Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/dIu1FFeiv9DqlAJSkj8dL-Xa1L4.roa
File: dIu1FFeiv9DqlAJSkj8dL-Xa1L4.roa (raw, json)
Hash identifier: tIS9Y15rtL30n9AB6QMR5FNYhGpLZNpwozCMmO9u2jI=
Subject key identifier: 74:8B:B5:14:57:A2:BF:D0:EA:94:02:52:92:3F:1D:2F:E5:DA:D4:BE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96AF87BE0B224ABBA6743CBFA3B31B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/dIu1FFeiv9DqlAJSkj8dL-Xa1L4.roa
Signing time: Tue 06 Feb 2024 18:03:18 +0000
ROA not before: Tue 06 Feb 2024 18:03:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216267
IP address blocks: 2a0f:b241:5e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:af:87:be:0b:22:4a:bb:a6:74:3c:bf:a3:b3:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=748bb51457a2bfd0ea940252923f1d2fe5dad4be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8f:29:14:19:b3:4b:33:b4:3f:5b:6e:8a:94:
c1:88:dd:01:c5:05:a5:56:35:05:9c:00:f1:bf:18:
79:83:10:6e:ef:78:53:f7:91:0d:6b:d9:7b:32:11:
c0:09:1e:81:53:55:20:2b:83:3e:f1:15:54:0f:9f:
ca:5b:77:ea:bc:e2:f9:08:02:c8:e0:3b:b9:b1:dd:
2b:44:4a:fa:60:ad:86:1c:25:f9:eb:0e:80:03:ec:
cc:10:bf:58:b6:84:30:f2:96:15:35:68:9b:45:47:
bd:78:51:86:f9:2a:1e:cc:f3:5e:58:91:68:ae:76:
eb:0b:c2:be:5d:bf:28:0f:22:01:4a:3a:4f:5f:57:
2e:07:f8:85:6b:ab:66:d7:a8:a0:f4:5a:f7:76:78:
fc:55:1b:12:c8:bf:f7:55:30:ea:4c:d9:40:5f:7b:
78:51:12:01:41:e1:7c:53:c9:d1:af:0f:a9:2b:f2:
fc:2d:74:f1:7f:05:eb:9c:f3:a1:43:b6:4d:e3:cd:
a1:8f:eb:4f:ed:c7:e7:64:f8:8b:a9:cb:27:73:2f:
67:c2:c1:52:15:06:8f:8a:77:f6:06:66:44:4c:bb:
e2:4c:da:0d:a2:d6:8d:b4:cc:bd:1d:3f:b9:c6:5a:
81:49:6a:d9:96:d5:78:a0:6c:65:01:f6:6f:09:61:
48:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8B:B5:14:57:A2:BF:D0:EA:94:02:52:92:3F:1D:2F:E5:DA:D4:BE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/dIu1FFeiv9DqlAJSkj8dL-Xa1L4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:5e::/48
Signature Algorithm: sha256WithRSAEncryption
74:cc:a1:f0:9b:5f:6d:c6:f5:fd:ee:88:8d:9d:56:39:4c:9d:
fe:29:13:0e:84:8b:8d:5e:d3:02:c7:6c:a5:64:34:d7:b1:fc:
c0:1f:97:6d:16:98:52:80:c5:cc:3f:2f:4d:5d:bd:cf:ce:3a:
02:4e:d1:1e:1f:d3:10:ad:c0:cc:1b:f3:18:50:59:0d:50:80:
b8:77:3f:aa:55:46:08:9b:20:21:95:6d:f1:56:62:d9:0e:8e:
be:eb:97:81:fc:50:a1:d5:a6:9b:29:74:19:fc:e2:e3:7e:22:
07:45:67:b6:75:eb:b7:08:ac:63:7e:56:11:d0:c3:bc:e8:69:
8b:5a:33:dc:8e:f5:30:93:45:05:84:02:6c:c2:28:42:54:41:
2b:59:24:95:6c:ec:36:f2:20:14:a4:4f:a2:98:12:4e:b0:9f:
f7:cf:ec:6d:82:08:0b:3c:d8:88:19:2d:27:3c:fb:c2:e0:88:
07:fa:79:4b:75:16:c0:91:b1:8e:c6:d0:4c:cb:be:af:4d:fd:
ec:29:5e:40:1e:8e:86:04:23:19:6f:63:2a:42:4d:e6:45:bc:
bd:42:49:9a:7a:2c:4b:37:49:90:a4:fa:24:35:b5:67:3a:d8:
46:cd:58:82:c0:46:64:97:8d:13:6e:f1:19:46:10:54:08:ff:
1e:e5:77:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org