Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lNnV5oGe60wBM194QD5pXsiw6no.roa
File: lNnV5oGe60wBM194QD5pXsiw6no.roa (raw, json)
Hash identifier: fLC9jMnGLJFIJP4R2vulGHijIPNWQR5/by/v7FHEU9o=
Subject key identifier: 94:D9:D5:E6:81:9E:EB:4C:01:33:5F:78:40:3E:69:5E:C8:B0:EA:7A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7D97C8659F1306EE53A32E426FAFD52B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lNnV5oGe60wBM194QD5pXsiw6no.roa
Signing time: Tue 06 Feb 2024 08:45:15 +0000
ROA not before: Tue 06 Feb 2024 08:45:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210532
IP address blocks: 2a0f:b241:8::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7d:97:c8:65:9f:13:06:ee:53:a3:2e:42:6f:af:d5:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 08:45:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94d9d5e6819eeb4c01335f78403e695ec8b0ea7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:42:f8:0f:4e:42:4a:b9:fa:65:99:33:a6:e7:
8e:1e:3c:2c:33:e5:7f:f9:46:9a:b7:00:b5:64:28:
d9:e9:cd:70:de:be:d4:5d:b1:97:be:00:f4:b2:06:
22:30:8b:b8:8b:dc:9b:a4:95:14:1e:cc:28:3f:32:
9c:a0:f5:13:01:da:23:0e:93:d8:3f:4c:32:30:39:
97:a8:c4:a7:74:7b:1e:e3:81:5b:d5:5e:8a:39:4f:
2a:65:18:71:72:cd:b9:62:36:74:9e:45:bf:a7:a7:
9f:36:f5:bc:95:18:b9:95:7d:a0:27:11:3d:ee:06:
d4:9f:69:a8:e4:87:c9:fc:03:ff:d8:2b:b3:0a:fa:
41:47:dd:d1:3f:78:84:08:4e:fb:7b:be:94:bd:70:
c6:2d:f9:fc:43:9f:af:86:e9:2a:54:6a:da:79:ec:
86:38:da:08:56:0e:fd:d6:28:27:ad:9e:9d:39:20:
8b:b6:9b:a3:bd:7e:58:89:f5:14:fc:b8:0b:5e:3e:
91:d4:e0:14:78:01:bc:d3:0c:9f:0b:f8:8c:54:73:
3f:e9:92:24:3f:95:1b:9d:42:77:c8:5f:52:b8:ba:
f3:75:35:e8:fa:cf:ba:80:73:4e:2d:fa:28:b4:6a:
1b:60:7a:04:9c:46:68:36:41:a9:34:c8:62:2a:8c:
05:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:D9:D5:E6:81:9E:EB:4C:01:33:5F:78:40:3E:69:5E:C8:B0:EA:7A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lNnV5oGe60wBM194QD5pXsiw6no.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:8::/48
Signature Algorithm: sha256WithRSAEncryption
4a:51:0d:e6:da:dc:e2:b2:9f:01:41:b0:f3:14:4c:47:70:06:
ac:b8:c0:55:78:ad:11:3d:61:29:3d:f5:50:ea:ea:b3:1e:92:
a5:81:36:e1:64:15:b9:d6:1a:ad:af:83:66:ef:51:af:29:73:
12:17:0a:5b:62:74:92:0e:57:9c:69:b6:f9:7e:fb:97:e7:9a:
6d:e1:58:aa:56:e9:60:79:55:aa:f8:ad:de:c7:62:46:21:29:
8a:d8:b7:f5:b8:a8:47:4e:3e:88:d9:53:28:35:cc:7c:df:04:
7f:78:e1:9a:16:1d:92:09:d2:4d:6f:92:9f:27:57:8c:2c:ff:
ce:6e:44:c3:84:23:2b:ce:c2:58:d9:c7:82:b8:43:9f:cf:c8:
d5:c1:ac:84:0b:d3:29:a2:28:ee:03:df:3d:91:48:0f:3d:6f:
d0:49:60:a6:b3:3f:94:7b:84:a3:a6:03:62:0c:81:5e:67:de:
8d:94:b2:8d:c2:c5:a9:3f:00:42:94:44:75:c0:92:c0:55:0e:
a0:f1:6c:99:8b:58:e2:60:05:f2:94:1b:47:e0:1f:ca:21:21:
95:23:d3:14:b9:71:d0:4e:a8:a9:24:0b:75:68:ce:11:09:4d:
78:38:ce:09:be:74:bc:8c:28:0c:7c:43:a2:1c:19:8f:01:92:
6b:84:42:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org