Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/b1rtSncLs55hTYzRkAQavUUcpN4.roa
File: b1rtSncLs55hTYzRkAQavUUcpN4.roa (raw, json)
Hash identifier: /KZ6LnxabYqiiv8OQRbFfthpOmpnrK2/LO0CHYHrsBU=
Subject key identifier: 6F:5A:ED:4A:77:0B:B3:9E:61:4D:8C:D1:90:04:1A:BD:45:1C:A4:DE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB893ED1B96363650CD82F611D187EB
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/b1rtSncLs55hTYzRkAQavUUcpN4.roa
Signing time: Tue 06 Feb 2024 18:40:19 +0000
ROA not before: Tue 06 Feb 2024 18:40:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216469
IP address blocks: 2a0f:b241:15a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b8:93:ed:1b:96:36:36:50:cd:82:f6:11:d1:87:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:40:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f5aed4a770bb39e614d8cd190041abd451ca4de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0f:44:cc:71:63:88:8d:96:85:2d:49:6c:26:
e9:a0:cc:4e:f3:f2:ad:38:66:11:04:fb:04:7e:c5:
62:53:e3:f7:47:a9:e0:eb:fd:cd:a1:4d:2b:cf:cd:
36:59:17:55:9b:39:0b:f8:67:71:f5:0b:89:47:d7:
b6:26:1c:c1:b1:2b:45:06:9e:25:94:72:6c:b0:2a:
cb:c8:9a:e6:ee:ea:e7:e0:26:18:80:33:74:ba:e0:
0c:b7:6c:98:d2:66:b7:fc:ed:c3:c7:7f:22:29:18:
68:eb:84:09:a1:0e:a5:87:ec:f2:33:54:d7:18:f6:
e0:a5:50:d0:bc:15:d5:53:d6:26:fd:a5:f9:f5:65:
41:54:a7:70:fb:3e:6d:e5:9c:1d:9e:4b:04:db:1b:
9d:0d:3c:5b:4d:cc:a2:bd:2c:a9:d8:7a:df:08:9b:
e5:94:0d:d1:28:0c:a5:1a:e6:eb:86:cf:b7:37:b9:
3b:b0:e2:db:b5:14:d8:6e:8a:e5:1c:a8:1f:a1:1a:
86:41:07:c1:52:a2:e0:05:7e:cf:9e:ea:e1:99:03:
aa:85:16:0a:3a:1c:a3:62:68:aa:79:ab:46:b0:9d:
d7:64:84:3a:d6:55:58:98:f5:58:bf:75:9b:d3:39:
b3:fe:79:d6:8c:11:44:58:37:e3:60:77:a5:3e:0c:
6b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:5A:ED:4A:77:0B:B3:9E:61:4D:8C:D1:90:04:1A:BD:45:1C:A4:DE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/b1rtSncLs55hTYzRkAQavUUcpN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:15a::/48
Signature Algorithm: sha256WithRSAEncryption
04:f8:0b:32:a8:00:34:a6:33:0c:61:75:c7:a7:89:ad:94:e8:
7f:00:aa:75:21:72:09:c7:23:21:dd:6d:c6:b7:10:37:da:ab:
94:ed:ce:42:1c:cf:ca:e1:48:96:e2:5c:78:39:df:4a:03:bd:
b5:ce:10:fb:e8:a7:1f:b5:f5:fa:56:3b:ee:d0:4f:e7:bc:b6:
65:f9:fa:b0:b9:7d:01:f0:76:2b:77:2c:4c:b3:78:1a:c7:9a:
8a:ed:f0:23:82:43:c3:b2:be:54:4f:89:a6:e4:35:f5:61:2c:
9a:fb:d0:57:f2:c5:b4:31:af:40:6f:1b:37:10:f1:07:77:4f:
1b:27:5a:9f:02:10:af:64:1c:30:12:5d:cb:f3:34:95:05:6f:
00:17:b0:87:c1:17:03:01:a2:a8:fe:73:00:28:f8:15:41:0e:
8d:b6:80:95:ff:fe:95:bf:60:49:88:5f:1f:84:49:79:a8:22:
c4:19:73:f9:21:d5:e6:5f:bb:04:56:8e:28:c2:ba:30:f4:18:
ef:c1:42:06:24:2a:a7:13:0c:1c:68:75:53:01:4e:26:98:59:
4c:81:6a:a3:45:b7:89:36:d4:0f:be:5d:06:51:02:fa:bf:c6:
69:cd:6a:19:9a:38:a8:3c:5f:c4:f4:ff:55:35:70:c1:04:6d:
f3:d1:05:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org