Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lUEDK3C8uSwJ1L4OnIZ1wBactYM.roa
File: lUEDK3C8uSwJ1L4OnIZ1wBactYM.roa (raw, json)
Hash identifier: EX72+1TUJEMZZKl7m8OopY//ahIQ6RkcZbHAG13gL0c=
Subject key identifier: 95:41:03:2B:70:BC:B9:2C:09:D4:BE:0E:9C:86:75:C0:16:9C:B5:83
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA6396A4752E4FF41C830F26A5E0E63
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lUEDK3C8uSwJ1L4OnIZ1wBactYM.roa
Signing time: Tue 06 Feb 2024 18:20:16 +0000
ROA not before: Tue 06 Feb 2024 18:20:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198209
IP address blocks: 2a0f:b241:78::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a6:39:6a:47:52:e4:ff:41:c8:30:f2:6a:5e:0e:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:20:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9541032b70bcb92c09d4be0e9c8675c0169cb583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d8:7e:b1:49:0a:4d:dc:66:81:87:b0:c2:97:
ad:4c:ea:7a:39:10:3a:50:b0:37:5b:f4:55:bb:49:
ec:b3:5f:8a:d9:db:36:35:c0:8a:6b:11:10:42:d0:
42:ae:26:29:1b:ac:15:aa:9f:95:ad:9d:57:a3:90:
42:e3:77:d9:4a:81:ae:ac:99:0c:6e:56:cc:c2:34:
36:7b:9c:db:91:ee:ce:51:f3:8b:1e:c2:ac:08:f9:
b2:96:d6:f0:1a:b1:60:7c:10:a8:0e:36:10:09:ac:
e3:86:2e:3b:2f:d6:b1:b3:13:cd:a3:06:58:05:c0:
88:37:78:90:42:e8:04:b0:2b:d1:91:3c:3a:6c:c7:
f1:72:ab:cc:55:a2:4d:1f:ad:f7:4a:8d:1f:66:04:
c0:e0:db:0c:f6:94:34:94:a8:87:6d:15:23:cc:63:
43:e5:f2:bc:f5:b7:38:4d:9f:02:9b:7e:10:41:48:
a4:8f:67:64:aa:1c:ae:ba:14:08:8c:30:a8:b9:78:
74:f1:3b:98:87:71:56:ce:60:7f:a1:d2:b7:69:70:
37:d4:72:d9:f2:f1:3a:44:cb:de:dd:73:aa:4a:34:
e9:fb:c5:5d:bb:55:4f:9c:f0:f2:df:32:14:c2:02:
b0:f6:2d:24:35:ca:0a:18:46:a2:19:ba:30:8b:f9:
ef:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:41:03:2B:70:BC:B9:2C:09:D4:BE:0E:9C:86:75:C0:16:9C:B5:83
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lUEDK3C8uSwJ1L4OnIZ1wBactYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:78::/48
Signature Algorithm: sha256WithRSAEncryption
4c:29:cb:14:c8:d6:f0:a9:64:21:c8:18:09:8a:11:04:c4:9a:
6b:5b:c4:52:0c:ef:7a:ea:ee:7c:1c:65:a7:f1:3d:0c:85:01:
bf:ef:b7:e5:f9:da:7c:50:1e:bb:06:c5:f5:b1:75:6a:5a:53:
f2:ff:b4:5c:48:e7:81:5a:48:20:a5:6a:b3:fc:07:76:b0:bb:
ea:87:82:fc:cf:12:9f:d8:17:ab:85:3b:b8:80:96:41:de:2c:
89:71:3c:6c:05:62:14:42:7c:07:7e:32:de:72:29:d2:77:f7:
e5:79:bf:75:8d:40:2b:02:d9:37:a9:60:ed:4f:06:02:46:89:
f7:b3:fa:be:4b:b3:c7:1b:b3:ff:75:de:5d:b9:59:7f:8d:e8:
24:f2:c6:c7:92:9d:9e:4c:66:0b:1d:f2:b5:63:b0:91:9f:c5:
1a:21:8e:60:90:19:e5:44:9a:ab:66:2a:0e:72:b3:58:6b:42:
79:00:1c:b1:90:3c:47:2b:d7:73:43:f6:fe:5e:49:99:0e:c9:
dc:4a:c4:d0:15:3a:4a:f4:25:2e:5a:23:1d:43:29:85:3a:6b:
2b:fe:18:97:1a:c1:49:a3:a4:4c:ee:6f:16:70:87:28:a0:ab:
c6:f6:76:91:ea:25:3e:37:85:51:a3:1c:af:65:00:6d:53:e4:
80:55:0f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org