Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pUieVn24qLIPdHwiuSWujmx0QpQ.roa
File: pUieVn24qLIPdHwiuSWujmx0QpQ.roa (raw, json)
Hash identifier: VocaY0HEvvSS7unBu+NniQW3eteW3ZfE0V6csQnuiL0=
Subject key identifier: A5:48:9E:56:7D:B8:A8:B2:0F:74:7C:22:B9:25:AE:8E:6C:74:42:94
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0AE65B22722C7A1239F97C5E1186D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pUieVn24qLIPdHwiuSWujmx0QpQ.roa
Signing time: Wed 07 Feb 2024 05:00:50 +0000
ROA not before: Wed 07 Feb 2024 05:00:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213163
IP address blocks: 2a0f:b241:23::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:ae:65:b2:27:22:c7:a1:23:9f:97:c5:e1:18:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a5489e567db8a8b20f747c22b925ae8e6c744294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:17:6b:29:f3:5d:24:ca:48:9e:4b:c0:1c:3d:
95:58:25:6d:ba:31:5c:ee:c1:5a:f1:e1:0a:3c:12:
9f:86:ac:47:d5:af:72:7e:69:f2:5f:a3:3e:6c:50:
bf:07:7b:d1:6c:64:f0:37:aa:57:40:a4:b3:73:94:
a2:61:b4:b6:9c:d1:13:72:1b:9a:28:a6:b0:e2:ff:
5a:37:c9:aa:04:ad:fb:af:7f:3d:3a:79:f2:7f:af:
c6:bb:8d:9f:9f:e7:40:ba:71:b8:a4:35:cf:ed:2b:
a5:67:44:53:5e:e1:3a:45:47:81:d5:96:0d:8c:f8:
84:0f:69:0d:41:e6:ef:db:7b:de:9a:94:6a:8f:40:
d3:a4:15:bd:63:5a:5f:65:41:4b:8a:91:b9:d3:2c:
3d:cb:34:0b:f0:f8:81:35:f7:b5:c5:b5:64:76:77:
ea:2a:aa:47:2a:2c:0a:48:c0:bc:3b:26:1e:17:d4:
b9:fe:ed:97:ab:a0:8b:41:48:dd:1d:11:55:77:be:
d9:7f:cf:8d:84:47:fd:df:c8:14:48:39:2f:af:93:
1e:33:8f:9b:b9:02:ff:3b:8a:e4:33:3d:8d:94:3b:
0b:46:30:ea:be:71:a0:d6:e9:e8:c7:04:17:0d:6c:
fc:b3:09:60:a6:0b:fc:22:35:32:36:a6:12:89:17:
29:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:48:9E:56:7D:B8:A8:B2:0F:74:7C:22:B9:25:AE:8E:6C:74:42:94
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pUieVn24qLIPdHwiuSWujmx0QpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:23::/48
Signature Algorithm: sha256WithRSAEncryption
10:43:89:8f:97:90:08:cb:25:88:fb:cf:e9:ac:3d:4a:19:a6:
34:53:ca:c7:3f:98:f4:2b:e2:a5:93:90:77:4e:1a:11:05:59:
ce:04:b1:b0:14:2a:d6:7b:02:a8:c1:06:50:72:fa:32:4f:80:
47:7b:3b:ed:b3:90:2f:99:69:61:26:e5:3e:04:67:b5:a9:5d:
bc:aa:d5:40:0b:34:d3:b9:96:79:ea:77:77:92:a5:a8:9a:cc:
ed:ab:70:ac:7e:55:58:21:80:9b:bb:4a:30:85:e2:32:ba:d0:
d7:aa:fa:50:c4:f4:61:fb:70:d8:6e:55:3b:22:74:b4:67:ae:
36:4b:0d:83:3d:de:87:20:c0:84:1d:01:8c:c4:a8:4b:eb:e4:
b9:c4:49:05:60:46:10:cb:98:07:3f:04:65:dd:6f:30:0f:ef:
b5:f6:dd:7d:11:fb:06:bb:18:a4:b0:35:89:5d:cf:34:9e:ae:
3e:5f:e7:6f:a0:cf:f9:7d:82:6e:c3:c9:e9:3c:f8:9b:90:d8:
19:0f:42:1a:b8:dc:4d:11:9e:fe:cf:4e:fc:39:8a:75:9e:03:
d9:34:78:29:6d:cd:4e:48:dd:5c:91:3e:fd:35:81:60:54:2a:
57:ce:43:01:0a:35:38:c6:c0:1b:40:56:a2:38:db:8c:c8:ab:
4f:a9:fe:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org