Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/gx6fYTLi2VuIMTBZyeRmoJ1uOPA.roa
File: gx6fYTLi2VuIMTBZyeRmoJ1uOPA.roa (raw, json)
Hash identifier: dJ2AOyhaTPs9FmMc5om7JME2Zx6SbtmA++ijVOg651U=
Subject key identifier: 83:1E:9F:61:32:E2:D9:5B:88:31:30:59:C9:E4:66:A0:9D:6E:38:F0
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F09550735FC6C2057A8AEA5277C0BC
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/gx6fYTLi2VuIMTBZyeRmoJ1uOPA.roa
Signing time: Wed 07 Feb 2024 05:00:44 +0000
ROA not before: Wed 07 Feb 2024 05:00:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206628
IP address blocks: 2a0f:b241:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:95:50:73:5f:c6:c2:05:7a:8a:ea:52:77:c0:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=831e9f6132e2d95b88313059c9e466a09d6e38f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:58:8f:c1:09:6d:cb:3e:f2:10:e0:7e:a5:80:
94:e4:dd:68:7a:57:a7:db:c3:c0:fe:ed:61:4a:a0:
32:59:35:0d:32:54:da:69:60:93:52:fa:13:ef:f8:
fc:0f:43:ee:2d:07:1d:e8:75:ed:69:36:cd:eb:c0:
cc:04:38:7e:82:d6:14:24:5a:d2:29:a7:ea:79:06:
42:aa:cc:7a:50:18:df:59:5a:01:7d:d7:a4:a3:c0:
af:8c:22:3e:f4:e8:67:7e:ce:fe:d1:e3:c3:bc:e4:
3c:44:7c:72:84:f3:4d:86:eb:30:c3:6f:aa:34:48:
57:52:15:de:db:e4:56:33:8c:cf:a4:3d:e5:5e:a4:
cb:e4:81:e1:fd:6a:52:04:67:52:ce:be:e2:5f:f1:
41:f0:0b:e2:5d:75:70:6e:5e:4e:ee:f9:4c:74:1d:
51:e5:27:e6:9c:24:4c:1f:63:71:6b:4c:33:09:0f:
66:d8:d8:62:ec:73:f0:b9:f4:4a:a8:99:6e:3f:c1:
67:b6:38:b8:e4:1f:15:ed:b4:12:92:2e:e4:b3:58:
95:6d:a3:d5:81:4f:41:8f:12:93:81:e5:e8:49:d1:
93:fb:b8:eb:08:30:63:06:11:ae:36:f4:31:cc:7a:
8c:3e:cb:f1:0e:13:24:7e:30:b0:a4:cb:83:c1:9e:
64:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:1E:9F:61:32:E2:D9:5B:88:31:30:59:C9:E4:66:A0:9D:6E:38:F0
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/gx6fYTLi2VuIMTBZyeRmoJ1uOPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:2::/48
Signature Algorithm: sha256WithRSAEncryption
37:d6:93:f6:08:1a:e9:b2:9f:ee:1e:23:2a:cb:08:66:e9:83:
ed:b2:0d:ef:15:4b:0a:44:a5:8b:c6:46:0b:e9:41:ac:f7:5e:
8a:9a:0b:0f:a7:e4:67:e9:ad:04:79:e5:55:42:a5:02:09:68:
e8:6f:e4:e0:b0:d9:d3:14:48:c2:9d:71:54:6a:33:45:a7:f8:
67:0c:cc:0d:1e:9e:44:6f:0b:6f:c2:5a:6c:1c:16:ee:21:91:
5e:ac:35:7d:62:f6:da:8c:ae:9d:07:8c:5a:d1:50:6c:9e:87:
51:6b:15:6c:48:c3:93:aa:cb:35:22:88:e5:1f:b1:99:e7:a7:
aa:af:b6:43:f0:db:64:f1:db:92:90:ff:10:f0:0b:dd:ec:12:
12:fa:84:16:dc:90:da:68:81:be:c7:94:fb:a2:96:11:b8:28:
b5:63:4a:c9:63:f4:23:e5:8b:dc:a7:f4:c3:c5:c6:4b:35:ad:
4c:ce:8a:78:b3:b3:27:ed:e9:c4:e1:bc:d0:e1:49:76:f9:00:
44:f5:ef:85:37:25:b7:6d:19:b7:e0:be:c4:56:7e:69:ec:80:
bb:fc:47:9b:09:6e:84:b7:d1:f2:10:61:fd:e9:ad:f0:d6:9d:
f8:5a:23:8b:36:70:54:3f:97:08:a4:92:5f:5f:85:6a:60:ca:
a2:db:16:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org