Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/k4cvwSxzNjhJNqVhIXvSynV3yVM.roa
File: k4cvwSxzNjhJNqVhIXvSynV3yVM.roa (raw, json)
Hash identifier: 02zgFcVk5U0qYNx5lO8ea36Qa9xwzK5zv03BEuVMNCs=
Subject key identifier: 93:87:2F:C1:2C:73:36:38:49:36:A5:61:21:7B:D2:CA:75:77:C9:53
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB6B96E283E0F4EB118FD209D9E4F6E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/k4cvwSxzNjhJNqVhIXvSynV3yVM.roa
Signing time: Tue 06 Feb 2024 18:38:17 +0000
ROA not before: Tue 06 Feb 2024 18:38:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203314
IP address blocks: 2a0f:b241:136::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b6:b9:6e:28:3e:0f:4e:b1:18:fd:20:9d:9e:4f:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:38:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93872fc12c7336384936a561217bd2ca7577c953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2b:12:01:6c:48:63:59:ff:85:c2:9b:fc:40:
f9:f7:6f:65:ea:46:65:2d:9a:4e:a5:ed:2d:59:2d:
58:db:d8:25:7f:fa:c4:3f:8f:df:35:3e:c1:a2:e9:
e0:da:37:f1:ef:76:30:16:f1:9f:ac:0f:3a:d0:72:
bb:bf:f4:99:e1:df:18:d7:28:c0:8f:b4:c5:21:c8:
2e:5e:49:fe:5a:68:d7:41:1f:3b:e1:2f:e9:d3:20:
d5:5e:9d:8a:d7:cc:36:38:e0:ad:e7:79:ba:32:cc:
d2:db:c7:18:79:90:0d:08:a9:53:87:72:7f:b9:98:
24:e2:1b:9b:4c:31:f7:20:cf:33:4e:0b:10:73:63:
2f:e8:2d:c7:84:bd:0c:a1:07:0a:2d:81:0a:c3:00:
31:22:58:5e:d5:52:d2:38:c8:32:74:b9:b9:0c:c6:
a1:b1:6d:ff:cb:14:9a:ed:6e:6b:22:b5:67:fd:34:
88:c6:b9:15:86:7a:42:2e:18:71:df:6f:7a:8e:47:
45:56:4d:66:e4:d3:a6:6c:64:fc:f8:9a:b7:38:a8:
3f:10:59:91:22:5d:f5:de:b0:2a:74:4c:64:8c:59:
de:4b:e0:f1:56:db:fc:ff:5d:a7:90:3d:14:86:bf:
89:b4:c0:70:53:0b:6b:46:de:c0:55:9e:a4:66:24:
8d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:87:2F:C1:2C:73:36:38:49:36:A5:61:21:7B:D2:CA:75:77:C9:53
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/k4cvwSxzNjhJNqVhIXvSynV3yVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:136::/48
Signature Algorithm: sha256WithRSAEncryption
27:41:70:7b:9a:bd:12:bb:d2:9e:b7:8f:08:c6:1f:78:d2:51:
55:75:23:3b:11:69:3a:c4:0e:20:94:c8:69:9b:21:3c:8f:da:
c4:97:66:23:2a:74:71:db:05:a2:c7:39:73:a7:e5:29:6d:c2:
90:fa:e2:ec:52:35:71:3a:c9:5f:36:1e:e9:bc:61:37:6c:c3:
20:a5:4d:f2:ad:f6:28:7c:02:a9:24:7f:86:78:53:23:08:80:
f1:15:bc:79:7e:c0:4e:e4:8d:20:d3:47:17:f2:43:8c:c7:74:
84:49:d8:c7:95:d1:8a:4c:6a:36:34:c8:66:07:f7:36:2c:91:
66:cb:9d:df:11:d4:52:64:73:78:44:95:7e:c0:b6:0b:4e:82:
e7:17:06:25:f4:59:d6:4f:2c:d2:32:c0:01:27:f4:4c:c8:d6:
16:ba:2b:32:ee:66:28:c6:09:d4:a4:48:5c:19:8a:77:b1:f7:
78:99:78:a5:87:80:1d:33:c7:70:9d:98:05:00:b8:79:3e:0d:
f6:95:95:00:c7:4a:67:86:8e:cd:e3:80:7c:00:6c:67:1a:39:
d4:6d:5c:78:13:67:95:d0:0a:c2:49:52:6a:71:97:d3:d9:7a:
30:cd:e5:8f:15:04:7a:50:75:bd:b7:6d:7a:3e:e1:d2:05:af:
de:91:6e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org