Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/eDm-vskKi1VtxyY_PVb73hELx4c.roa
File: eDm-vskKi1VtxyY_PVb73hELx4c.roa (raw, json)
Hash identifier: 8ynKw0hHiK+nw9W7tP0uPqIfxD1RMXFP3LNBdxgNvxo=
Subject key identifier: 78:39:BE:BE:C9:0A:8B:55:6D:C7:26:3F:3D:56:FB:DE:11:0B:C7:87
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA813F2F4380258D42915B3C445066F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/eDm-vskKi1VtxyY_PVb73hELx4c.roa
Signing time: Tue 06 Feb 2024 18:22:18 +0000
ROA not before: Tue 06 Feb 2024 18:22:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200201
IP address blocks: 2a0f:b241:96::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:13:f2:f4:38:02:58:d4:29:15:b3:c4:45:06:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:22:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7839bebec90a8b556dc7263f3d56fbde110bc787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:07:53:26:11:05:53:83:22:03:b4:2a:e4:8b:
91:33:30:eb:f8:8f:26:38:31:f7:6a:98:03:00:4d:
0a:f9:b5:aa:b3:38:11:db:22:2f:0d:2f:76:d9:56:
d8:26:7e:6a:3f:20:fd:ab:0e:8e:6a:97:ca:29:75:
34:96:e8:31:0a:15:a8:f7:87:6b:bc:c4:bf:6c:e0:
7a:e5:23:5f:1d:9f:64:59:63:c5:b8:34:cf:55:3f:
24:cf:ff:6a:23:a2:84:68:12:b8:3b:47:d1:0b:c9:
a0:34:c8:bf:55:3f:b3:61:f8:2d:5a:89:d0:ee:cf:
2b:5b:51:fb:5a:da:3b:71:78:94:ed:23:5f:b4:a3:
59:32:5e:90:c6:40:38:de:16:7c:39:f8:d4:87:00:
00:b8:42:2d:26:5a:37:6a:15:13:2c:34:df:a2:3a:
86:86:f3:0c:57:4b:31:12:d9:74:13:33:af:e4:0f:
3a:2f:fe:7a:ee:ae:2c:7c:00:24:8a:2a:05:03:13:
08:bf:b6:77:36:61:33:ed:28:5e:f3:92:b3:79:4c:
97:ac:44:b2:4f:a7:af:90:13:b9:4b:50:ac:f2:e9:
01:54:48:24:ea:ad:e5:98:e3:b0:fe:fd:de:82:78:
d1:27:d9:71:6d:bf:37:a2:0a:f9:3a:56:88:db:30:
3a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:39:BE:BE:C9:0A:8B:55:6D:C7:26:3F:3D:56:FB:DE:11:0B:C7:87
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/eDm-vskKi1VtxyY_PVb73hELx4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:96::/48
Signature Algorithm: sha256WithRSAEncryption
89:e2:5b:74:ac:58:ce:92:17:2f:64:9a:da:84:cd:60:c7:f9:
8b:27:99:9b:4e:18:49:49:f3:77:79:34:44:7b:68:c4:72:3c:
85:67:34:95:3e:80:07:c6:aa:a9:ae:fb:46:b7:3c:c4:43:07:
11:da:73:aa:e0:64:05:87:cf:11:70:99:71:ea:bb:c3:a3:a3:
6e:56:bc:98:cb:0c:8d:a7:db:69:8c:9c:7b:5f:d7:28:0d:a7:
c6:71:cd:44:39:41:09:3d:af:18:09:08:f5:48:ff:93:e3:49:
e6:c0:8b:d2:e8:7b:b8:8a:21:03:94:7c:2b:41:b3:5b:ee:4e:
ee:51:de:3f:bc:99:b6:e9:23:8a:af:78:fa:42:d3:08:96:59:
13:2b:81:3b:2b:14:08:2d:55:08:46:c6:39:43:6f:e8:a1:9b:
09:94:29:a5:fa:cf:27:f4:ac:1a:32:9f:39:72:3e:74:61:8f:
03:a4:c8:38:13:c3:8a:48:46:1b:59:28:ef:d9:63:f6:c4:97:
c6:e9:40:49:e8:86:00:61:7d:ee:a0:d6:1e:78:c7:55:d5:2e:
59:c9:3d:c7:6d:0b:bb:11:73:06:43:c1:bd:28:38:5d:3a:10:
6e:f5:86:c2:9b:0b:f7:3b:99:d6:5f:33:20:db:00:82:3a:52:
f6:66:d5:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org