Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/goBcZkHS0Xs7D6Y4sAZcw8Ieayw.roa
File: goBcZkHS0Xs7D6Y4sAZcw8Ieayw.roa (raw, json)
Hash identifier: WYrRs/g7lDfeSP9RDA6oPA/i8Y+ucRogbNVmTGRL8Mo=
Subject key identifier: 82:80:5C:66:41:D2:D1:7B:3B:0F:A6:38:B0:06:5C:C3:C2:1E:6B:2C
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F07FF5C4EB770C17D1E6EEE88594E0
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/goBcZkHS0Xs7D6Y4sAZcw8Ieayw.roa
Signing time: Wed 07 Feb 2024 05:00:38 +0000
ROA not before: Wed 07 Feb 2024 05:00:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200103
IP address blocks: 2a0f:b241:93::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:7f:f5:c4:eb:77:0c:17:d1:e6:ee:e8:85:94:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82805c6641d2d17b3b0fa638b0065cc3c21e6b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:18:33:25:fe:05:e7:ad:f1:b9:c2:40:9f:46:
55:07:40:89:e8:fc:03:83:cd:5a:55:9f:6b:66:56:
73:83:3a:2a:58:0c:b6:5a:de:e7:2c:d6:65:97:57:
16:a4:04:d1:63:02:c4:64:cb:55:eb:cd:7b:58:cf:
77:5d:71:5d:33:31:d5:b6:63:68:01:00:f9:64:15:
5e:22:8c:91:11:15:05:82:a1:a3:45:79:25:69:29:
5c:e6:e0:3f:55:23:e0:60:08:3c:2a:19:e1:f9:d1:
99:13:d8:86:99:3b:b6:6a:12:c6:6b:1d:14:80:d4:
29:2a:12:4e:8d:7e:ce:33:85:94:b3:9d:d9:ef:a1:
9d:93:f2:b2:6f:81:0f:7e:57:7e:2f:0b:ca:01:22:
1c:ad:01:da:db:50:e1:4c:bb:15:ce:77:38:d6:d4:
aa:05:d1:8c:2f:fc:b3:7b:2d:ef:78:a1:37:c0:69:
d0:68:90:c7:1f:17:de:27:10:96:10:76:ed:77:5d:
6a:ec:57:5b:26:7b:61:ac:1a:c5:00:ee:a8:b8:c0:
39:04:c9:92:b2:d6:0a:06:57:79:31:ac:fc:f2:a4:
ae:8b:5a:e8:ca:9c:6d:19:02:d7:0e:5a:a3:6a:1b:
62:01:f6:de:bb:ec:f7:4d:9a:38:0a:54:2c:5d:57:
74:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:80:5C:66:41:D2:D1:7B:3B:0F:A6:38:B0:06:5C:C3:C2:1E:6B:2C
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/goBcZkHS0Xs7D6Y4sAZcw8Ieayw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:93::/48
Signature Algorithm: sha256WithRSAEncryption
54:06:a2:c8:c9:4f:ce:10:25:8c:db:d0:47:5b:5d:40:e2:4b:
3f:15:64:e1:4d:8c:84:e3:9f:a7:c3:38:9a:17:31:88:22:f9:
e9:9a:6d:77:7e:de:e9:9e:de:e5:59:24:d9:f8:79:68:d3:c1:
b6:02:21:7e:4a:c8:d6:d4:19:f2:c8:ad:93:05:f0:f9:34:cc:
01:af:81:74:c4:e9:9e:24:28:c3:0a:dc:d9:b3:66:73:7e:f1:
62:bf:55:f0:dd:02:a3:b6:ca:77:10:af:2f:be:cb:0d:52:72:
6a:cc:f4:c7:77:60:75:38:e7:c1:3a:20:6c:4d:65:74:75:58:
85:94:ec:09:94:3b:3a:58:7f:25:19:b5:4c:1c:02:33:80:1d:
4a:21:dc:38:65:f4:a3:4b:5a:91:a5:43:48:e3:fd:63:69:5b:
92:9e:15:f9:f7:ec:d3:7c:6b:e4:ad:cb:c9:44:9d:32:3b:4a:
40:ce:54:e8:53:87:d8:0f:cf:b6:9b:d3:ae:8d:1a:21:13:28:
85:dc:25:3a:bd:08:53:5a:61:e2:00:9b:e7:03:66:f7:25:3e:
e2:ff:3d:7c:a6:f1:dd:e8:06:68:30:26:a6:01:c9:54:8c:a5:
70:68:39:c4:f4:f7:d9:26:78:4b:70:55:04:76:75:85:e0:9c:
0e:3f:3f:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org