Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/q-bA5BwUTZ6iCEBnyYF3TMfy_Po.roa
File: q-bA5BwUTZ6iCEBnyYF3TMfy_Po.roa (raw, json)
Hash identifier: kwbBKeXAmLco/qAhVv/EnElDbDCv7l4OMoaZtnxBNuo=
Subject key identifier: AB:E6:C0:E4:1C:14:4D:9E:A2:08:40:67:C9:81:77:4C:C7:F2:FC:FA
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F05AAECA08F70A077A4116FAB1F28F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/q-bA5BwUTZ6iCEBnyYF3TMfy_Po.roa
Signing time: Wed 07 Feb 2024 05:00:29 +0000
ROA not before: Wed 07 Feb 2024 05:00:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39753
IP address blocks: 2a0f:b241:61::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:5a:ae:ca:08:f7:0a:07:7a:41:16:fa:b1:f2:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abe6c0e41c144d9ea2084067c981774cc7f2fcfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b9:3a:bc:fc:63:08:0d:cc:cf:31:b9:72:53:
73:f0:20:b7:ab:0e:13:63:73:4c:18:20:21:86:6e:
79:d4:8a:5b:ca:93:5b:d8:53:cb:d6:c9:0e:ed:ef:
1a:60:e5:96:ff:90:6b:78:91:de:54:80:a0:06:2c:
91:64:2d:f4:99:98:12:e3:a1:ec:52:30:4f:1f:70:
d3:59:b2:78:b6:20:6a:51:5c:78:fe:01:3f:eb:60:
42:f5:89:8f:7b:80:cb:57:48:42:f1:8c:bf:c3:c7:
ff:4d:9c:75:6e:b7:a5:53:bc:86:4e:36:56:86:14:
91:b1:3c:a1:e2:09:b6:d0:d8:5d:78:18:f0:39:2b:
ae:bf:54:6c:77:bb:79:67:80:18:a0:9a:4e:af:86:
38:48:84:cb:98:93:4b:28:fd:55:01:5b:c2:ac:32:
0a:a1:68:96:23:60:59:54:9c:b4:90:a6:58:0e:0b:
be:e1:b7:85:ea:11:0a:77:e7:78:c5:4e:d6:d1:2e:
3f:7a:86:f3:9a:b9:95:03:39:56:b0:12:0f:a3:70:
56:3f:7d:57:f9:27:3c:bd:13:9e:19:a8:67:1b:f8:
90:de:bd:01:90:42:d3:08:91:8c:8e:75:f3:9d:ba:
fb:84:e9:f4:01:6e:89:68:5e:3e:b1:b7:d9:5b:d6:
c1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E6:C0:E4:1C:14:4D:9E:A2:08:40:67:C9:81:77:4C:C7:F2:FC:FA
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/q-bA5BwUTZ6iCEBnyYF3TMfy_Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:61::/48
Signature Algorithm: sha256WithRSAEncryption
55:2e:5e:0e:d4:e9:71:bd:7c:56:e7:d7:4b:d2:10:7c:84:5e:
79:35:9b:51:4e:6c:e9:fb:81:81:4d:50:5c:e5:f9:84:e1:fd:
11:58:04:5d:ff:f2:52:16:fa:32:bf:69:61:ca:d6:b9:de:6c:
fd:f0:db:45:cd:27:ad:0c:0c:f6:ed:cb:fd:64:27:0c:24:c6:
5b:0f:a5:aa:e9:59:0e:0a:d3:26:ae:19:8a:02:91:b3:b4:26:
2a:92:4d:17:42:b7:c1:d8:47:1d:ed:fa:fb:f1:47:97:c7:a0:
0c:e2:da:b2:5f:51:b0:d2:b8:11:45:1b:3a:d0:15:b2:1b:95:
46:a0:8b:0d:c0:22:c9:55:37:aa:91:1e:9b:db:aa:c8:89:80:
3c:07:eb:c1:27:09:f0:5b:a9:51:41:3c:de:d0:f2:fe:b3:69:
f2:62:1f:e8:93:d8:5a:12:ae:14:31:7d:3a:4d:fb:23:77:07:
b8:e7:be:9d:70:bc:85:1c:7b:f1:15:24:b1:d0:25:a8:df:ed:
6f:cb:99:82:d9:ba:e7:b3:3f:91:85:ac:00:86:b4:a3:a3:40:
a5:1e:59:97:ee:a8:6f:a2:e4:76:98:25:45:fa:e8:a5:2c:e9:
9c:25:09:0a:2a:a6:7d:15:97:ae:dd:0c:6a:4d:77:88:e7:ec:
31:66:4b:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org