Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/f3YkQNO6DM0BvvTfCBvpPzmyb70.roa
File: f3YkQNO6DM0BvvTfCBvpPzmyb70.roa (raw, json)
Hash identifier: mrcJlDxy9/tCYF9SC6D1jBXquUTLt2rfy6bTvJKy4YM=
Subject key identifier: 7F:76:24:40:D3:BA:0C:CD:01:BE:F4:DF:08:1B:E9:3F:39:B2:6F:BD
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0789ECB40909015594B7A43968529
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/f3YkQNO6DM0BvvTfCBvpPzmyb70.roa
Signing time: Wed 07 Feb 2024 05:00:36 +0000
ROA not before: Wed 07 Feb 2024 05:00:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199582
IP address blocks: 2a0f:b241:86::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:78:9e:cb:40:90:90:15:59:4b:7a:43:96:85:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f762440d3ba0ccd01bef4df081be93f39b26fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:eb:0e:cf:f7:48:ad:54:b7:05:66:5f:52:44:
a1:11:19:e0:17:60:e8:c3:70:36:72:9e:d9:bd:bb:
3f:ff:a9:cc:01:7d:89:ae:ba:16:32:4f:04:61:f7:
cc:9f:92:ee:21:79:d3:18:7a:72:c6:a4:d4:43:60:
f4:84:08:56:be:fa:78:3a:66:83:b8:ba:d8:1b:a3:
e8:45:75:b2:ba:16:9f:68:a7:26:de:59:67:84:bb:
e4:ac:13:5c:c9:3f:49:e8:65:14:41:49:28:c2:c0:
8f:b3:af:68:b5:e9:49:87:25:49:e4:68:e4:91:d9:
37:71:c2:c0:f8:ad:f8:51:61:28:af:32:5b:68:41:
2c:48:38:df:b3:c8:d8:2d:ae:22:0b:a5:1d:76:65:
07:0b:7d:c8:ad:c0:fd:9f:92:a1:f0:af:2a:69:99:
8b:44:1b:df:1b:7c:d4:6b:d6:38:94:c3:b6:39:60:
2a:5f:da:0a:64:d1:60:8c:25:df:b3:fe:fb:ab:59:
5e:83:65:92:92:bf:ef:8d:db:4c:ae:cb:72:ab:ef:
05:d1:14:fe:3e:a9:62:dd:1d:4f:2e:b7:a9:11:9c:
af:c3:65:ed:04:8c:76:18:c8:9d:fc:93:5a:c9:f9:
bc:6e:57:76:0e:03:26:7b:d8:44:a7:de:4b:fd:8a:
da:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:76:24:40:D3:BA:0C:CD:01:BE:F4:DF:08:1B:E9:3F:39:B2:6F:BD
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/f3YkQNO6DM0BvvTfCBvpPzmyb70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:86::/48
Signature Algorithm: sha256WithRSAEncryption
5d:2a:64:7a:e4:c2:34:1b:23:80:fb:8e:51:ef:86:97:b0:60:
30:ec:aa:d1:18:39:47:40:94:b7:24:bc:8d:91:cb:08:07:89:
78:51:68:19:e8:ee:9c:4a:3b:d1:9e:be:c4:12:71:42:ae:89:
88:89:e4:a4:63:52:ef:8b:ad:ca:60:9a:90:29:8e:b1:6d:6b:
d7:56:9c:c7:ae:bd:5e:19:99:ac:bf:81:f6:26:ae:01:91:4e:
cd:3b:23:ca:82:9a:23:a3:05:82:a2:64:b8:8e:4b:ce:00:5d:
66:08:31:4d:10:24:ee:8c:0f:84:51:2f:c5:85:14:81:26:03:
15:0c:dc:80:5a:fe:ff:e7:7a:56:e5:e6:df:58:53:e9:7b:d9:
1c:bd:1d:77:68:72:c3:78:fa:9c:e6:63:89:ae:47:3e:1c:6f:
16:b5:05:aa:78:f0:60:c5:06:6a:e6:12:b6:d0:dd:e6:40:dc:
c8:60:60:72:26:d9:c4:d6:4f:2b:41:f1:01:56:61:1c:39:91:
15:14:3f:82:fc:7b:4a:05:45:ac:d1:3c:4f:3a:e5:e3:72:9f:
e3:e8:3a:5f:41:97:5b:1b:00:30:1f:7f:ae:ae:3b:40:4f:b4:
28:84:7a:26:17:9b:dd:38:8d:0f:86:ea:51:76:7e:ed:e3:53:
25:12:c1:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org