Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/jhgwf8JncsoVoPqNbZquEYMsFlg.roa
File: jhgwf8JncsoVoPqNbZquEYMsFlg.roa (raw, json)
Hash identifier: 7DP+83jrudYF32QlgrmjQAfePr2odFJgabMUqBpFfEY=
Subject key identifier: 8E:18:30:7F:C2:67:72:CA:15:A0:FA:8D:6D:9A:AE:11:83:2C:16:58
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96ADDCA660A5B016B763596755D84A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/jhgwf8JncsoVoPqNbZquEYMsFlg.roa
Signing time: Tue 06 Feb 2024 18:03:17 +0000
ROA not before: Tue 06 Feb 2024 18:03:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216043
IP address blocks: 2a0f:b241:5a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:ad:dc:a6:60:a5:b0:16:b7:63:59:67:55:d8:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e18307fc26772ca15a0fa8d6d9aae11832c1658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:70:7f:3a:b8:01:46:d5:f4:dc:bd:e9:61:47:
d3:b9:57:c4:9a:fd:09:16:8e:f7:5a:93:51:8e:a6:
0e:2f:29:f3:b5:5d:e9:4e:37:6a:22:4e:59:7b:81:
91:df:d0:72:7d:04:0d:77:63:28:33:86:0e:4c:96:
b6:6a:60:fd:81:63:18:76:7d:77:62:8d:b1:46:07:
02:2b:ae:a0:85:7b:69:cb:f7:4c:91:3b:e4:b4:65:
cd:08:17:98:f3:53:42:84:e7:dd:ae:79:f1:e0:cb:
aa:e6:15:3a:d7:56:f9:0a:f4:a1:28:da:80:db:a9:
2a:90:7d:7d:ab:5f:7c:a2:29:c1:c5:7f:3d:ce:0d:
0a:6a:d4:31:ef:e3:f6:15:1e:c7:f4:4b:1a:c1:df:
b7:bd:f7:d3:ee:a4:a8:a6:51:75:10:9f:92:96:1a:
57:6d:5f:3c:aa:ff:1d:f2:79:67:9d:3c:9e:e0:f6:
f6:46:af:b6:99:1f:f1:bc:24:77:a4:8a:41:b2:e8:
f8:98:00:6f:c7:22:8d:39:84:f8:82:38:cd:c5:88:
8c:8a:5c:ab:93:9a:d7:10:08:11:84:ab:16:f4:24:
5e:38:27:eb:d4:bf:3d:da:e3:fb:e0:8f:b3:35:0e:
45:49:0d:23:eb:03:92:fc:8f:47:fb:41:a9:20:b5:
a0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:18:30:7F:C2:67:72:CA:15:A0:FA:8D:6D:9A:AE:11:83:2C:16:58
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/jhgwf8JncsoVoPqNbZquEYMsFlg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:5a::/48
Signature Algorithm: sha256WithRSAEncryption
64:a5:fe:9c:0e:ff:73:ee:e3:0c:76:9e:32:98:e5:11:a5:de:
b4:9a:09:ac:c5:8c:14:45:bf:d2:fd:99:f2:b2:73:5a:2f:39:
f0:3a:88:3a:9e:63:8b:99:2d:02:10:db:fd:d3:40:38:5d:df:
a5:3c:12:cb:10:1b:b7:04:14:b2:12:d7:67:f7:88:f8:37:b6:
da:19:76:18:24:be:f0:56:71:bf:c6:79:ec:a9:75:c5:d9:33:
3c:9d:66:1c:81:51:47:e7:f5:57:78:98:2c:52:f4:bf:1d:b2:
e8:f7:49:f6:0e:71:7e:8c:c9:1f:f1:19:49:f0:c4:2a:26:af:
cb:46:c5:b8:93:a3:05:b9:a8:3a:dc:ad:08:b9:54:69:a2:6a:
d0:20:7b:16:97:a1:68:b3:dd:bb:6a:c5:c5:07:fb:96:a7:43:
9f:0a:50:8c:15:60:04:3c:97:bd:69:92:a1:84:7a:6a:87:94:
3e:5b:45:e6:b3:68:b8:55:80:de:ff:0e:02:a0:14:16:ac:da:
a3:16:0b:eb:f2:32:84:5c:40:15:20:63:2d:33:3e:f2:5b:dc:
4c:e4:31:6e:f9:1a:7a:05:9a:64:09:15:17:c1:c6:ec:c5:1b:
9c:79:d9:91:3d:01:b7:5d:1d:05:33:91:06:3f:ca:5f:de:aa:
94:69:bf:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org