Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/d2wVWiwpju-VV_gNJvfsAQs1F1A.roa
File: d2wVWiwpju-VV_gNJvfsAQs1F1A.roa (raw, json)
Hash identifier: lmj2VzZoxbW3uFANrISJXitk2YQA5UqWso2HRBDlyHk=
Subject key identifier: 77:6C:15:5A:2C:29:8E:EF:95:57:F8:0D:26:F7:EC:01:0B:35:17:50
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F08A844FAF71E655B73564CE2DEB73
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/d2wVWiwpju-VV_gNJvfsAQs1F1A.roa
Signing time: Wed 07 Feb 2024 05:00:41 +0000
ROA not before: Wed 07 Feb 2024 05:00:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202627
IP address blocks: 2a0f:b241:134::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:8a:84:4f:af:71:e6:55:b7:35:64:ce:2d:eb:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=776c155a2c298eef9557f80d26f7ec010b351750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:93:ac:1e:c2:e3:96:e5:b3:01:ff:c7:03:b2:
92:94:c2:54:81:df:2a:98:5b:a1:bb:e6:f2:0c:3a:
d0:b3:87:7c:fd:f2:62:9a:d0:41:ac:06:7b:83:77:
8e:39:0a:bd:12:62:81:1e:d0:99:e6:19:f8:3b:5e:
10:11:2a:9f:6e:16:e9:b9:29:5a:26:0f:c8:81:42:
48:d0:9f:a8:68:e1:82:4a:2a:99:bf:91:e7:13:e9:
a3:f1:23:6e:b0:7c:5b:0d:c9:89:2c:53:72:9d:2b:
89:2a:06:74:bc:c9:c6:b7:38:2e:47:74:d2:a7:c2:
20:f2:f4:a9:c1:55:b6:6c:a4:43:0e:1f:7b:7f:91:
0a:5d:d6:a4:03:16:3d:74:f5:2f:41:1a:b4:64:f5:
f9:bf:6d:50:44:39:68:65:72:b7:85:e8:9d:98:ec:
81:a6:04:ad:2e:d6:f9:42:f8:c0:42:15:59:53:13:
9b:a6:95:60:d7:6d:9f:d4:39:9a:95:49:38:2f:3d:
b4:42:d2:57:9a:88:ac:86:a6:da:89:bb:1b:e9:70:
fd:f9:c0:bf:29:64:97:d4:7f:49:e5:0b:64:4c:74:
bc:2d:7b:46:40:5d:90:e3:6e:f4:7f:78:c9:24:0c:
63:bb:6e:bc:14:c9:47:b4:96:ed:b9:b7:39:d2:7c:
b0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:6C:15:5A:2C:29:8E:EF:95:57:F8:0D:26:F7:EC:01:0B:35:17:50
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/d2wVWiwpju-VV_gNJvfsAQs1F1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:134::/48
Signature Algorithm: sha256WithRSAEncryption
50:bf:bf:e9:19:37:00:e3:e1:18:d0:83:34:3b:e3:79:5b:3d:
58:61:54:61:1e:b0:1e:00:74:87:c0:48:5b:e5:75:5d:c2:30:
c7:8f:7d:a0:0f:da:fa:3d:95:9e:61:4a:35:68:6f:02:ad:8a:
a0:4e:24:e3:58:ec:62:13:20:d8:d1:71:3c:d3:90:b2:96:69:
9f:6c:25:94:db:bf:78:e2:e4:8b:c8:04:cb:3e:88:61:3e:d5:
3b:08:58:f3:7d:d7:63:e6:a0:f1:27:4d:cb:46:38:33:45:3e:
62:03:1f:50:ae:62:3f:ad:24:09:84:62:89:26:2d:ee:6e:99:
8c:97:2b:3b:26:e6:5c:45:8a:24:2d:1f:43:79:5a:ce:3e:f2:
1f:0c:55:64:9c:c8:10:48:78:68:97:e4:18:28:40:a5:51:6b:
81:c2:f6:d5:62:20:58:38:e8:9f:62:d8:79:ee:05:6c:93:16:
80:17:bc:bc:1f:b0:57:a7:ad:7b:8b:ef:ff:a9:f4:72:5a:c3:
b9:56:f3:0f:a8:93:0d:d7:f6:ba:62:94:80:0e:b7:78:38:4b:
c2:df:4a:cd:a3:2e:1c:e5:f1:0a:7a:a9:f8:5a:03:f4:12:b6:
58:53:90:3e:f2:47:14:18:3b:18:c6:30:19:b3:1c:8d:0c:5a:
f2:0b:61:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org