Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/baEYxXL7-1r5SEmN7kQAJyJkeVA.roa
File: baEYxXL7-1r5SEmN7kQAJyJkeVA.roa (raw, json)
Hash identifier: ncZ8CYrZ6vMu1/ELGC28I8Cuy8zOeOX0aqm5lKvgNS8=
Subject key identifier: 6D:A1:18:C5:72:FB:FB:5A:F9:48:49:8D:EE:44:00:27:22:64:79:50
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB7A262CEBF97EB7404507409E9D9FA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/baEYxXL7-1r5SEmN7kQAJyJkeVA.roa
Signing time: Tue 06 Feb 2024 18:39:17 +0000
ROA not before: Tue 06 Feb 2024 18:39:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210956
IP address blocks: 2a0f:b241:144::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:a2:62:ce:bf:97:eb:74:04:50:74:09:e9:d9:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6da118c572fbfb5af948498dee44002722647950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a4:1f:f1:dd:86:7f:27:49:0f:43:82:90:e6:
83:42:b8:5d:0a:5b:17:80:29:1b:ed:4a:55:d5:01:
27:b3:d5:4f:66:d8:fb:53:9c:af:7b:14:a5:84:2f:
4c:cf:4a:73:9e:6b:a7:19:fa:95:8d:38:ab:05:c1:
81:a5:ae:08:0c:9e:11:93:62:24:2d:b2:89:8a:9b:
d5:65:1a:4b:d6:4e:f0:8f:c0:50:7e:f1:d2:2a:f9:
fe:e8:d8:ec:46:1c:e6:aa:fb:bc:95:83:2c:df:a9:
22:01:cb:2a:38:eb:8b:99:ac:a3:ca:4b:be:b4:05:
5d:60:4a:51:8f:ca:00:32:88:48:af:6a:99:f9:6a:
af:ba:90:86:09:a7:0c:3e:0e:68:54:30:51:79:a4:
8b:bb:00:e9:d5:2f:4e:11:a4:00:32:1c:e9:a9:e2:
88:86:a4:a4:d0:f1:f2:34:74:7c:2b:66:0e:02:b8:
cc:6e:25:36:d3:66:be:65:33:2b:50:d5:df:86:12:
4a:54:2f:dc:36:fd:e5:d7:ab:b8:bb:f5:31:9a:0b:
11:77:5a:2a:83:6e:3f:40:83:cf:42:75:e5:39:95:
33:d2:07:c4:c0:9d:0c:03:86:3c:29:ea:5d:4b:f4:
12:13:cd:d1:e0:17:3b:c6:0d:4f:ac:4c:b9:0f:a4:
66:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A1:18:C5:72:FB:FB:5A:F9:48:49:8D:EE:44:00:27:22:64:79:50
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/baEYxXL7-1r5SEmN7kQAJyJkeVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:144::/48
Signature Algorithm: sha256WithRSAEncryption
0c:23:c4:07:8e:5c:cb:84:6a:82:21:b4:a5:b5:83:44:45:9b:
b8:3b:6c:1d:a0:da:31:3e:80:46:3d:07:fc:bc:16:f7:a7:d7:
90:db:93:75:6e:86:4e:bc:0c:f3:07:be:df:2e:8b:31:c0:79:
8c:b7:7d:6f:8c:bb:48:ee:ff:07:f9:3c:c8:55:02:a1:15:21:
52:f2:cf:e9:2d:6f:96:8a:9d:b1:3d:ea:13:8b:7e:6a:ec:3d:
4f:e5:94:da:e2:d1:a6:a5:b2:9a:2e:61:7a:89:52:f7:d3:de:
70:db:6a:50:77:3a:db:9f:6b:e9:4f:30:34:e0:c2:6b:61:b0:
7f:fb:ce:14:9c:49:7b:c4:37:09:78:de:9f:9b:65:8e:2c:6a:
fd:a9:6f:6a:4f:c8:ce:97:5b:bc:13:dd:fd:03:cb:49:0a:ba:
c4:d5:17:4b:74:0a:f6:c2:b8:55:a2:f3:31:dd:e7:d7:c9:1b:
f6:c7:cb:cd:0b:06:05:d1:76:4a:4e:39:34:b1:18:44:bc:0f:
c3:8a:60:83:5b:3f:a2:de:60:90:8a:c7:0d:01:c0:0f:1a:00:
80:a9:3f:9d:34:f9:7d:aa:a7:d5:9f:9a:92:ed:b3:2f:b2:33:
05:78:68:d8:7f:b8:9a:dc:5d:b7:b7:31:17:35:4a:51:e4:10:
d3:4c:a6:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org