Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ry0Vn4GLgAAdCj-4x7cgZhqAoO4.roa
File: ry0Vn4GLgAAdCj-4x7cgZhqAoO4.roa (raw, json)
Hash identifier: HeotLI2B7Dk1rRaFvSTu+SIum+h4Qd45vGmQZRwWNDE=
Subject key identifier: AF:2D:15:9F:81:8B:80:00:1D:0A:3F:B8:C7:B7:20:66:1A:80:A0:EE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAACDB2566FA708756782B569E0AD53
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ry0Vn4GLgAAdCj-4x7cgZhqAoO4.roa
Signing time: Tue 06 Feb 2024 18:25:16 +0000
ROA not before: Tue 06 Feb 2024 18:25:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201097
IP address blocks: 2a0f:b241:db::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:aa:cd:b2:56:6f:a7:08:75:67:82:b5:69:e0:ad:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:25:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af2d159f818b80001d0a3fb8c7b720661a80a0ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:15:30:58:8b:b6:60:b8:da:10:35:b8:b9:80:
82:46:2c:4d:42:75:03:65:c2:e2:82:ff:45:a1:9b:
63:61:98:36:44:74:a7:00:63:72:f4:2b:8d:1b:80:
88:5b:68:62:94:86:30:7d:62:94:8d:02:37:aa:14:
a1:61:6c:71:27:89:58:d2:30:22:6a:c9:6b:df:96:
73:03:27:e4:52:c0:e8:ca:32:a4:7b:f0:95:04:12:
99:9b:51:56:ac:da:f5:6e:40:ef:00:b2:e0:30:36:
15:f2:62:c9:8c:75:d8:1e:99:93:00:c6:43:57:df:
4c:28:a4:d7:e4:29:a8:dc:7f:74:17:7c:9a:f7:84:
3b:cc:21:ca:30:43:72:00:6e:ad:f2:56:bc:bc:8d:
12:49:30:bf:14:6e:0e:ed:e4:d3:1c:c7:0f:e0:53:
24:df:c9:09:8b:d6:e7:41:13:5d:5e:82:94:59:06:
e9:eb:50:1e:6d:9a:1b:99:f3:5a:f6:09:04:d0:dd:
16:84:ee:ba:52:e0:71:b3:ee:55:3e:27:62:09:7a:
ab:16:01:4e:87:1d:15:b2:2c:e3:24:9f:6c:2d:c4:
5e:53:54:3f:90:69:db:51:50:69:40:24:e5:12:db:
c0:67:18:61:27:ea:71:d0:0c:ca:37:59:67:44:10:
76:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2D:15:9F:81:8B:80:00:1D:0A:3F:B8:C7:B7:20:66:1A:80:A0:EE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ry0Vn4GLgAAdCj-4x7cgZhqAoO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:db::/48
Signature Algorithm: sha256WithRSAEncryption
6a:2d:7e:6a:ca:22:cb:26:3e:23:ae:0a:cf:fc:f4:a0:80:8c:
5e:32:52:8b:11:27:82:78:39:95:a4:cb:9f:a4:8d:7a:b0:ff:
0a:24:d1:ee:84:39:71:20:de:aa:b4:0e:ac:60:27:f3:ca:71:
e0:d6:e6:b9:de:d6:85:cd:a2:54:9a:ad:ec:e6:93:ed:1e:78:
63:ad:b3:ad:9d:6d:99:65:34:2f:05:a2:18:71:62:23:a1:eb:
04:e5:3d:da:ae:36:83:14:1a:19:7e:9e:63:e3:b1:8e:1b:b5:
99:dd:36:bc:96:70:b9:e2:f6:08:46:ba:ad:bd:b2:05:4d:2e:
f9:9c:94:ed:7f:25:57:4a:be:e9:bd:7d:03:db:fa:10:d3:3a:
c8:38:ec:c7:cb:2c:b2:49:ee:08:1a:b3:0d:93:d4:c1:99:f0:
13:5e:e0:1e:4c:0e:31:f0:15:be:23:ca:93:c1:19:b5:63:5c:
08:5b:ac:9a:34:ab:13:41:79:18:03:fa:d2:d2:db:a5:85:4a:
f5:2b:22:43:46:7c:06:dc:bd:e7:9c:5f:ee:07:7c:ad:d7:fe:
f3:df:cb:49:84:fd:2e:aa:a7:e3:84:9b:6b:f3:d7:e9:52:4a:
54:ef:d2:7a:bd:52:35:84:91:0e:65:0e:b5:b8:96:de:2b:81:
7d:3e:88:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org