Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ebja6WITxvfRifVsXA-XE8x0ATA.roa
File: ebja6WITxvfRifVsXA-XE8x0ATA.roa (raw, json)
Hash identifier: 2k6B3iP0sSWtUyXrp5J5QJKqEfR97vSOIEJ85PrmPUI=
Subject key identifier: 79:B8:DA:E9:62:13:C6:F7:D1:89:F5:6C:5C:0F:97:13:CC:74:01:30
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD9151034A5B823A5EDB75279DDAE4
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ebja6WITxvfRifVsXA-XE8x0ATA.roa
Signing time: Tue 06 Feb 2024 18:28:17 +0000
ROA not before: Tue 06 Feb 2024 18:28:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216121
IP address blocks: 2a0f:b241:10b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:91:51:03:4a:5b:82:3a:5e:db:75:27:9d:da:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79b8dae96213c6f7d189f56c5c0f9713cc740130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d7:87:40:cb:0b:1d:f9:a2:7d:eb:0d:db:57:
bb:e7:76:df:74:da:8a:6e:a9:69:f4:c3:0f:74:24:
a1:c9:41:fd:53:a0:eb:64:66:6b:f0:64:9c:03:b6:
c6:54:0b:73:9c:da:b3:af:5c:2f:f1:99:64:81:68:
39:d3:3e:9b:b1:a4:af:6a:c9:26:c1:fc:21:81:9d:
bf:6b:b8:bb:88:48:79:b4:fb:14:93:0e:14:31:21:
a7:96:e3:33:06:d4:46:8b:12:76:73:6c:5f:9c:1e:
51:ee:6e:16:2c:64:3d:35:6a:16:bd:00:be:62:75:
02:64:75:52:e1:14:96:b0:d0:ed:23:3c:74:90:18:
71:60:8f:2a:a2:e6:e1:0c:28:54:29:28:af:49:de:
10:24:b0:27:a2:d5:dd:a0:9a:1f:e9:93:c1:1e:35:
eb:a4:7f:6d:24:31:7c:57:d8:ff:78:23:f6:50:d4:
a5:cb:dc:e9:f8:8c:3b:26:21:f9:1a:db:59:67:f0:
a1:ae:97:bc:9b:56:53:5c:77:de:8c:c9:23:21:f5:
41:3a:bf:83:46:fc:6c:c4:73:9e:4b:db:37:45:6f:
42:84:df:ad:83:3b:c4:92:fe:ec:d6:6f:8b:0c:1c:
ff:6d:56:ca:0e:97:e3:ae:82:4a:ff:e2:b8:39:01:
e9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B8:DA:E9:62:13:C6:F7:D1:89:F5:6C:5C:0F:97:13:CC:74:01:30
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ebja6WITxvfRifVsXA-XE8x0ATA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10b::/48
Signature Algorithm: sha256WithRSAEncryption
1b:53:6b:fa:57:39:5a:62:30:48:f9:11:fc:d3:50:ea:f3:be:
0a:3f:da:18:d8:48:db:c7:ec:66:39:bc:9b:39:11:09:9a:fc:
e7:49:22:db:db:6d:1d:7b:d5:13:82:f4:85:d2:c4:97:c1:e0:
e6:f0:50:cf:4b:dc:7a:d8:52:1a:58:f5:91:65:62:40:36:8b:
56:76:18:2e:2f:09:6f:85:6b:88:a8:c9:24:b5:34:15:d3:81:
4d:74:4d:26:c1:29:59:8b:a4:9d:b1:ca:b9:80:c4:49:18:1d:
65:53:5a:9d:cf:fa:2e:6c:44:4d:08:89:8a:4b:63:1b:c0:2e:
66:a2:7a:90:54:a4:57:bd:8d:fc:d6:f5:5a:70:4a:91:3d:e2:
02:67:7a:75:a7:d0:65:f8:0d:ad:f2:d1:1e:8e:3c:03:1e:0b:
39:8f:ab:d3:c5:49:cc:35:96:39:da:20:87:d8:e8:10:7a:06:
4e:39:27:df:77:9a:23:18:71:24:50:6e:41:47:7c:2c:3c:48:
87:dc:b3:dc:8f:14:f7:4a:7e:d3:14:84:e5:50:cf:65:b9:c1:
fa:35:cb:5e:d4:2b:cf:b0:af:c6:ac:05:f2:9b:ae:56:1d:8d:
72:f0:02:62:f0:34:5f:d4:81:99:d2:5a:b1:cb:75:79:7f:87:
9f:a2:ca:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org