Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pmjeFzB1z6LDTNYkd8jytTSCZ8E.roa
File: pmjeFzB1z6LDTNYkd8jytTSCZ8E.roa (raw, json)
Hash identifier: xOZge/blQXl4+k1lThEhU8lBDrltNXbDovcwfSpSBoo=
Subject key identifier: A6:68:DE:17:30:75:CF:A2:C3:4C:D6:24:77:C8:F2:B5:34:82:67:C1
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACA41F0EDB3C35CA9E994D890E84DF
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pmjeFzB1z6LDTNYkd8jytTSCZ8E.roa
Signing time: Tue 06 Feb 2024 18:27:17 +0000
ROA not before: Tue 06 Feb 2024 18:27:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210965
IP address blocks: 2a0f:b241:fa::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:a4:1f:0e:db:3c:35:ca:9e:99:4d:89:0e:84:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a668de173075cfa2c34cd62477c8f2b5348267c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:56:8c:6a:0b:69:45:4b:13:f3:40:32:d2:cb:
e0:fc:2d:c1:00:7f:b8:10:55:76:20:d5:11:9b:31:
bf:e9:92:d8:01:e9:d5:66:71:3c:5d:77:9c:2f:87:
1b:73:bc:e3:62:3d:29:bc:af:33:ab:03:65:77:f0:
aa:58:77:66:fa:f2:c8:40:b7:a6:3f:35:1f:54:d0:
1c:65:bf:8e:4f:93:d8:ec:42:d5:1a:9f:aa:11:c3:
92:2c:a2:13:39:0b:43:18:77:d2:46:45:87:e1:3f:
76:45:8e:28:00:3c:f1:43:1b:f8:3f:a4:86:ba:02:
df:d5:4e:f4:99:98:71:36:60:46:e0:32:b1:ca:f3:
b3:68:d9:9e:75:ed:2f:cd:ad:a1:f4:6d:95:37:8c:
4b:ba:e5:fd:08:6d:af:7c:b5:4b:a7:68:79:94:8d:
09:ef:1e:a5:ce:df:c5:b8:ad:d5:55:15:58:a7:7b:
d1:4d:28:f9:64:78:7b:8e:3f:88:90:69:db:36:b0:
c6:fb:65:11:70:d2:91:3f:c1:ba:89:dd:07:0a:b0:
ef:39:d0:c0:7a:ea:4f:37:af:39:b6:fc:d6:f0:d3:
c3:f8:67:06:ef:38:ad:0e:37:77:9e:6b:0d:15:53:
87:1c:81:ef:b7:29:7c:2d:56:e9:21:f1:8e:3c:ac:
e4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:68:DE:17:30:75:CF:A2:C3:4C:D6:24:77:C8:F2:B5:34:82:67:C1
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pmjeFzB1z6LDTNYkd8jytTSCZ8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:fa::/48
Signature Algorithm: sha256WithRSAEncryption
26:c9:af:df:57:3a:33:15:85:74:70:54:f0:e4:bc:24:24:2d:
76:ce:06:72:4c:7c:db:5d:03:85:86:fc:07:f0:58:2d:26:52:
02:47:f6:66:58:ee:5e:5c:80:97:50:30:6e:bb:db:ee:d5:9f:
6c:6c:17:f4:a3:fe:32:6a:3c:a8:42:29:c1:13:f8:09:8c:2b:
cc:bf:d4:40:ac:ce:29:4e:e1:cc:11:39:cb:24:8b:46:ae:e5:
05:e2:d6:d9:f1:ef:81:69:52:34:b9:db:9c:a3:79:78:73:5d:
e3:11:22:9c:23:e6:49:06:44:e5:f6:4d:c3:94:89:6e:a3:2c:
3f:c2:42:b8:7c:21:83:e8:c7:01:44:90:bd:75:f4:a9:be:72:
75:38:0f:2d:c4:a3:28:e3:50:db:0b:15:4e:87:12:2f:7a:c1:
6d:9d:21:00:b6:4a:9b:59:06:70:64:46:3c:3b:25:ed:b5:0b:
ee:1d:81:c1:41:c5:1e:7b:20:3a:f4:1a:05:83:ee:d6:d9:a1:
30:c5:08:85:f0:21:b0:bd:35:dd:4a:a0:9f:c6:53:aa:06:32:
b0:8f:aa:b2:a6:4f:2b:46:64:42:d8:d9:e6:a5:03:13:4e:bd:
ff:ac:36:90:c2:08:8a:47:e7:95:d6:4f:e7:0a:21:75:bc:55:
d8:df:99:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org