Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qugA46eF_KHazosO_F5xhbCZMb8.roa
File: qugA46eF_KHazosO_F5xhbCZMb8.roa (raw, json)
Hash identifier: hbDDXBh+Znqu5X7YekQj0gfXqAf+InHbripQ0a4Rvhk=
Subject key identifier: AA:E8:00:E3:A7:85:FC:A1:DA:CE:8B:0E:FC:5E:71:85:B0:99:31:BF
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0C3D2B4D824E37D756257D537C866
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qugA46eF_KHazosO_F5xhbCZMb8.roa
Signing time: Wed 07 Feb 2024 05:00:56 +0000
ROA not before: Wed 07 Feb 2024 05:00:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216430
IP address blocks: 2a0f:b241:10e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:c3:d2:b4:d8:24:e3:7d:75:62:57:d5:37:c8:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aae800e3a785fca1dace8b0efc5e7185b09931bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6b:47:16:18:ab:77:97:a0:31:bb:df:6c:19:
30:c5:50:26:94:84:82:bf:63:cd:3c:2c:dd:50:c0:
3f:82:1b:da:81:40:cf:d1:ad:1c:f9:80:f1:9e:72:
be:a5:4c:9b:5b:08:84:5c:4d:78:e9:43:b1:1e:3e:
40:93:04:4d:be:34:61:fa:61:0e:f2:58:ae:b4:b8:
30:a9:5e:57:54:95:b6:67:7c:dd:f0:d6:cf:dd:6c:
48:06:f0:97:3e:4d:67:c6:15:5e:83:c5:f7:8e:5f:
78:83:42:12:49:ce:f7:62:50:5c:e1:eb:ee:00:35:
b9:7c:e4:96:c6:b3:83:2d:61:98:8d:80:ac:0e:26:
43:36:a3:03:b7:69:3d:1a:96:48:5d:2b:41:29:8f:
7d:ce:00:f8:23:16:77:32:cb:b5:60:6a:d4:12:16:
79:b7:37:37:26:0e:9e:33:29:55:81:4e:d4:a2:0b:
29:8c:f6:17:bb:7c:55:7c:80:5b:bb:72:31:ee:6b:
93:d4:3b:47:e4:a4:20:05:e6:bb:35:db:82:c8:05:
3e:64:69:3f:7a:a3:ad:bc:ea:66:ec:7e:de:c4:14:
30:7e:54:f1:4c:ed:b3:5d:9d:79:6a:25:ba:50:62:
11:38:fb:64:9f:08:41:0c:f0:65:8e:f2:41:a3:02:
5a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E8:00:E3:A7:85:FC:A1:DA:CE:8B:0E:FC:5E:71:85:B0:99:31:BF
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qugA46eF_KHazosO_F5xhbCZMb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10e::/48
Signature Algorithm: sha256WithRSAEncryption
63:63:db:35:04:3d:33:67:57:a0:04:98:11:cc:87:8c:31:98:
35:c4:7a:e6:a2:20:b9:ac:5f:02:35:d3:36:42:29:5e:65:96:
14:b2:a5:3a:fa:54:35:a4:ab:01:5a:c5:62:12:d3:9c:00:1f:
74:72:5f:02:ec:56:05:c6:96:2d:fe:dd:4d:89:60:a7:0b:12:
96:69:20:bc:df:2a:62:ff:f7:39:54:ce:d7:1e:ab:cb:9a:89:
20:42:61:47:f1:a6:84:ab:f8:b2:eb:47:18:82:33:b3:97:41:
e8:94:8c:87:57:2e:e7:91:a8:6a:66:39:6b:5b:61:82:6f:5a:
e9:2a:d0:90:a0:a3:92:a4:91:93:26:ff:72:4a:84:08:41:b5:
6f:07:b1:76:8b:3b:a2:5c:ef:a9:7e:ca:e9:e1:f6:ab:92:e7:
1e:26:46:f0:cb:3e:85:fb:2d:54:73:a3:dc:37:57:67:52:56:
a9:c8:54:9c:19:6c:45:f3:96:86:37:32:40:4f:5c:b0:51:43:
31:22:aa:55:33:e1:ff:6e:06:04:de:60:5d:4f:21:9c:bd:3b:
20:39:20:98:f7:7d:82:44:c2:8f:82:6e:79:e5:22:9a:bd:d1:
8b:80:5c:a9:4c:3d:b1:f8:b2:95:2e:c2:8a:a8:5a:8e:55:df:
13:df:f7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org