Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pzJIM5IVSv-5MfaDaoKgN8ZbOU0.roa
File: pzJIM5IVSv-5MfaDaoKgN8ZbOU0.roa (raw, json)
Hash identifier: G1gSCNayjecmofoS78xInNLgUg0gTcPl6NXVDokNzas=
Subject key identifier: A7:32:48:33:92:15:4A:FF:B9:31:F6:83:6A:82:A0:37:C6:5B:39:4D
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0BFC086667247FED61AA01618F608
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pzJIM5IVSv-5MfaDaoKgN8ZbOU0.roa
Signing time: Wed 07 Feb 2024 05:00:55 +0000
ROA not before: Wed 07 Feb 2024 05:00:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216124
IP address blocks: 2a0f:b241:10c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:bf:c0:86:66:72:47:fe:d6:1a:a0:16:18:f6:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a732483392154affb931f6836a82a037c65b394d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:96:51:a7:68:2d:41:9d:01:df:a1:42:dc:ab:
ed:20:01:b9:d0:54:86:b1:0a:8b:70:08:7b:91:69:
d7:1e:6b:0e:73:82:96:03:a7:fb:5f:56:8e:4c:d5:
bc:56:da:9e:a9:87:e5:ee:ab:5e:ee:11:79:70:7e:
ca:d4:02:a9:42:1e:01:90:da:57:8b:ae:81:03:28:
dd:fb:5b:f4:2b:f6:4a:5c:47:f2:62:0e:98:e5:5d:
1b:6b:d1:1b:14:cd:3e:4b:18:bc:53:7b:e1:39:a5:
2b:fa:2d:e0:dd:b1:1a:79:f9:9e:05:11:2f:1b:0f:
51:50:19:cf:63:99:ad:7b:c9:32:d6:99:af:f9:de:
c8:c0:5f:98:51:07:dc:82:01:d5:c1:36:06:c7:b7:
a3:63:e1:3f:7e:1b:98:df:68:3c:15:35:63:b6:bd:
27:12:c0:9c:28:f1:62:91:dc:03:19:f9:e8:4a:38:
6a:f4:a6:2c:0a:a8:7f:01:8a:eb:0a:d1:9a:2d:c0:
22:66:39:2a:63:59:53:33:ae:11:a6:26:d2:7e:64:
b4:c2:96:c9:0d:a7:14:0b:c8:63:36:9e:f1:58:18:
33:a2:0f:b3:ee:4f:3d:d3:26:fa:d6:20:46:6a:c5:
69:4e:92:54:4b:93:f1:0c:bd:15:7c:4a:e5:6f:c7:
17:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:32:48:33:92:15:4A:FF:B9:31:F6:83:6A:82:A0:37:C6:5B:39:4D
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pzJIM5IVSv-5MfaDaoKgN8ZbOU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10c::/48
Signature Algorithm: sha256WithRSAEncryption
6d:b7:63:90:f1:33:c9:db:ee:12:5f:39:6d:4a:1f:0e:ff:14:
1d:61:9d:2c:18:be:9e:9e:97:09:34:c9:eb:e1:1c:60:3b:b6:
79:67:16:a3:96:ed:fe:80:6b:26:09:87:20:77:fb:8f:0e:63:
31:9c:9d:c5:c4:49:41:be:36:9a:c5:fc:6e:74:da:01:e2:92:
84:e4:cd:75:c6:d4:4c:3f:fc:23:88:71:83:b8:d0:20:ef:6d:
f8:b0:4b:d9:f4:27:53:fc:83:80:16:5b:a7:f2:e3:91:52:82:
78:9d:81:31:a0:08:2e:7f:80:d5:06:2e:99:73:b7:2e:02:ca:
06:b2:c3:8c:de:0a:71:04:2d:ee:eb:5d:f1:59:f0:f6:b4:2c:
45:d5:5c:d6:e5:03:a6:d0:63:e0:da:2b:f1:1c:64:64:93:d7:
3b:de:b4:32:38:df:a4:b9:5b:d4:4f:39:1f:d1:b9:f9:37:76:
f2:67:2c:07:5d:f6:05:ca:b5:4c:cb:eb:11:3d:78:27:28:ca:
12:b2:b9:dd:fc:64:88:85:87:d8:6d:cd:28:6f:86:cd:97:ea:
40:a0:fa:54:99:c9:bc:da:25:fe:94:39:d2:0e:ca:fd:34:90:
48:cf:bf:fe:60:4c:57:fb:ff:d1:e0:d2:21:7f:c7:93:34:36:
6b:4a:1e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org