Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/d7l9u96S8AxRXRFcJzvdz3p8Gdw.roa
File: d7l9u96S8AxRXRFcJzvdz3p8Gdw.roa (raw, json)
Hash identifier: BXuxugKy1kAFSPOgHPOk4C53acOg7cklq/bu+N8XLyI=
Subject key identifier: 77:B9:7D:BB:DE:92:F0:0C:51:5D:11:5C:27:3B:DD:CF:7A:7C:19:DC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F079884CAE920A09C8CDD4A6E28B19
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/d7l9u96S8AxRXRFcJzvdz3p8Gdw.roa
Signing time: Wed 07 Feb 2024 05:00:37 +0000
ROA not before: Wed 07 Feb 2024 05:00:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199651
IP address blocks: 2a0f:b241:89::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:79:88:4c:ae:92:0a:09:c8:cd:d4:a6:e2:8b:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77b97dbbde92f00c515d115c273bddcf7a7c19dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5a:eb:ba:9a:d7:58:27:0c:34:ef:01:b5:0e:
f2:4c:ce:61:7e:0f:5a:1d:68:59:37:51:9f:25:78:
b2:65:bc:c8:a6:e8:65:62:cc:91:3f:c3:33:21:27:
97:52:97:a0:f4:bb:d1:86:7a:fe:70:bf:ba:d9:2f:
87:78:a4:7e:e6:53:da:23:3d:ff:99:cd:2f:1f:19:
30:48:ae:e2:f9:2c:1f:8d:ab:64:fd:46:9b:2d:38:
4a:bc:ec:73:b3:46:38:90:2e:87:01:36:06:e6:88:
9e:f6:9a:55:c6:ad:ab:67:af:a9:48:49:b0:8d:f6:
aa:8e:7e:77:d7:ff:bd:14:c1:c4:4e:09:9e:ce:f2:
4d:be:c2:d5:2e:12:2e:f6:50:f6:41:a0:ad:43:dc:
5d:dc:a6:20:bc:af:e4:9a:21:4f:64:f8:11:f5:81:
8a:0d:b7:6f:b9:a9:0d:70:f9:30:8e:97:8e:65:b0:
dd:c4:ef:79:ce:e1:07:75:d5:fe:a5:3c:f8:6c:3d:
1a:b2:d5:88:ee:e4:a0:de:71:92:5c:df:74:eb:5b:
b6:90:b7:97:d3:f9:a3:d5:d8:d3:43:88:91:53:3d:
3f:c9:3a:4a:e5:be:0e:47:c4:62:2c:a0:dc:69:2b:
11:27:9e:74:09:b4:be:e1:ff:80:b4:a6:4f:9b:0e:
1e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B9:7D:BB:DE:92:F0:0C:51:5D:11:5C:27:3B:DD:CF:7A:7C:19:DC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/d7l9u96S8AxRXRFcJzvdz3p8Gdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:89::/48
Signature Algorithm: sha256WithRSAEncryption
46:d1:11:0e:ef:a2:66:d2:a5:8f:77:4c:7c:8c:20:58:ae:09:
68:b3:2d:14:91:86:61:a9:ad:ce:04:e1:90:24:1e:52:29:d7:
78:c3:84:a3:46:eb:23:94:7a:1e:d9:51:1f:36:48:12:ff:af:
f4:14:ba:2d:cb:a2:af:f4:fb:1c:d3:42:b2:40:2e:8f:fe:d6:
1a:e9:b9:42:98:0f:85:59:76:54:41:da:4e:87:16:cd:2a:e4:
f7:44:ba:02:c1:cb:84:f0:65:82:42:f0:ee:bb:60:3e:9d:fa:
92:fd:82:d9:d3:b9:38:54:63:6d:10:7a:b0:46:9a:cc:7c:5f:
8c:cc:bc:a9:a9:cd:4f:fc:5a:af:f7:91:9a:83:de:f6:c1:d5:
98:8a:52:cc:6c:8a:0f:ea:f0:da:4d:e4:c3:28:05:3e:84:b7:
d1:ab:50:ae:6b:a1:98:fe:be:98:1d:7d:f8:ec:37:43:21:59:
c6:51:3e:7c:1f:a1:88:7d:f3:62:11:4a:d7:02:aa:82:86:b2:
6b:71:ed:c1:b3:d5:f5:8b:20:75:3f:e9:8b:8e:21:93:79:e9:
d8:cf:74:87:a0:bd:98:52:41:a5:7b:0e:1b:af:49:95:7b:a7:
bb:20:06:fa:e3:1b:a3:e5:7a:4a:c3:dc:02:64:66:ee:7a:d7:
d9:12:50:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org