Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/fli4MMzEzcwzdownWOQZrJaxDWM.roa
File: fli4MMzEzcwzdownWOQZrJaxDWM.roa (raw, json)
Hash identifier: s1647sGE3MHsheN5hufbDc5jN/qsP+ZSlrZPHqGy61A=
Subject key identifier: 7E:58:B8:30:CC:C4:CD:CC:33:76:8C:27:58:E4:19:AC:96:B1:0D:63
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F071F510BCA3AA0F3A0C9C1C4D6525
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/fli4MMzEzcwzdownWOQZrJaxDWM.roa
Signing time: Wed 07 Feb 2024 05:00:35 +0000
ROA not before: Wed 07 Feb 2024 05:00:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198376
IP address blocks: 2a0f:b241:79::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:71:f5:10:bc:a3:aa:0f:3a:0c:9c:1c:4d:65:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e58b830ccc4cdcc33768c2758e419ac96b10d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:49:9e:9d:f5:af:e0:f7:08:6a:c7:e7:e9:88:
c9:e0:d2:d8:57:56:c9:0f:f5:be:a9:70:9f:7e:3a:
8a:c8:5b:0a:27:a8:4e:bc:4e:d9:93:96:90:53:c4:
cf:37:2c:6f:03:fc:53:78:55:80:7d:04:91:18:62:
75:0f:ff:be:b3:01:4d:f9:31:ff:7d:ed:f2:e7:0c:
b0:ac:4f:3a:b7:b0:65:b3:c0:bc:ca:45:99:8e:2e:
ef:34:c3:66:a1:3c:da:eb:22:a8:2d:0d:07:6d:14:
0d:89:5a:84:99:c6:c6:de:51:c6:7f:5e:ac:aa:95:
0a:ee:a8:66:cb:f7:62:86:b3:95:37:01:27:01:81:
c2:db:3f:9f:f0:f0:42:30:51:ca:43:1f:28:ce:c9:
9b:ea:46:37:61:55:72:e6:9f:38:6e:7f:09:39:e8:
78:2e:9c:27:ad:5c:ba:48:76:d2:13:28:6a:c2:a8:
41:24:28:87:8a:59:f7:19:02:a3:27:09:01:02:21:
3d:92:85:4f:17:a0:bb:82:6e:e5:85:8a:df:a4:8e:
83:3c:10:2b:97:ad:30:39:7c:56:81:84:7e:f9:d9:
9f:f4:a0:cc:1c:79:26:d8:bf:f9:9a:54:06:fe:6e:
b7:68:c9:74:a7:33:4c:9d:0f:c7:9a:c3:11:71:00:
4a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:58:B8:30:CC:C4:CD:CC:33:76:8C:27:58:E4:19:AC:96:B1:0D:63
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/fli4MMzEzcwzdownWOQZrJaxDWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:79::/48
Signature Algorithm: sha256WithRSAEncryption
27:c9:3e:16:7c:9a:40:da:6b:a8:6d:f8:63:db:68:b6:ac:3c:
e6:c5:38:d6:8e:d0:cc:e0:a5:4a:d9:ba:ab:07:a3:25:66:91:
00:7d:51:0d:03:31:1a:92:92:69:53:11:60:4e:8f:a9:21:8b:
cf:c9:e0:a0:ec:de:18:44:7f:bd:ee:15:16:38:23:1d:35:e4:
09:0e:0f:96:83:f2:7b:13:20:79:8b:a6:28:bd:31:5c:f7:e8:
64:df:83:6b:b8:34:05:de:df:3a:81:00:69:b0:de:43:9d:a4:
82:8c:a2:30:34:4a:e3:18:c8:dc:a7:25:b1:29:f0:df:eb:87:
5c:3a:2c:2e:76:48:5f:12:5e:b4:71:9b:39:21:14:be:ce:2d:
89:2a:95:b3:d4:d5:54:26:52:ff:15:10:2d:e3:1d:c8:a8:fd:
24:3a:71:6a:38:f7:cb:fb:55:cd:97:48:1b:29:0a:40:74:46:
00:9e:c2:9e:50:dc:7e:33:82:a8:00:26:97:51:1b:31:57:9c:
ec:7f:6c:d3:e9:1a:a5:80:03:ff:a1:1b:76:de:ec:54:c7:50:
4e:47:1d:c2:74:11:79:3c:26:e8:55:f0:7a:9e:b5:fa:11:82:
06:61:af:17:fa:89:1e:8d:68:c3:e1:38:d0:ee:92:03:40:22:
ae:73:92:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org