Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hLutFIGY98ZhqKfuRW1Cam1imeU.roa
File: hLutFIGY98ZhqKfuRW1Cam1imeU.roa (raw, json)
Hash identifier: mJ4s3qdeeR/FEhbeso/UA4bzWpSB+fZX6Bg++fvLkXg=
Subject key identifier: 84:BB:AD:14:81:98:F7:C6:61:A8:A7:EE:45:6D:42:6A:6D:62:99:E5
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB7A55B6BA2C249ED2256A49C6DBDC9
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hLutFIGY98ZhqKfuRW1Cam1imeU.roa
Signing time: Tue 06 Feb 2024 18:39:18 +0000
ROA not before: Tue 06 Feb 2024 18:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211760
IP address blocks: 2a0f:b241:14a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:a5:5b:6b:a2:c2:49:ed:22:56:a4:9c:6d:bd:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84bbad148198f7c661a8a7ee456d426a6d6299e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:da:44:bd:18:75:4a:88:71:45:c4:33:ef:61:
68:9e:50:64:2f:a0:7c:55:7a:47:a4:29:40:7f:9d:
2b:f3:a6:a6:a4:7a:d7:f0:e2:22:68:80:60:c9:77:
86:f7:92:f1:96:44:2a:80:f6:9c:62:0c:9d:a7:e7:
55:dd:16:6e:db:6e:dd:74:7f:0c:cd:9b:66:54:41:
20:f6:c5:6f:23:26:03:11:58:ee:fd:9d:43:b8:b9:
25:e9:3e:a5:55:ad:42:c1:a3:5c:dc:2d:f5:53:0a:
96:76:bc:2e:22:bf:41:63:4e:1e:2f:66:3a:1e:37:
80:dc:3d:27:f5:85:d9:ce:b2:f2:ad:20:42:84:f5:
0d:da:1e:fc:4e:b3:64:be:96:a8:3d:05:3f:0c:ed:
de:5c:c5:93:16:20:93:de:a5:fb:37:60:03:10:6c:
32:c0:fd:e4:a6:8c:11:98:60:51:41:a9:23:93:1f:
ba:92:9e:95:23:6b:97:16:2f:51:0e:cf:ce:a1:28:
06:5e:07:b6:1d:4e:dd:24:a9:f4:90:fd:be:52:83:
ff:f6:db:29:b2:61:ff:18:81:09:f4:12:b9:b2:5b:
c2:de:6c:e5:45:1c:92:a0:db:63:0d:b6:f6:ce:1b:
b1:31:57:43:4b:e0:b8:19:4e:47:22:a6:d1:5c:ca:
4b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:BB:AD:14:81:98:F7:C6:61:A8:A7:EE:45:6D:42:6A:6D:62:99:E5
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hLutFIGY98ZhqKfuRW1Cam1imeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:14a::/48
Signature Algorithm: sha256WithRSAEncryption
32:b1:c1:bc:d5:79:9b:fe:10:e5:89:b0:73:2d:77:bb:5e:28:
7f:da:b4:fe:c1:73:96:0a:e4:33:d3:95:97:83:a8:81:7f:82:
3e:f4:18:69:d7:d7:d1:13:e3:3b:0d:dc:89:6e:3d:c5:8c:29:
a4:76:d8:9a:e9:7a:79:cc:ce:38:a5:fc:0e:08:1e:93:b2:7d:
21:70:a8:1e:4b:c2:dd:47:e3:d9:43:9a:2b:e9:4d:ac:c3:44:
8e:04:fe:7c:30:6d:93:a3:23:6a:cb:87:a0:07:dd:8d:32:db:
e4:ec:f5:13:6b:0b:c3:8c:a2:ec:92:3c:23:b0:ef:04:aa:62:
5b:5a:7f:69:de:1f:98:76:55:b8:75:bb:79:4f:e3:a1:fb:38:
96:9e:d7:4c:eb:23:3d:20:2d:3f:4a:11:e4:e2:50:c9:95:75:
4c:ed:bd:0e:18:a3:b4:29:3b:87:7e:af:2d:f2:ed:d9:4a:f4:
57:9a:3f:79:06:2b:ee:fc:e1:18:a9:e4:b1:93:b7:9d:62:61:
76:ea:c0:f5:a3:1f:f1:56:3f:cd:7e:2f:a9:af:b1:03:c1:1a:
06:c2:42:8c:5b:1a:aa:dd:ef:cc:40:72:e6:36:9d:66:ea:cd:
88:40:3e:94:e3:ad:7a:8a:aa:6c:46:87:e9:3b:2b:61:12:36:
11:b7:b8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org