Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bKaX8orxLY7zY2HU03J2cwZhfjo.roa
File: bKaX8orxLY7zY2HU03J2cwZhfjo.roa (raw, json)
Hash identifier: VqkfnVaKfTsPAbV287+ZNs/o92PXzUynnXlvce9YDdk=
Subject key identifier: 6C:A6:97:F2:8A:F1:2D:8E:F3:63:61:D4:D3:72:76:73:06:61:7E:3A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0B8643578A33CA4DBED0C37E522E6
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bKaX8orxLY7zY2HU03J2cwZhfjo.roa
Signing time: Wed 07 Feb 2024 05:00:53 +0000
ROA not before: Wed 07 Feb 2024 05:00:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215908
IP address blocks: 2a0f:b241:59::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:b8:64:35:78:a3:3c:a4:db:ed:0c:37:e5:22:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ca697f28af12d8ef36361d4d372767306617e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1c:6a:16:3e:e4:cd:76:5f:b9:fa:7d:b0:1b:
45:51:3d:12:ce:ec:0b:54:a9:90:55:63:52:16:50:
10:c0:25:19:3e:03:40:f5:15:50:03:70:03:0e:69:
73:63:ef:b4:56:4c:f6:2a:ac:21:39:c4:c9:2a:43:
c0:69:95:a1:fd:b8:a8:27:6b:5e:f4:d2:36:3f:9f:
81:a4:f2:e2:4a:3d:f1:85:29:d9:d6:f1:a9:6f:de:
77:8e:c0:a5:b8:c7:91:e2:ee:09:86:bc:14:3e:1d:
8b:55:fe:37:95:15:01:0c:5a:e1:ef:4c:b5:54:94:
9e:0c:9f:4b:28:5b:0e:c4:dd:7b:92:f8:1e:ec:4c:
6f:14:1e:e7:f4:33:0a:4f:39:1e:4b:06:29:75:2e:
de:07:1c:fa:06:51:bf:4e:c6:f8:67:2f:ed:bc:e3:
be:f1:49:40:10:be:38:0c:65:2f:c0:a0:d0:06:f9:
64:66:aa:bc:50:1a:c5:9f:d7:4e:3f:98:ce:17:81:
46:34:06:77:44:df:93:1f:fd:1e:d1:79:6d:e2:9f:
7b:26:9f:98:08:ef:0d:47:b0:73:1f:b5:ca:57:8b:
21:6f:95:87:6b:ed:bf:de:b2:0d:49:67:52:61:ef:
37:03:25:f6:db:ad:d3:7a:12:c9:f5:c3:cd:aa:ed:
43:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A6:97:F2:8A:F1:2D:8E:F3:63:61:D4:D3:72:76:73:06:61:7E:3A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bKaX8orxLY7zY2HU03J2cwZhfjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:59::/48
Signature Algorithm: sha256WithRSAEncryption
16:c5:a1:b1:2c:71:c1:f9:69:1f:02:80:a0:a1:3c:44:d2:7b:
98:fd:b8:07:24:6a:13:5c:fd:db:02:35:97:90:66:9b:4d:b3:
8c:a2:4b:4e:19:4e:a1:11:7b:2a:95:ba:d5:c3:26:f3:f1:b7:
ec:78:29:ed:8c:5f:6d:b8:2f:90:4c:22:22:ef:4f:33:e3:ab:
31:56:8b:e1:7d:a8:2e:1b:09:97:df:13:76:73:19:47:41:07:
83:82:ed:7b:b7:3f:28:e7:f0:0d:66:a8:28:ba:54:17:ac:57:
f9:02:52:6b:6d:bc:71:8d:5e:cb:20:5d:14:61:39:48:79:18:
ee:4a:8f:19:4c:6c:24:24:83:b2:56:fe:3d:6d:5e:50:4b:8b:
06:f7:2f:46:a5:0c:7b:56:70:a5:a6:10:d6:7d:23:4f:e6:cc:
b7:9c:b3:a9:b4:e6:e3:1a:d4:73:34:65:b0:04:2a:c3:f6:78:
50:09:14:50:a0:ee:8b:a6:10:6e:92:0c:98:51:fa:73:42:cd:
14:0a:95:c7:d0:aa:06:53:af:4c:5d:ec:b0:a8:15:70:59:3f:
d9:d8:fa:7e:f0:25:b6:92:75:5e:32:62:86:03:e5:2d:0d:47:
d9:bb:57:b3:ee:18:21:b6:ff:a8:99:ea:a0:aa:ef:56:ca:e7:
d8:0f:e3:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org