Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qBgwP1OxolH7vng3bBtiYqfNIUY.roa
File: qBgwP1OxolH7vng3bBtiYqfNIUY.roa (raw, json)
Hash identifier: m4+Nc2d7F0EfX8dB9h2yTEfsuJv0Zh6hO+a2Z9fcZZE=
Subject key identifier: A8:18:30:3F:53:B1:A2:51:FB:BE:78:37:6C:1B:62:62:A7:CD:21:46
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA9E7823E64E10A4F7B2320F738A30A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qBgwP1OxolH7vng3bBtiYqfNIUY.roa
Signing time: Tue 06 Feb 2024 18:24:17 +0000
ROA not before: Tue 06 Feb 2024 18:24:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200866
IP address blocks: 2a0f:b241:d6::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:e7:82:3e:64:e1:0a:4f:7b:23:20:f7:38:a3:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:24:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a818303f53b1a251fbbe78376c1b6262a7cd2146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c6:03:8d:13:63:5f:35:c2:99:a5:47:73:f6:
c3:6e:bf:c7:4d:d4:fd:10:6e:2d:15:69:35:01:c9:
61:5d:49:fe:e1:a0:94:72:c0:b4:df:6b:86:f3:d8:
59:bc:83:28:32:c0:32:80:20:c4:2f:cf:a5:98:a8:
8e:ee:86:82:8a:58:e6:cf:52:1e:3c:48:7e:ce:97:
8d:e1:d9:ae:44:1c:d4:18:bf:25:bc:db:77:0c:89:
66:3a:c9:0e:f8:1f:2d:7e:35:e3:c4:48:af:b9:50:
3f:57:a8:4d:06:cc:73:d4:b8:5d:03:81:26:27:ae:
02:cd:10:cc:f3:41:c7:19:45:d8:77:59:27:37:e6:
da:6f:95:aa:d7:b2:d9:95:b7:8b:19:20:41:86:b0:
16:30:9d:00:2b:5d:2a:ca:d8:a3:34:18:f5:54:da:
3b:16:47:f0:d9:21:c2:b2:53:ad:92:20:e7:96:ad:
c3:c8:a6:f3:41:bc:d0:ba:14:bc:8f:d8:6d:6e:1d:
68:bd:3c:2f:c6:97:e4:6d:46:11:4e:73:40:62:65:
36:e5:64:0d:20:d2:af:b4:c5:b8:78:ea:2e:12:81:
6c:a5:80:7c:9b:9b:33:13:98:9f:57:6a:8d:8a:78:
9c:27:8b:04:a0:5d:86:a2:27:1d:0d:a7:2b:ed:50:
a5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:18:30:3F:53:B1:A2:51:FB:BE:78:37:6C:1B:62:62:A7:CD:21:46
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qBgwP1OxolH7vng3bBtiYqfNIUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d6::/48
Signature Algorithm: sha256WithRSAEncryption
70:8c:c1:32:5e:db:c9:f1:6f:04:14:47:b2:6b:1f:f1:dd:14:
f9:17:30:2c:47:6d:cd:42:fa:01:78:c0:47:26:6c:44:f7:e6:
75:72:ba:fc:b6:0e:c8:d4:1d:a5:b3:ef:e2:33:3a:22:cc:62:
c9:83:06:94:67:07:49:02:6b:fb:cb:6d:1c:67:cf:64:d2:ec:
18:a2:53:73:b8:54:7b:21:e4:a5:ea:ae:35:c2:7a:34:51:9e:
a7:0d:f4:5b:82:06:05:33:63:60:c9:6d:df:d6:33:6c:2b:db:
1c:b2:26:17:39:22:08:5f:d7:9d:a7:0b:39:25:e4:65:cc:45:
49:56:ad:d4:73:1e:44:ac:21:ed:5e:11:b0:1c:1f:22:ac:4a:
bf:01:fc:b3:8d:39:f1:3d:f1:a3:b3:5e:23:8a:b6:72:84:42:
51:4f:3f:7c:27:72:96:bc:77:a0:97:dd:61:52:5f:10:f7:72:
cc:0f:51:1a:4b:c3:82:dc:bf:d5:55:99:5c:3d:01:ff:93:83:
44:0d:5c:19:5d:f2:f8:b5:de:d7:25:74:fa:55:30:c1:82:63:
04:b2:53:69:0c:84:11:f7:28:52:28:2c:3c:79:c5:68:d5:a8:
47:8a:68:44:88:4e:a6:92:e9:73:2b:8f:0b:14:10:6e:00:24:
29:b6:71:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org