Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rIzAXck_8rWoop-WuwspG7EkC-0.roa
File: rIzAXck_8rWoop-WuwspG7EkC-0.roa (raw, json)
Hash identifier: SSVJbolzl4eVsaEC7yxjHZ4rbFbHUbZ8rhat61tnU+c=
Subject key identifier: AC:8C:C0:5D:C9:3F:F2:B5:A8:A2:9F:96:BB:0B:29:1B:B1:24:0B:ED
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0ABA4A6A40F5C9F7014A0F3FF8AE4
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rIzAXck_8rWoop-WuwspG7EkC-0.roa
Signing time: Wed 07 Feb 2024 05:00:49 +0000
ROA not before: Wed 07 Feb 2024 05:00:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212056
IP address blocks: 2a0f:b241:4a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:ab:a4:a6:a4:0f:5c:9f:70:14:a0:f3:ff:8a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac8cc05dc93ff2b5a8a29f96bb0b291bb1240bed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d6:92:c7:14:f9:16:be:fd:1b:19:65:f6:b6:
ee:3f:9b:ed:f2:16:c3:6a:dd:11:9a:cb:68:12:de:
d1:c0:6a:b2:8d:25:0c:ea:4b:2f:4b:97:d5:36:71:
13:bb:76:f9:4e:04:65:7b:be:f1:b3:9f:f2:cd:84:
78:7a:20:dc:6a:c6:8d:22:bc:a9:a0:ee:df:e5:b2:
09:53:7c:6c:92:ea:e5:a5:86:fe:27:c6:7c:d9:57:
73:17:b1:61:05:c9:53:3e:8a:26:0c:53:f3:cb:5c:
fe:3a:53:66:e3:38:15:f4:45:83:0d:cc:fd:fa:ec:
db:5c:9f:19:8b:6b:ff:07:fe:0e:d5:f3:33:e1:4e:
1c:87:2d:15:68:0d:0e:2f:01:18:19:26:e1:07:45:
77:86:7b:78:fa:0f:d6:cb:d4:79:b3:a0:8b:ac:04:
3c:20:e4:21:e2:54:0c:91:db:53:97:63:53:90:ec:
b0:f2:c4:d2:66:1b:1f:50:ba:e2:d4:95:a5:36:d7:
d8:4c:7f:f8:f4:01:ac:25:50:37:e5:b4:16:3a:bf:
9e:91:97:37:5c:a6:f7:b0:8c:71:5b:f1:50:f0:2c:
ef:ce:b4:3c:31:dd:84:0f:ac:31:9b:15:40:d7:fb:
47:a7:76:93:3d:92:ad:b1:b4:92:23:29:84:cb:4a:
72:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:8C:C0:5D:C9:3F:F2:B5:A8:A2:9F:96:BB:0B:29:1B:B1:24:0B:ED
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rIzAXck_8rWoop-WuwspG7EkC-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:4a::/48
Signature Algorithm: sha256WithRSAEncryption
06:ab:ed:55:2a:73:04:ff:6e:38:ae:cd:2a:ab:d3:35:8b:0f:
9b:19:dc:67:4d:b5:e6:11:a9:d9:e4:4f:50:62:c1:45:04:c2:
2d:fe:bb:ad:5c:1d:62:73:7d:55:cc:28:f3:85:52:60:d3:37:
c3:3b:a2:6a:f8:a0:1e:6b:2c:43:89:74:e8:dd:6f:1e:8d:33:
f2:de:6d:83:6b:1a:1c:50:b0:9d:56:4c:4b:e0:6b:20:aa:8b:
b1:89:56:09:15:47:f6:79:88:46:72:93:d1:c9:66:7a:7f:1d:
a1:5c:2d:e3:22:de:3c:1f:c9:92:35:ee:a9:31:71:41:97:a6:
6b:b0:6c:c1:7a:70:7a:36:d5:d6:a3:b4:4d:0c:6d:d3:80:34:
4e:41:c7:22:e2:d8:e7:87:b8:92:cc:6e:82:ea:8b:a5:9a:69:
f2:42:a4:8c:83:0b:06:c6:4f:f7:ac:b8:0d:f7:1a:9c:5a:41:
cb:dd:bb:db:31:0f:64:19:1c:7f:0f:a6:fc:23:91:ac:15:83:
eb:8f:82:5e:6f:d1:82:4c:ec:7f:f2:df:9e:f8:30:1c:4c:e4:
59:2a:80:71:2e:f3:73:33:88:6a:99:d0:0f:e2:85:2a:6e:80:
9e:04:8a:64:07:29:e7:67:4d:90:8e:a6:f6:de:1d:44:cc:84:
a2:bd:60:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org