Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/j-DZdJu09HuySfe_dHmTXIVrgvw.roa
File: j-DZdJu09HuySfe_dHmTXIVrgvw.roa (raw, json)
Hash identifier: JLaY0P1X6zBgObIAZZFPfHSaEd8PXX4AJSRh3dhZ1v4=
Subject key identifier: 8F:E0:D9:74:9B:B4:F4:7B:B2:49:F7:BF:74:79:93:5C:85:6B:82:FC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0986A8E4A4D743ADA383682EC14A1
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/j-DZdJu09HuySfe_dHmTXIVrgvw.roa
Signing time: Wed 07 Feb 2024 05:00:44 +0000
ROA not before: Wed 07 Feb 2024 05:00:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207466
IP address blocks: 2a0f:b241:f2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:98:6a:8e:4a:4d:74:3a:da:38:36:82:ec:14:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8fe0d9749bb4f47bb249f7bf7479935c856b82fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d0:53:d3:f3:44:72:96:ee:24:50:1b:a2:43:
55:7a:63:27:2f:f9:85:e8:d2:67:6e:a0:ef:4d:10:
d2:52:e5:b6:4a:3b:b0:16:d1:96:32:99:65:c7:bd:
ab:df:30:a0:ba:03:a9:f8:c3:41:7c:c0:a2:9b:7f:
bb:c0:b1:f2:6d:55:ad:d6:a0:65:38:5a:2a:c4:87:
02:dc:03:52:ee:f4:94:32:d5:c6:71:3b:ad:95:8e:
c0:c5:5f:dc:7c:7d:0b:3a:4a:fa:54:14:90:3d:00:
cd:a7:55:4d:99:5a:ee:b9:a8:25:84:bc:e6:dd:4c:
14:5d:97:a5:fa:fd:25:2c:f9:cd:5a:62:60:43:3e:
85:8a:57:8e:d6:4d:c1:d3:af:0e:68:f3:56:fc:3a:
27:20:26:c4:b0:ae:bf:fc:62:a2:cb:60:b7:92:a0:
b0:c6:05:c0:7a:a1:1a:a9:33:d9:99:db:c4:2b:76:
07:59:40:e0:cd:ef:6b:28:0d:ff:b4:83:83:9c:af:
96:15:76:d6:a2:5d:fc:8b:5b:60:0c:77:cb:39:74:
aa:d5:43:63:7e:9a:51:d8:60:93:7c:ee:7a:a1:cc:
35:1b:a6:36:7b:a5:a2:00:16:94:eb:70:72:1b:d0:
17:c1:21:fa:b2:d9:ab:59:17:47:00:c5:75:13:73:
04:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:E0:D9:74:9B:B4:F4:7B:B2:49:F7:BF:74:79:93:5C:85:6B:82:FC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/j-DZdJu09HuySfe_dHmTXIVrgvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:f2::/48
Signature Algorithm: sha256WithRSAEncryption
00:73:58:f4:ac:12:7d:5c:7c:35:f7:b3:5e:c6:a0:68:d1:e2:
be:60:8f:a5:77:aa:4c:14:65:71:ce:12:7b:ce:35:05:cd:af:
7a:dd:b1:73:2a:bf:7d:cb:c3:7e:a8:43:a3:5c:55:63:6c:c0:
52:3e:a0:72:2d:69:ea:12:9a:3a:e1:b3:e6:4d:b8:e6:b7:12:
02:4c:a8:1f:89:82:c3:dd:f0:e1:37:0a:ac:46:03:70:c1:ec:
74:9c:c5:f9:7f:60:98:b5:bd:d1:f5:18:17:f7:de:58:90:e5:
67:f2:79:3d:8a:6e:51:88:dd:f6:68:ba:f8:a1:5d:ce:5a:7e:
77:23:d2:6b:bf:74:8c:72:2b:9f:ad:10:2b:6a:99:20:02:66:
9b:9e:ea:9f:69:1e:3d:9c:72:15:e2:a3:12:e9:5b:03:bd:d4:
ca:1b:33:a9:07:47:48:ad:54:da:a3:d6:ee:48:97:14:e7:a7:
01:d4:de:19:72:9a:da:c8:33:21:46:d9:7f:7a:6a:7e:b6:b0:
06:e0:aa:ff:5d:39:a0:d2:86:3d:7b:e1:81:53:00:42:6e:bd:
1e:54:fb:11:2f:3c:c5:cc:22:1a:4e:5d:9b:fd:cc:44:53:9b:
fb:22:3c:32:e6:44:88:dd:a7:4c:eb:90:2d:30:37:8b:5e:d5:
2b:61:b6:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org