Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/j50ZA0eiyRcSB8yyD4mIaL30Yog.roa
File: j50ZA0eiyRcSB8yyD4mIaL30Yog.roa (raw, json)
Hash identifier: ULX9oUEaEQJsfsQk1Y1XORIRPedMaoDVzHpVEbpSwZE=
Subject key identifier: 8F:9D:19:03:47:A2:C9:17:12:07:CC:B2:0F:89:88:68:BD:F4:62:88
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F085594A7851A93B88A7817511A008
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/j50ZA0eiyRcSB8yyD4mIaL30Yog.roa
Signing time: Wed 07 Feb 2024 05:00:40 +0000
ROA not before: Wed 07 Feb 2024 05:00:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200791
IP address blocks: 2a0f:b241:d3::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:85:59:4a:78:51:a9:3b:88:a7:81:75:11:a0:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f9d190347a2c9171207ccb20f898868bdf46288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d8:cd:ae:70:25:b9:18:d0:91:1e:e6:2a:bd:
a6:0f:d3:cb:71:cc:cc:04:df:c7:27:aa:8c:0f:96:
80:4f:de:ee:33:92:1c:7b:f3:2c:b1:71:96:3b:ed:
e5:cc:78:be:4c:c9:17:0d:63:95:fc:e3:a2:18:f9:
cb:e5:63:45:b6:7c:c8:f5:2d:67:fb:d2:9b:4b:c2:
62:7e:bc:a2:27:89:c1:24:15:d1:a2:1d:fe:6c:3f:
78:d8:45:46:30:34:12:06:44:e3:76:55:1b:fb:16:
83:42:82:74:64:eb:c8:df:84:c4:fa:b8:6c:77:cc:
b0:41:49:8a:ce:26:74:a4:b4:94:99:4d:1f:a5:4a:
96:12:47:72:2a:88:20:59:a4:d4:a1:b2:69:8c:7c:
9b:17:b7:3e:cc:05:95:1e:3d:03:d9:55:d8:cd:cf:
d3:04:4d:2d:c7:b4:ba:18:f9:32:fc:ad:57:5c:56:
cd:8c:53:89:01:f8:0d:6e:56:df:a8:14:e2:7c:2c:
56:3a:e5:67:27:a3:20:55:14:19:3f:fc:51:45:67:
85:3d:de:3f:9f:e5:3c:d4:76:f0:17:94:9c:7d:30:
59:e4:9e:89:59:1a:64:1b:e8:21:27:3b:bc:64:0b:
b2:af:69:98:c5:5f:ea:03:cd:ff:ba:1d:9a:6a:02:
0c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:9D:19:03:47:A2:C9:17:12:07:CC:B2:0F:89:88:68:BD:F4:62:88
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/j50ZA0eiyRcSB8yyD4mIaL30Yog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d3::/48
Signature Algorithm: sha256WithRSAEncryption
2d:65:82:37:6b:5e:5b:a5:97:c5:06:9d:dc:37:3a:85:8a:bd:
4e:a6:a8:a1:dc:60:13:8c:a5:d7:01:24:b3:df:e8:78:41:9a:
66:d3:de:e4:7e:36:f9:a6:de:0e:d8:9f:e7:29:7f:44:5d:f0:
40:9d:f4:b0:e0:3a:e2:e1:a6:3f:1d:6a:1d:7a:d4:e8:ac:1d:
b4:67:ad:f5:27:c7:24:ab:9d:ad:48:37:cf:4f:48:ef:7a:2d:
8a:8f:31:86:2a:1e:0b:31:ce:30:21:7c:86:f2:88:41:a9:70:
61:8d:6a:77:82:9c:90:3c:5f:2d:f4:5d:ef:1d:0c:c8:f9:9b:
3e:e6:39:03:7b:dc:bd:e5:54:2d:fe:38:9b:40:8e:0e:bc:50:
a2:ba:a8:f5:c9:17:10:2b:3c:20:93:4f:2f:4a:eb:86:13:0f:
2a:2e:86:d9:12:59:64:93:7d:4e:0e:51:98:4f:0a:ee:ce:e3:
08:47:70:8e:b4:19:5f:d3:e4:81:8f:c6:c3:bb:d5:d6:f2:2a:
26:d3:6f:71:9b:36:4f:98:56:19:4b:75:34:f0:01:e2:cf:3a:
b3:05:cd:0f:fb:3c:2b:3f:df:34:a1:f1:88:e1:da:68:94:7e:
ed:e6:b5:40:9b:8a:c5:17:8a:a9:ef:3d:d2:25:0b:65:f4:ee:
d1:ca:e2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org