Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/r9BHrJYv_G9bnZbn4Qr0fXSOoek.roa
File: r9BHrJYv_G9bnZbn4Qr0fXSOoek.roa (raw, json)
Hash identifier: hFyqrp5UkWvfz8m48jdG2pKKzXGcI1+W2KDhV1aO7pQ=
Subject key identifier: AF:D0:47:AC:96:2F:FC:6F:5B:9D:96:E7:E1:0A:F4:7D:74:8E:A1:E9
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA721FDFC0E31B9EB2AB7432484C546
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/r9BHrJYv_G9bnZbn4Qr0fXSOoek.roa
Signing time: Tue 06 Feb 2024 18:21:16 +0000
ROA not before: Tue 06 Feb 2024 18:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198786
IP address blocks: 2a0f:b241:7b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:21:fd:fc:0e:31:b9:eb:2a:b7:43:24:84:c5:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=afd047ac962ffc6f5b9d96e7e10af47d748ea1e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3c:bf:47:8e:9e:cc:42:0c:18:8c:c2:a2:99:
87:8a:e1:78:4f:4b:61:12:ef:a2:ab:36:15:23:16:
63:fb:a7:06:40:be:89:0c:ef:e1:ed:29:24:d7:38:
f6:0b:a1:d9:2c:c1:d2:d4:40:c1:ea:58:28:48:2d:
7d:5b:d3:92:57:b3:77:b3:ea:bb:81:1e:3a:9e:11:
1a:16:84:d8:1f:51:18:8e:44:db:38:b6:6a:12:65:
70:5c:b6:9e:e4:3a:06:d6:9a:f2:ff:82:75:40:07:
29:63:0f:5c:d0:c4:5b:ba:48:37:cd:05:03:ed:de:
c2:04:3b:5b:0f:89:34:6a:b0:75:00:54:d8:8d:2d:
44:b2:e7:0c:e2:7f:be:33:ec:00:a6:a8:1d:f7:e8:
1b:b7:f6:15:47:24:1e:32:37:bb:0c:7e:9f:e9:8c:
b1:4b:11:df:a3:de:12:4d:91:aa:f3:21:2f:e5:27:
49:61:d6:5b:5f:39:5f:42:dd:c8:36:65:0e:6a:83:
0d:bf:e3:84:b9:74:85:09:0b:5f:21:46:07:00:c3:
27:06:7c:3e:a6:48:37:e2:14:28:46:94:8f:f2:96:
c6:e6:56:bc:1f:44:cb:0e:dd:79:14:d9:95:cb:be:
77:61:4f:5b:7e:2e:17:0b:8a:ff:63:41:b3:2b:ce:
e4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D0:47:AC:96:2F:FC:6F:5B:9D:96:E7:E1:0A:F4:7D:74:8E:A1:E9
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/r9BHrJYv_G9bnZbn4Qr0fXSOoek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7b::/48
Signature Algorithm: sha256WithRSAEncryption
62:76:92:1e:43:22:c4:03:23:a8:1f:20:03:8c:f0:2a:ea:47:
50:75:a1:c2:29:81:99:c0:0a:71:52:8c:62:24:f0:a2:eb:8f:
68:46:f8:70:e1:6d:35:2b:51:e6:a2:46:45:a2:22:d2:6b:07:
0d:45:a6:f8:9c:40:cd:d0:a8:21:dc:a8:ab:dd:c5:6a:ec:60:
f2:98:40:c1:5a:a4:fd:ed:7f:79:09:17:f4:bd:00:31:e9:92:
59:64:eb:87:81:33:e7:c2:3e:13:47:47:d9:65:36:99:e8:8a:
2f:84:ba:59:e9:54:72:fc:ef:d5:0e:81:3b:51:54:3b:32:ca:
f1:96:8a:51:20:6c:34:06:b5:9e:b2:9c:b9:7e:f3:ba:51:45:
b9:e8:0e:60:c0:f7:f6:f2:72:c6:ca:54:fd:31:00:5f:95:60:
ab:e4:0c:15:39:fe:20:1b:7f:4e:16:22:f9:dd:a8:21:5c:1f:
76:94:a1:61:3a:e7:66:35:b1:02:26:62:35:d8:3d:1c:c0:47:
bd:9a:c0:f1:bf:53:95:62:09:e8:3b:ac:a7:ab:7d:be:28:19:
f9:2f:e8:b2:25:4e:dc:db:f4:24:72:c6:b0:fc:f4:3e:1e:f7:
66:00:9e:6e:ae:8a:ce:59:80:cb:fe:8b:2d:cf:10:a2:8f:7c:
f3:3f:95:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org