Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/nNVj2quZaivRq_d9TU2P5GC79Ms.roa
File: nNVj2quZaivRq_d9TU2P5GC79Ms.roa (raw, json)
Hash identifier: cVHGKsNLj5KcUXgbjVnCb9bcmcyaOjSPbVnMm4NnGCE=
Subject key identifier: 9C:D5:63:DA:AB:99:6A:2B:D1:AB:F7:7D:4D:4D:8F:E4:60:BB:F4:CB
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96AAED66725D6EC074B473A6385DBB
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/nNVj2quZaivRq_d9TU2P5GC79Ms.roa
Signing time: Tue 06 Feb 2024 18:03:16 +0000
ROA not before: Tue 06 Feb 2024 18:03:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215811
IP address blocks: 2a0f:b241:55::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:aa:ed:66:72:5d:6e:c0:74:b4:73:a6:38:5d:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9cd563daab996a2bd1abf77d4d4d8fe460bbf4cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b0:9e:6d:b1:44:45:c3:f5:d9:78:56:98:c4:
ee:e3:1a:09:44:21:e4:51:fe:cd:75:fb:24:8b:40:
3c:7a:4e:f6:fa:dd:81:5e:12:d0:c0:c6:27:f7:ac:
cc:2b:ca:6d:75:1f:2b:18:3c:f3:52:0c:7e:27:09:
94:e3:f0:76:b8:46:d7:90:f0:66:24:26:bb:e0:25:
27:f6:0a:1b:93:09:83:1a:38:c6:dc:94:d0:8d:46:
79:23:bd:72:2a:39:f7:eb:eb:80:7a:09:60:32:94:
89:1e:bc:43:39:33:9f:3d:a1:eb:2d:43:6c:25:f5:
e6:63:d9:a3:e4:c9:dd:50:82:38:80:4c:c6:4e:08:
f3:44:ec:4d:28:7a:58:d7:a2:be:79:6e:1c:b9:fe:
da:ef:2e:e3:31:bb:1a:4c:a0:fc:86:00:3e:24:23:
f5:6d:05:3e:e5:e9:57:ae:2e:0e:a8:e6:df:44:e9:
c5:69:d0:ab:af:74:d0:7d:b8:51:a9:40:24:14:71:
b2:f7:e0:96:b8:3d:b3:2f:d9:a0:24:25:17:fa:6f:
29:b5:6b:f0:51:c9:b7:02:97:6d:17:cc:b6:8e:df:
cb:e4:38:43:16:b3:a1:36:1e:cd:cd:e9:e9:9c:42:
05:08:83:01:a8:19:bb:0a:7d:df:e1:66:99:c5:46:
17:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:D5:63:DA:AB:99:6A:2B:D1:AB:F7:7D:4D:4D:8F:E4:60:BB:F4:CB
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/nNVj2quZaivRq_d9TU2P5GC79Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:55::/48
Signature Algorithm: sha256WithRSAEncryption
42:78:ee:90:1f:55:6a:50:b8:80:68:ed:98:57:e8:c7:05:e6:
6f:45:7b:5a:84:35:ec:67:db:64:43:2a:5c:19:04:a2:58:ac:
b5:94:74:95:b5:e6:02:ba:73:3f:fe:4f:7d:c7:4a:74:2b:7a:
8d:0a:11:43:17:4d:1c:33:dd:c7:15:c0:8a:fa:8c:1c:99:85:
be:8b:b1:79:06:b3:54:88:7c:18:40:8d:b2:df:99:06:92:2e:
28:d0:1b:47:c6:e1:7f:9a:d9:4c:60:ec:a8:59:ae:37:2a:5b:
c8:d5:ab:cd:b2:2b:04:64:48:0d:aa:7c:cb:83:eb:cc:04:a5:
03:8d:c3:65:21:e0:0f:77:6c:6f:79:bf:0c:fc:66:37:3f:9f:
bd:93:7e:ac:28:4c:39:14:bf:f5:72:18:3c:46:81:c2:a8:43:
ac:ce:b7:51:13:95:71:f1:66:bb:b5:31:cd:0c:67:f5:5d:41:
be:b5:8f:36:37:e4:ad:b0:ee:3b:60:2f:5f:b2:9f:4d:23:08:
e5:13:9a:12:ef:ab:ec:2f:3e:2c:03:f6:5e:d8:ea:a3:39:37:
ef:57:d6:93:f9:e7:71:a7:05:71:14:4e:23:c5:cc:94:fd:56:
27:99:e9:9f:6a:01:71:e6:69:8b:43:13:22:9f:d7:52:e8:e4:
35:e8:16:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org