Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ae5EoS96dGzzypWaxwMjLlA3moo.roa
File: ae5EoS96dGzzypWaxwMjLlA3moo.roa (raw, json)
Hash identifier: sB9xhdOHDZI4QoxQIWusG4hNtK1rXN7O7uNqUe3uMb0=
Subject key identifier: 69:EE:44:A1:2F:7A:74:6C:F3:CA:95:9A:C7:03:23:2E:50:37:9A:8A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0BF201C6176D7D39782682DAE52EC
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ae5EoS96dGzzypWaxwMjLlA3moo.roa
Signing time: Wed 07 Feb 2024 05:00:54 +0000
ROA not before: Wed 07 Feb 2024 05:00:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216118
IP address blocks: 2a0f:b241:10a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:bf:20:1c:61:76:d7:d3:97:82:68:2d:ae:52:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69ee44a12f7a746cf3ca959ac703232e50379a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f4:29:88:31:3c:a1:53:45:e5:c5:79:a0:b9:
06:3c:54:01:8c:57:be:40:f0:5c:ab:ca:99:28:55:
3a:bf:25:7a:2d:d8:d4:5b:69:f2:fa:37:36:68:f1:
aa:d7:26:65:e5:fb:a7:70:99:bd:3f:89:d8:d7:25:
c7:5a:2e:2b:4f:6e:de:4c:ef:c5:23:a0:bc:19:c1:
44:f7:f9:7a:e2:8d:8a:87:b3:ab:7a:f1:38:f8:41:
e0:8e:58:a7:86:88:d9:c2:c3:44:6b:f6:2a:7a:73:
78:4a:f8:02:ae:c5:12:d3:e6:6b:dc:60:44:a9:a6:
03:29:3e:21:e8:6a:c2:26:b6:23:98:d3:30:c8:fc:
32:c6:56:24:ce:2d:03:de:2b:5d:1c:18:bd:33:97:
0f:d2:58:77:ae:16:e1:5f:9a:d0:05:20:24:76:2b:
e5:86:37:6d:14:82:31:23:e3:ff:81:78:89:65:74:
1e:9a:ef:7c:ab:4e:41:21:b6:35:dd:36:54:35:a1:
45:7c:a2:88:a4:04:c5:cc:ac:f5:f1:36:b4:6f:38:
11:17:f0:01:79:bd:4e:a3:01:04:96:ed:16:94:9a:
f0:35:54:0e:d0:52:58:17:97:87:dd:d9:e1:06:4f:
61:ae:6e:ef:7a:e9:2f:7e:54:21:fd:96:be:1f:a4:
72:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:EE:44:A1:2F:7A:74:6C:F3:CA:95:9A:C7:03:23:2E:50:37:9A:8A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ae5EoS96dGzzypWaxwMjLlA3moo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10a::/48
Signature Algorithm: sha256WithRSAEncryption
1a:a8:56:11:66:1b:2b:b1:b7:31:87:46:4a:1d:c2:31:b0:7e:
41:55:ec:2e:a5:9c:52:f2:14:e5:18:85:1f:92:d2:52:fd:eb:
cc:fb:98:ca:25:2d:56:76:59:cf:ce:ef:b0:2b:37:06:b2:ae:
fa:3c:ae:7d:9c:d8:41:39:e0:7c:c1:1b:c2:a3:73:2a:d1:92:
e0:8d:89:e7:99:e5:6f:01:ac:de:c4:d0:9b:a5:a7:71:5c:97:
0a:76:c6:7c:ea:93:69:dd:3a:ff:6c:b9:e6:d5:97:0e:d2:fb:
06:16:b5:03:1e:19:5f:d8:d5:a3:77:88:ef:a8:89:e5:72:0e:
ef:59:f8:33:78:01:35:3c:53:f3:f2:98:e5:d0:cc:e4:6a:ff:
76:51:52:8b:b0:f6:70:16:23:28:2a:c1:ca:dc:c3:09:47:e3:
79:e9:89:a7:29:9e:eb:1a:11:0a:82:fb:7d:c1:72:10:90:8b:
32:d4:c6:d0:9c:3d:c9:1d:b2:28:0e:41:ff:73:19:59:8b:b7:
8c:5a:5e:a7:35:06:ad:2e:75:4a:e8:fe:99:3f:ff:41:a8:3b:
e5:63:8c:c7:6f:63:d5:d6:04:90:29:bc:f3:c4:21:74:8f:8e:
9d:30:aa:0c:53:f3:0a:fc:e2:5a:f4:cf:80:26:91:6d:79:55:
8b:02:54:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org