d8:d7:f9:f3:69:4a:
64:66:1a:61:a4:fd:53:23:55:b7:9f:45:c6:3e:38:5a:3b:13:
91:ab:3d:6b:36:05:78:f4:d7:ec:8f:55:36:9c:b9:1d:b5:89:
59:df:35:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org