Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/t1WYXqLHU--Ea4voO-upYmcbxAg.roa
File: t1WYXqLHU--Ea4voO-upYmcbxAg.roa (raw, json)
Hash identifier: P25sLa5CcfrT91m8ntQmw8YYPIuvI8zzppMCNYVY6og=
Subject key identifier: B7:55:98:5E:A2:C7:53:EF:84:6B:8B:E8:3B:EB:A9:62:67:1B:C4:08
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F08BD9177C93F867F606DDF0F5468A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/t1WYXqLHU--Ea4voO-upYmcbxAg.roa
Signing time: Wed 07 Feb 2024 05:00:41 +0000
ROA not before: Wed 07 Feb 2024 05:00:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203044
IP address blocks: 2a0f:b241:1d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:8b:d9:17:7c:93:f8:67:f6:06:dd:f0:f5:46:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b755985ea2c753ef846b8be83beba962671bc408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d5:7e:81:5a:8b:57:28:67:a7:9f:7e:57:25:
13:e0:82:ea:58:c2:21:31:eb:76:a9:5d:67:a7:56:
73:42:67:6f:39:53:41:d1:2d:72:56:88:ca:c0:be:
30:19:c3:c2:a0:8c:c9:72:38:a1:2e:e7:38:85:79:
0a:26:04:c8:00:00:2e:0b:07:67:f2:5e:9e:b1:5b:
45:05:ca:45:cd:92:b9:16:81:5a:4e:d6:4e:4d:d4:
ce:2f:70:8a:d8:60:06:93:b2:72:f2:82:36:bd:62:
f8:ac:2a:d7:9f:d6:50:41:e7:b2:68:9c:12:10:f8:
1f:b3:a9:4b:d5:52:04:c9:76:9f:e0:ce:0f:b5:22:
cf:a5:9c:50:b2:47:f9:a1:41:ed:86:04:ff:de:55:
ba:a7:78:b2:63:e8:65:78:6c:cb:b5:ee:57:b2:42:
95:a3:48:6c:a9:2c:f2:5b:16:bc:64:de:bb:57:d3:
4e:0d:60:d0:b9:b1:25:ca:dd:86:ed:91:cb:d4:5f:
d2:e9:66:21:84:f0:97:b0:0c:f6:cc:f3:78:9e:3d:
fa:cc:6a:9f:74:61:b6:33:b4:67:f5:96:70:05:61:
63:dd:f0:fc:60:fc:e1:83:bf:84:29:a0:b9:41:f0:
a5:96:fb:f3:c0:3c:46:00:1a:d2:f5:9b:82:5f:46:
7b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:55:98:5E:A2:C7:53:EF:84:6B:8B:E8:3B:EB:A9:62:67:1B:C4:08
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/t1WYXqLHU--Ea4voO-upYmcbxAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:1d::/48
Signature Algorithm: sha256WithRSAEncryption
76:d2:8d:5d:47:97:b6:b8:84:bb:cf:03:b4:fb:a8:20:ed:65:
71:7f:d2:78:c6:c4:54:35:a0:ed:0a:74:bf:ce:56:1b:b3:87:
e0:98:cb:39:ee:7c:30:9a:6c:be:d2:99:94:41:58:f7:2b:37:
da:95:44:ec:d1:1a:ac:13:43:57:2f:70:87:06:79:0d:2c:29:
2c:0d:25:88:43:bd:ef:3e:e9:96:0b:a5:da:2e:90:74:4e:75:
39:79:6f:33:e4:0f:44:60:bf:10:7d:07:67:32:63:42:86:29:
7f:59:85:39:c0:81:7c:e5:09:63:67:c2:be:ab:fe:04:a5:b3:
4a:2a:4c:c0:23:9d:d7:da:d7:98:39:59:c9:18:c5:04:18:fa:
4b:e4:86:4f:fe:d9:79:bd:96:bd:c5:7f:f9:6e:8c:33:82:a3:
4f:15:a6:f0:3b:44:91:31:62:1b:f9:49:7e:8c:d8:b0:a2:2a:
a8:25:18:6e:03:83:99:2b:75:ac:c8:e2:81:29:ad:32:b9:4f:
47:b3:48:ae:7e:1c:22:99:96:cd:47:44:d7:fb:7f:89:4a:b2:
45:6a:ed:08:4b:bb:3f:b9:07:0c:85:96:41:59:aa:9f:66:c6:
82:bd:08:ed:93:3f:2b:4c:fb:31:30:5a:a4:eb:5c:35:72:ae:
93:15:fc:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org