Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/cUG0k3ZUmA3-h4tuPlKaqQNVCFg.roa
File: cUG0k3ZUmA3-h4tuPlKaqQNVCFg.roa (raw, json)
Hash identifier: fahb/Bn+2YSQXn5Hl19I74+fyO55U8yTkwwKcWNc8SU=
Subject key identifier: 71:41:B4:93:76:54:98:0D:FE:87:8B:6E:3E:52:9A:A9:03:55:08:58
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA7242496CC7FA2F23384E37F8CC3E7
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/cUG0k3ZUmA3-h4tuPlKaqQNVCFg.roa
Signing time: Tue 06 Feb 2024 18:21:16 +0000
ROA not before: Tue 06 Feb 2024 18:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198969
IP address blocks: 2a0f:b241:7d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:24:24:96:cc:7f:a2:f2:33:84:e3:7f:8c:c3:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7141b4937654980dfe878b6e3e529aa903550858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:df:6f:cf:0c:3d:43:3a:f4:4b:9c:6f:89:4b:
f6:db:de:92:74:5b:9f:7d:70:a6:1d:23:c6:6a:d6:
2f:03:bc:01:91:3f:d9:be:8c:c1:16:ef:a6:0a:94:
94:2c:4e:2d:a5:c3:78:5c:b6:7f:ee:90:05:a1:86:
19:23:f9:d3:46:0b:e0:73:71:ab:e8:a9:d3:55:ae:
2a:34:45:d0:20:0c:01:e3:83:a8:2b:94:1c:f8:d7:
41:06:c9:6c:32:95:1f:39:e7:f5:99:4a:4b:d1:46:
2d:78:7c:05:ac:0a:5a:f6:7f:8c:fa:70:aa:fb:c6:
0f:ec:58:c9:a7:e5:3a:47:fd:c6:fc:64:45:d7:c8:
4c:b7:e1:c8:c3:34:09:1f:aa:cb:f7:2f:20:2a:a1:
36:7f:f7:b1:d0:86:52:f2:c4:56:89:17:97:57:fb:
d8:67:23:ce:43:8d:7e:9b:37:9d:79:88:1b:68:00:
71:b7:38:a1:67:be:09:a5:ee:ff:37:75:36:ac:c7:
cb:da:67:d0:a2:6a:c7:a8:49:4d:6d:c0:f6:76:0c:
c2:7e:56:60:3b:c6:4b:f3:b7:3e:b4:c7:f4:16:49:
1b:3d:af:72:6a:ca:f7:43:3a:95:f1:44:82:2e:11:
16:0f:b2:29:f8:27:69:66:5b:61:ae:27:75:67:08:
82:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:41:B4:93:76:54:98:0D:FE:87:8B:6E:3E:52:9A:A9:03:55:08:58
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/cUG0k3ZUmA3-h4tuPlKaqQNVCFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7d::/48
Signature Algorithm: sha256WithRSAEncryption
23:57:38:67:c4:17:2c:2a:4e:91:10:7e:4e:f3:ca:27:50:f5:
15:ef:82:93:da:26:00:93:f6:bc:78:f7:0c:fb:40:e6:ea:2b:
cf:3d:5a:19:69:34:8b:d5:03:51:1e:04:6f:c7:bb:9f:ca:84:
74:8b:7b:51:df:04:31:5e:fb:22:f5:95:a8:7e:4e:1c:a7:30:
10:9b:1e:1a:5f:f3:36:47:8a:60:ed:51:d6:e8:75:7b:fb:9b:
7e:25:b7:5f:fd:29:16:5b:4d:46:c5:4d:8e:16:ba:57:53:5c:
86:01:2e:06:73:e7:75:71:ab:8e:87:87:06:10:43:7d:83:2d:
51:0f:d9:b3:7b:de:44:2e:e4:55:8c:d1:4f:c3:09:93:29:63:
31:9f:f0:fd:5e:d2:3a:f3:3e:00:6f:4a:da:85:c6:83:8d:fd:
76:29:8a:ed:0c:6e:43:3c:5b:78:1d:92:4c:da:9c:00:b8:63:
86:44:bd:c7:78:c0:41:87:64:5a:0f:3f:7f:42:4f:77:9c:78:
0a:88:84:73:4d:76:e1:99:1c:2e:90:0f:f2:3b:c4:55:51:6d:
0a:1d:4a:07:97:99:94:13:8a:0d:3a:33:7f:48:92:8e:c4:d4:
8b:f6:59:14:cf:29:53:d4:33:73:0d:a2:a9:45:e0:30:87:fc:
15:ba:32:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org