Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lTkbK1dLmn8D1vC-T25JqxAsaow.roa
File: lTkbK1dLmn8D1vC-T25JqxAsaow.roa (raw, json)
Hash identifier: UjSGu/JbEONwvy9qeycMbkP2Y3Tg3bytb09R2DOjj4k=
Subject key identifier: 95:39:1B:2B:57:4B:9A:7F:03:D6:F0:BE:4F:6E:49:AB:10:2C:6A:8C
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB972F7074B62AA5E551AF297EEBD85
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lTkbK1dLmn8D1vC-T25JqxAsaow.roa
Signing time: Tue 06 Feb 2024 18:41:16 +0000
ROA not before: Tue 06 Feb 2024 18:41:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51992
IP address blocks: 2a0f:b241:15e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b9:72:f7:07:4b:62:aa:5e:55:1a:f2:97:ee:bd:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:41:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95391b2b574b9a7f03d6f0be4f6e49ab102c6a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2f:f9:2b:32:2c:01:04:8a:dc:13:02:8d:1b:
b0:5d:67:d1:98:d1:99:fb:9e:93:b1:fb:8a:03:58:
a5:72:e0:7d:ec:21:60:fe:27:23:0f:88:34:01:c6:
b3:f0:b1:07:18:ac:3c:c9:8d:8e:88:43:54:0b:23:
c6:64:c7:96:49:8d:cf:6f:e7:16:2f:e4:ea:05:f4:
10:7f:82:36:fd:08:dd:77:a0:af:3e:55:df:8c:9d:
46:ae:5c:2b:3f:c7:af:59:33:58:51:1b:6c:a4:3a:
8c:e0:dd:fe:c6:42:53:a0:05:ca:ca:32:04:fb:01:
e7:98:f8:43:95:53:c5:6c:86:1c:f0:0d:53:62:0c:
86:1b:d6:ae:3c:8e:62:08:4f:fe:1b:00:8a:75:a1:
b3:c4:cf:34:18:b3:3c:9a:e2:11:9b:cb:a6:78:97:
de:1c:6e:47:34:05:99:e3:84:ae:c8:b0:d0:91:48:
76:38:4d:7e:0d:bd:6b:3a:fc:df:87:d7:66:de:f0:
c3:19:a5:cf:97:dc:dd:6a:a6:19:42:83:9b:91:a4:
a7:50:e7:1b:a6:e0:27:87:dc:66:37:ea:72:92:c3:
47:5f:10:c7:c8:26:85:84:79:d2:f7:cb:2e:73:69:
6a:e9:88:01:d0:04:9b:bb:89:99:a5:07:6f:9f:2d:
04:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:39:1B:2B:57:4B:9A:7F:03:D6:F0:BE:4F:6E:49:AB:10:2C:6A:8C
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lTkbK1dLmn8D1vC-T25JqxAsaow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:15e::/48
Signature Algorithm: sha256WithRSAEncryption
3e:21:28:d6:90:95:94:c0:0a:0b:e7:d5:75:67:7b:30:29:f9:
ac:ec:8d:c8:52:02:d4:ab:7b:75:61:4b:a7:3f:d6:dd:0d:c8:
97:cf:3f:f5:91:c1:37:e1:47:26:03:bb:4d:a0:1d:1c:51:89:
a7:bb:49:c7:1d:7a:c8:8e:fe:e6:5c:19:a7:dd:2a:31:84:4e:
ed:40:46:85:d5:4f:fe:0e:e5:98:ed:a4:51:0a:08:6c:1a:41:
0a:fc:79:e7:82:30:1d:dc:6b:fb:2e:61:58:48:0a:e9:7c:06:
b5:83:46:5d:4b:09:17:68:ef:97:40:bd:40:8f:14:4d:af:36:
f2:7c:92:34:18:c1:5b:c7:97:7a:b6:ea:3b:67:ac:c9:01:21:
b1:20:90:fa:d8:38:00:14:ca:e8:bd:ef:d8:53:49:c3:96:b4:
d7:eb:dd:b6:be:53:4a:2f:5d:d6:8e:48:3f:7f:f8:1d:95:f0:
d9:40:b4:85:27:d0:4c:a4:3b:db:f8:53:a6:a9:ee:c5:5f:9a:
76:49:29:d9:33:d6:87:a4:5f:2f:56:ec:ba:80:31:78:61:2e:
40:3c:55:bd:af:98:63:84:c1:fc:36:57:a2:65:b5:4a:bb:c2:
ab:48:3c:94:01:b6:57:6c:fa:c1:11:08:70:a9:05:cb:bb:4f:
3d:bc:c8:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org