Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/jqvn4wbnmgzfeJjeMXCWzQdk4ig.roa
File: jqvn4wbnmgzfeJjeMXCWzQdk4ig.roa (raw, json)
Hash identifier: MQkPc7v9JvlCaIDKOBbMGgqufyRZ9Ak2jx3DFB0FZW0=
Subject key identifier: 8E:AB:E7:E3:06:E7:9A:0C:DF:78:98:DE:31:70:96:CD:07:64:E2:28
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F8280767459C868850C113A15B7DC10
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/jqvn4wbnmgzfeJjeMXCWzQdk4ig.roa
Signing time: Tue 06 Feb 2024 17:41:15 +0000
ROA not before: Tue 06 Feb 2024 17:41:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47272
IP address blocks: 2a0f:b241:15::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:82:80:76:74:59:c8:68:85:0c:11:3a:15:b7:dc:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:41:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8eabe7e306e79a0cdf7898de317096cd0764e228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:4c:d8:04:d6:91:f9:97:fd:c0:d6:cc:16:f7:
1f:0d:6c:2e:2d:60:63:fe:87:57:5c:6e:29:12:df:
12:ca:0d:dc:14:30:15:2c:5f:11:a7:44:f4:a5:c1:
95:5e:0e:56:4d:75:6a:1e:1e:e0:7f:28:30:8b:65:
9e:32:9c:07:4c:02:90:ee:57:c0:18:f7:5c:db:21:
bc:07:40:f2:2e:83:5f:3f:a4:07:d9:28:33:92:30:
6e:3b:7a:cd:19:b5:f5:3d:5a:ad:6e:48:a3:15:69:
98:7c:02:f3:5d:87:20:d0:46:51:3c:38:02:42:f3:
a2:ad:8d:85:5c:18:ef:99:76:9d:9f:e2:ba:b0:07:
55:50:52:41:f8:04:40:91:4d:80:aa:bc:d9:ab:9a:
a7:74:0a:be:34:b5:08:42:29:6b:e3:8a:31:8c:7c:
5d:fe:cd:be:a6:93:70:11:dc:a0:c1:4f:b7:17:a7:
f2:d5:f0:71:95:7a:4b:7f:de:5a:e7:19:75:dd:12:
1d:86:2e:45:66:d3:d8:eb:be:ea:75:75:14:c0:6e:
9f:dc:ab:ba:9c:d1:65:0f:1a:a9:1d:1f:cd:cc:5d:
9c:b7:bd:f8:4a:1b:59:8e:ad:3d:b7:f0:a5:46:3b:
f8:6c:88:f9:7a:35:42:30:35:41:0f:49:38:52:bc:
62:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AB:E7:E3:06:E7:9A:0C:DF:78:98:DE:31:70:96:CD:07:64:E2:28
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/jqvn4wbnmgzfeJjeMXCWzQdk4ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:15::/48
Signature Algorithm: sha256WithRSAEncryption
13:58:a6:b4:97:ca:c2:42:1e:db:76:eb:be:55:ff:ed:c4:13:
6f:db:6f:6b:92:8e:5c:ec:fc:17:ed:7e:9c:b3:36:1d:39:20:
7b:14:86:82:9a:1c:0e:50:69:0a:5f:35:50:14:f0:7f:5f:e3:
d2:9d:fc:71:b8:d1:34:f5:65:81:2c:99:58:1a:df:57:bb:18:
7b:10:b9:95:55:e0:b6:84:4b:31:47:61:1d:79:24:9e:ba:8d:
4a:58:4e:2e:c9:e5:dd:53:58:53:1e:ab:d7:66:c5:a7:3f:5c:
49:bb:e0:d9:74:16:94:6c:64:72:4e:25:4a:8e:b9:4b:82:a4:
cc:11:4b:c9:5e:1a:af:07:ea:fc:da:38:8c:50:60:b0:41:08:
4e:fa:32:e4:03:5b:31:25:12:3d:c3:16:22:03:e3:55:9e:3f:
9d:c3:4c:6a:90:25:1e:3b:ec:f3:47:78:ce:cc:49:06:fa:f4:
fa:eb:2e:f1:2a:19:12:12:55:29:ec:57:df:a0:04:91:5f:be:
c8:c0:00:b1:86:4f:40:bf:22:16:b6:d2:15:6d:54:88:0b:5b:
66:75:1d:39:cc:8c:5c:69:0f:23:b8:68:2d:3d:16:ac:9a:c0:
fa:71:4d:a0:5e:e6:64:ad:f2:7d:d2:85:10:ae:c3:6f:f6:a3:
a2:c7:e0:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org