Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/joo3WgRoll1VISMNjHwMaLkR-BI.roa
File: joo3WgRoll1VISMNjHwMaLkR-BI.roa (raw, json)
Hash identifier: Ev0m8r7CFXYW24AAZpG6skNr3kpRms/8+naPKMeJXgo=
Subject key identifier: 8E:8A:37:5A:04:68:96:5D:55:21:23:0D:8C:7C:0C:68:B9:11:F8:12
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F092258552F8EE5C91BB74E49114E9
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/joo3WgRoll1VISMNjHwMaLkR-BI.roa
Signing time: Wed 07 Feb 2024 05:00:43 +0000
ROA not before: Wed 07 Feb 2024 05:00:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205163
IP address blocks: 2a0f:b241:39::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:92:25:85:52:f8:ee:5c:91:bb:74:e4:91:14:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e8a375a0468965d5521230d8c7c0c68b911f812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f6:72:b6:ac:a4:4a:ab:5b:93:2f:12:3d:64:
c3:97:f9:dc:fa:f3:0a:e9:d5:df:c9:b7:75:ee:b8:
d3:0c:90:5a:d9:58:38:c9:b7:2a:d8:9c:9e:0b:ef:
e7:3b:73:ed:bc:69:be:fd:88:53:b3:c9:f5:74:89:
c7:83:1a:76:90:3f:b7:21:9e:1a:d3:4e:c2:21:44:
d1:8d:5f:e3:ef:42:3d:52:3f:d9:e2:13:60:fb:ca:
91:b6:af:df:bb:de:3c:5b:82:57:ec:99:c2:ca:cc:
64:ce:9d:ba:fd:e8:00:50:03:aa:32:4d:23:ee:55:
4b:5c:e3:2e:a3:50:77:16:83:90:59:bb:30:48:7e:
44:d3:57:4a:1f:82:07:a5:85:58:22:e2:af:73:80:
b0:40:8a:e6:4b:8d:5d:72:4c:4c:73:74:c6:a3:54:
9c:66:f5:ba:8d:3f:89:1d:3f:69:d6:d8:4e:51:58:
c3:e5:16:83:54:2a:18:00:39:ee:37:33:6f:73:aa:
1f:5d:55:f5:3a:d5:75:e6:23:66:77:61:08:09:0d:
44:77:17:29:e7:91:87:89:4b:b2:32:b4:8a:51:6c:
9a:59:b3:90:6b:6a:42:30:54:06:53:78:bf:53:71:
cc:e1:95:0c:14:3e:cb:63:3d:6e:8e:4a:88:87:9c:
4b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:8A:37:5A:04:68:96:5D:55:21:23:0D:8C:7C:0C:68:B9:11:F8:12
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/joo3WgRoll1VISMNjHwMaLkR-BI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:39::/48
Signature Algorithm: sha256WithRSAEncryption
2a:58:96:81:7c:da:78:10:99:b4:ab:84:4d:34:c6:c8:53:59:
0f:39:a0:c9:8f:98:da:fe:3c:88:74:89:08:a8:6f:d0:9d:13:
4a:e1:d1:10:f1:6c:30:b2:19:70:4d:d8:2c:61:2f:15:a3:85:
a5:2f:ba:f4:07:b9:e9:bb:35:d0:2f:99:fc:0d:bb:58:79:a3:
62:5e:06:da:68:f2:55:b0:00:cc:bc:33:a9:82:c9:df:3b:94:
70:aa:84:40:65:d8:ca:a9:ab:b3:57:a9:af:7f:68:0f:06:88:
b6:b4:71:e8:ba:54:9f:be:66:2e:2a:b1:47:6d:1d:e6:20:ed:
ea:f0:b3:fc:1a:1a:7d:25:2c:ac:4e:89:1e:74:0c:b3:32:16:
54:33:79:3b:2c:f2:b8:4d:cb:5f:06:cb:25:42:87:fc:70:6c:
be:81:77:58:d0:80:ad:89:5e:e0:ad:4a:71:fc:a7:ad:96:81:
62:b5:37:07:e5:73:1d:74:9a:8d:d7:5b:f8:f9:9b:aa:fc:d6:
00:c1:56:6c:3f:d1:1e:d4:dc:90:77:d4:24:b3:f3:77:53:68:
81:ac:bb:1c:da:00:56:4b:96:ec:ba:fc:8f:e5:21:d5:4a:f6:
80:70:56:62:62:5d:d8:15:fa:d3:55:5f:a3:4b:bf:32:26:74:
9b:4d:48:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org