Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/n9j3d4xJqMf1ULAj6Wuf6xiIxSo.roa
File: n9j3d4xJqMf1ULAj6Wuf6xiIxSo.roa (raw, json)
Hash identifier: ESjHYeFpequC0vuKHhQzLUtn6Wtc9TAGyIPWlYiGvfQ=
Subject key identifier: 9F:D8:F7:77:8C:49:A8:C7:F5:50:B0:23:E9:6B:9F:EB:18:88:C5:2A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F09340887A2AB8E5BE7A2362F05E95
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/n9j3d4xJqMf1ULAj6Wuf6xiIxSo.roa
Signing time: Wed 07 Feb 2024 05:00:43 +0000
ROA not before: Wed 07 Feb 2024 05:00:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205848
IP address blocks: 2a0f:b241:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:93:40:88:7a:2a:b8:e5:be:7a:23:62:f0:5e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9fd8f7778c49a8c7f550b023e96b9feb1888c52a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b3:fb:73:8b:51:64:cc:2c:b2:0b:95:06:ed:
23:0e:a5:d6:f0:87:c7:fa:20:43:00:39:04:8f:95:
d5:41:4d:49:c8:1d:97:8d:eb:51:74:08:7e:d2:6c:
b9:55:da:0a:46:80:44:3b:b8:44:db:d7:59:58:d2:
ce:35:89:d1:c7:1c:70:21:4c:82:30:6d:8d:5a:70:
f9:3f:03:66:e5:cc:a5:70:ce:6c:6f:5c:02:83:ad:
da:62:a8:58:64:cd:0e:c4:3e:33:d2:d9:3d:5b:96:
41:c8:fb:46:eb:01:b7:41:89:53:fd:3b:a8:53:3f:
e2:29:4d:47:7b:34:5a:37:36:78:f9:38:26:eb:8f:
89:b1:09:77:ab:84:8c:0d:21:87:5c:8c:c4:b7:e4:
b2:ad:40:93:c8:b0:04:63:a9:82:d6:63:36:5b:51:
03:56:06:09:6b:b1:2f:2f:38:f3:79:ea:c1:47:86:
9d:b5:4a:f0:c3:70:0f:99:68:84:e6:02:5c:89:40:
a5:9a:4b:c8:90:0c:b2:77:fd:89:f9:c6:32:b0:b7:
06:e4:4b:87:14:e6:d9:ac:9c:9c:ea:74:01:fc:0a:
7a:99:50:70:dd:3d:c8:34:dc:63:a4:35:35:06:ba:
a0:4f:36:79:3b:7d:67:9c:d4:15:bd:0a:85:3e:28:
92:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:D8:F7:77:8C:49:A8:C7:F5:50:B0:23:E9:6B:9F:EB:18:88:C5:2A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/n9j3d4xJqMf1ULAj6Wuf6xiIxSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:9::/48
Signature Algorithm: sha256WithRSAEncryption
5f:b3:21:2a:58:8d:85:90:b0:49:ab:c3:05:bb:57:9a:0d:35:
46:62:2a:49:31:82:78:52:70:80:24:c5:0e:e3:32:8b:a3:e3:
6a:66:21:8f:43:15:76:bd:64:54:d3:c3:6d:1b:5f:37:e1:e4:
bc:4c:37:66:85:4c:b0:d6:da:20:0d:34:f0:2b:29:ef:4c:45:
c2:f5:e6:57:a4:ea:8a:ec:79:c1:05:f8:3f:fd:67:a4:a9:c5:
ae:2d:10:2c:bf:d1:86:c8:9a:f5:a3:3c:17:fc:f2:d1:fd:ed:
cc:0b:94:60:8e:ad:27:e7:f0:7d:4e:07:a9:71:60:74:3e:9e:
20:40:9f:2f:ab:8d:cb:8b:36:77:8a:05:e5:5a:48:c2:64:12:
dd:cf:67:28:19:a1:f2:a8:b1:53:55:95:38:cb:5a:88:09:ed:
2b:b6:56:38:f0:2d:59:3b:24:52:75:7f:f9:67:29:6b:9e:92:
a3:d2:ad:01:15:eb:b3:7e:fe:12:21:c8:6e:d3:bb:65:ce:d7:
d1:e8:b5:d6:ba:2e:1d:5a:cc:95:f2:8c:fe:07:f9:d1:ca:35:
0c:26:8a:6f:74:64:c1:b3:52:32:49:b5:46:78:5c:92:1a:5f:
2f:bf:ad:0f:7e:d6:66:53:dc:b4:f9:51:8f:fc:ea:b6:ff:5a:
28:e3:cf:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org