Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rdxB6_36yS_ul1wpfc6_EEcZov8.roa
File: rdxB6_36yS_ul1wpfc6_EEcZov8.roa (raw, json)
Hash identifier: ET1HGnNnkrOOUtjO/Ai1VpqO/xh+ySJbnX95BGj1hF8=
Subject key identifier: AD:DC:41:EB:FD:FA:C9:2F:EE:97:5C:29:7D:CE:BF:10:47:19:A2:FF
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0ADEFDF9A1D070DEC3BCC36F52E2B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rdxB6_36yS_ul1wpfc6_EEcZov8.roa
Signing time: Wed 07 Feb 2024 05:00:50 +0000
ROA not before: Wed 07 Feb 2024 05:00:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213136
IP address blocks: 2a0f:b241:14b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:ad:ef:df:9a:1d:07:0d:ec:3b:cc:36:f5:2e:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=addc41ebfdfac92fee975c297dcebf104719a2ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:77:92:a9:e6:9c:b4:e7:05:4a:37:a8:c3:b1:
90:f3:ec:78:52:c9:b1:1f:86:3e:84:3c:cc:34:22:
b7:34:97:e9:2c:3f:2b:f2:e3:c1:dd:fc:90:dd:58:
85:bc:33:ce:5e:68:07:1c:f6:a9:14:3a:b2:95:31:
8e:92:ed:e8:29:f9:6f:da:ed:99:49:ac:32:0e:5d:
c7:63:3d:17:37:1e:1a:12:ed:e7:75:d1:ef:e7:f2:
4a:ac:d7:07:1f:62:a1:b2:38:7d:34:43:a5:81:65:
18:0f:5a:51:aa:d7:97:18:fd:78:3c:76:0a:5e:d3:
89:50:2b:05:e8:20:50:2b:19:a8:9b:18:5c:19:29:
dc:5a:06:03:7f:9a:e5:be:d0:dc:62:35:a7:23:ce:
80:e6:cc:33:f9:b8:1c:e0:eb:af:de:09:f9:a7:3a:
2f:2f:c1:53:00:d9:32:6b:ff:11:14:be:c6:d5:98:
3d:91:5c:e9:60:07:b4:95:1c:9b:41:19:0f:b9:24:
3c:1b:dd:e8:0a:40:7f:c4:3c:cf:78:41:b2:46:6b:
5f:3e:89:fe:9a:02:ec:68:35:33:54:06:e6:99:f0:
97:02:d5:24:b8:ef:b7:52:e8:a3:62:fc:ae:db:91:
4a:2c:c9:b2:e0:46:2c:2f:4c:e6:26:77:30:bc:07:
82:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:DC:41:EB:FD:FA:C9:2F:EE:97:5C:29:7D:CE:BF:10:47:19:A2:FF
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rdxB6_36yS_ul1wpfc6_EEcZov8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:14b::/48
Signature Algorithm: sha256WithRSAEncryption
10:fc:75:0b:95:a8:c8:84:d2:3c:df:10:72:aa:b6:6f:e6:29:
58:0c:a6:5b:55:c9:12:27:71:23:14:1c:84:4a:d7:f6:f7:46:
49:59:6f:8a:8f:c7:22:de:30:12:2e:9f:68:77:7a:0a:df:fe:
13:86:6f:dd:ab:8e:6c:42:bb:d0:06:a0:10:89:59:85:29:db:
c1:1b:9e:5f:f1:18:2c:bf:16:46:86:a9:39:1d:de:81:dc:c7:
9e:44:ea:38:f2:9a:8e:de:86:09:25:48:be:fb:5d:bc:a4:c9:
f3:d3:1b:00:8d:3f:31:9c:22:3c:1c:2c:6e:1b:bc:3b:aa:95:
51:a4:d3:dc:e7:d7:9a:b5:35:b0:c5:a1:e8:97:e8:3b:c0:67:
97:80:36:b9:14:17:a8:88:96:42:6b:5e:a4:f9:d6:4a:f7:82:
2a:88:eb:fe:8f:3f:16:42:64:8b:9f:7d:ad:c2:04:90:b9:6d:
49:c2:e9:34:98:92:d9:f0:21:1a:0d:1b:ee:5e:cc:1a:9d:d7:
ec:b8:58:bb:a7:8d:08:5e:11:85:b3:a8:9c:56:2d:b5:cb:b7:
26:9d:8b:c0:4a:42:28:2e:fb:3e:d4:27:1c:fe:4a:6d:63:f2:
1d:4c:23:60:b4:45:64:a9:d1:ce:68:cd:13:0b:4e:56:f4:d6:
8d:2f:fd:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org