Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/txpTNkuEYgB1sxBBU_80EEqLcas.roa
File: txpTNkuEYgB1sxBBU_80EEqLcas.roa (raw, json)
Hash identifier: qwFm5xOIMIDKMpFipv0JBKFG77zCE8sNtr6HNza0Gs8=
Subject key identifier: B7:1A:53:36:4B:84:62:00:75:B3:10:41:53:FF:34:10:4A:8B:71:AB
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB6B56B328259CD28D788DCC2558342
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/txpTNkuEYgB1sxBBU_80EEqLcas.roa
Signing time: Tue 06 Feb 2024 18:38:16 +0000
ROA not before: Tue 06 Feb 2024 18:38:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200242
IP address blocks: 2a0f:b241:130::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b6:b5:6b:32:82:59:cd:28:d7:88:dc:c2:55:83:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:38:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b71a53364b84620075b3104153ff34104a8b71ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c7:e6:6c:a2:b0:83:5a:27:43:b6:52:49:94:
0b:e8:f0:51:f9:65:22:bb:5e:9c:ca:a8:7d:86:86:
41:97:39:d7:e5:33:b7:d6:15:2d:4f:c0:99:19:63:
63:60:8b:93:05:77:89:6c:f0:cd:56:8e:81:43:98:
12:34:4b:ba:7a:23:8d:e3:9b:8e:62:3f:a3:2f:b7:
63:c3:7b:20:09:74:eb:d6:95:a4:f4:0d:ed:e5:42:
5f:26:74:85:90:e4:91:27:dd:81:83:40:51:f7:4d:
f0:92:86:3c:b1:89:5c:b0:d0:46:ba:e9:62:64:80:
a8:5c:67:64:ba:9f:ee:00:29:83:5e:8d:2c:49:b4:
8d:6a:b9:47:f0:53:dd:96:d3:b1:d7:50:e8:aa:02:
89:53:bc:cf:b8:7f:a1:22:16:3b:89:56:cf:ca:56:
5f:2a:d9:bb:2e:f1:18:14:04:0b:55:0f:ba:6f:30:
94:1f:06:4a:35:47:98:7d:e1:78:7f:7c:87:c5:c1:
74:c4:c4:8d:b2:50:c2:24:55:45:f2:c2:6c:fa:65:
4e:77:32:48:76:57:fd:40:71:1a:e6:b0:bf:16:e6:
fd:84:64:07:ac:53:0e:86:7a:1a:3d:46:11:70:a1:
48:e8:37:d2:e8:c2:d9:15:2f:9f:d7:c8:1d:fd:cc:
ae:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:1A:53:36:4B:84:62:00:75:B3:10:41:53:FF:34:10:4A:8B:71:AB
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/txpTNkuEYgB1sxBBU_80EEqLcas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:130::/48
Signature Algorithm: sha256WithRSAEncryption
66:02:6d:88:37:17:68:0f:ab:6f:fd:0e:e0:f3:3c:62:f2:53:
6d:7b:ce:92:d0:a0:b8:a2:a0:48:69:35:d4:3c:48:dd:b7:63:
1a:3e:c6:3f:9d:5f:e4:01:c0:f4:a5:92:40:4c:2d:eb:8d:5c:
b6:f4:3a:f5:2d:00:7a:88:65:e0:7a:d7:09:f4:06:58:1a:64:
44:de:f2:62:7c:f7:54:0f:e3:cc:72:8c:c6:b9:58:d0:78:d2:
28:d5:13:b0:f5:4d:3b:c9:42:e1:2b:e5:90:0c:ad:f1:04:56:
c7:bf:e5:c1:09:05:90:a7:a0:47:ca:8c:db:70:45:9f:88:50:
37:c8:ea:e6:a2:a8:92:ff:ca:fa:25:81:39:c5:64:07:96:67:
fb:e2:c5:44:e7:7e:9c:e4:36:fa:89:f2:87:82:08:fc:14:4a:
0f:ce:55:a4:5b:8d:78:4e:11:3a:aa:48:df:b7:c9:bd:8b:4c:
71:78:ce:be:15:06:6e:3f:ee:6e:f1:f2:44:cc:60:5a:09:32:
ac:ed:ce:d1:21:19:db:ce:5e:e0:c7:7b:fb:b6:43:bc:b3:d6:
b7:22:c2:df:a4:d0:2b:84:23:dc:3d:cd:3a:f1:2d:fa:cd:5a:
c0:c0:e2:95:09:43:98:43:58:f2:82:b1:d7:15:73:a2:72:07:
1c:13:a2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org