Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/d2z9KlfiGpnWv54P630ChlMB9f8.roa
File: d2z9KlfiGpnWv54P630ChlMB9f8.roa (raw, json)
Hash identifier: SPtoMYJu6SYtrNsbzcfZGgqI5vgjbUG4qdrhMivl1vM=
Subject key identifier: 77:6C:FD:2A:57:E2:1A:99:D6:BF:9E:0F:EB:7D:02:86:53:01:F5:FF
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA724B78677578384C94070ABD90733
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/d2z9KlfiGpnWv54P630ChlMB9f8.roa
Signing time: Tue 06 Feb 2024 18:21:16 +0000
ROA not before: Tue 06 Feb 2024 18:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198981
IP address blocks: 2a0f:b241:7e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:24:b7:86:77:57:83:84:c9:40:70:ab:d9:07:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=776cfd2a57e21a99d6bf9e0feb7d02865301f5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1b:47:b0:06:cb:9e:42:91:f1:66:84:4f:1f:
9f:16:fd:89:76:6b:1a:30:63:10:4d:2c:dd:8f:6d:
4f:fc:49:d0:cb:65:72:f2:8b:0d:32:e3:23:24:46:
a3:0d:e9:67:1f:29:89:95:a4:f3:74:2d:29:63:d9:
c5:0a:6b:93:43:60:fe:02:60:96:7e:fd:f4:47:9c:
fa:81:82:59:2b:42:7c:2e:f1:70:5a:34:81:70:ef:
c9:19:6c:8f:7d:a2:60:7b:60:01:54:01:31:69:e1:
8e:da:12:9e:80:22:fc:bf:4c:ad:a8:3b:e9:36:e2:
a4:99:23:16:7f:0a:88:fb:2d:4a:b4:43:69:ea:16:
f3:03:92:df:21:4f:fa:df:64:a1:94:f7:32:19:f9:
7b:fe:a0:08:bf:40:39:01:83:68:99:f6:1e:2d:7c:
91:46:3b:4e:b5:df:4c:1b:d9:75:35:17:2a:f1:be:
c8:01:a8:01:cb:65:58:a7:4d:5b:d7:3c:05:76:2b:
68:f7:66:67:d3:2a:21:ed:ef:b6:f1:9c:e3:78:36:
7f:3d:ab:11:98:70:11:ab:9a:4f:ef:5e:dd:28:9d:
ff:3c:83:bd:a9:0c:ce:c4:48:a2:4d:1b:24:7f:d7:
ae:b0:78:31:5b:58:44:e8:60:9e:e0:65:89:a0:f4:
12:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:6C:FD:2A:57:E2:1A:99:D6:BF:9E:0F:EB:7D:02:86:53:01:F5:FF
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/d2z9KlfiGpnWv54P630ChlMB9f8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7e::/48
Signature Algorithm: sha256WithRSAEncryption
3b:9d:8f:56:27:29:13:2e:e2:dc:87:ed:8c:1c:c4:b6:1b:bb:
54:a3:ac:5f:37:c2:eb:61:33:8b:cc:75:58:6d:ac:a8:70:66:
7b:57:54:5c:2a:97:17:24:6d:20:45:77:06:25:90:ac:53:33:
a8:e8:7c:b0:6d:a7:51:7a:f0:c9:26:cb:ec:72:44:65:ed:bb:
e0:2c:01:12:2d:37:d1:6d:d8:f3:11:94:65:29:1f:26:4c:a9:
cc:f4:23:c9:21:e4:28:9f:b4:2e:42:d5:2f:3c:5d:e7:2b:02:
26:b9:8b:33:55:86:12:db:48:84:b8:7e:5b:f7:00:c7:dc:51:
04:97:81:68:32:20:75:7b:0c:30:75:f8:a8:bb:41:b4:c9:ad:
9f:fb:01:54:79:e2:07:18:12:42:14:d9:66:5c:59:87:64:2a:
b9:a9:6f:c5:9c:d9:90:06:4d:93:32:44:33:69:7d:94:47:81:
43:dd:39:72:02:76:74:73:8e:a5:1c:21:af:51:d8:58:58:3d:
03:06:93:6c:4a:3f:cc:e6:a9:f1:88:1a:73:c5:37:94:21:5a:
8f:13:26:fd:a2:1a:22:39:17:29:42:86:d4:e0:27:5d:c0:ab:
50:40:44:d1:44:2c:e5:d0:21:fd:4b:23:db:ce:bf:17:e9:5a:
04:f6:ca:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org