Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uFP4TuW7zN4XIfOWyt5uC45HgOo.roa
File: uFP4TuW7zN4XIfOWyt5uC45HgOo.roa (raw, json)
Hash identifier: ogIjAX8echs2hMNhT99XI41QTJw1lqMzrUX2O1lfM5c=
Subject key identifier: B8:53:F8:4E:E5:BB:CC:DE:17:21:F3:96:CA:DE:6E:0B:8E:47:80:EA
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F94972BA7EF4920D26B3EC047892A71
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uFP4TuW7zN4XIfOWyt5uC45HgOo.roa
Signing time: Tue 06 Feb 2024 18:01:00 +0000
ROA not before: Tue 06 Feb 2024 18:01:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206081
IP address blocks: 2a0f:b241:3b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:97:2b:a7:ef:49:20:d2:6b:3e:c0:47:89:2a:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:01:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b853f84ee5bbccde1721f396cade6e0b8e4780ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ec:68:07:2a:f1:16:81:97:8b:76:38:f2:80:
2f:28:89:a5:49:a3:d0:ac:e6:d8:3b:b9:61:f1:d7:
cb:cf:74:8b:43:fd:0c:7b:22:40:25:71:4c:e2:24:
ee:28:0c:e5:a7:e0:58:46:94:31:a0:bb:84:74:98:
90:29:1c:e6:45:8d:4e:04:df:d2:f2:a9:55:6b:4b:
33:10:71:3f:75:8c:30:72:f0:0e:33:c9:d0:06:99:
3b:31:f1:41:84:42:ab:90:a4:ec:06:ce:55:54:24:
b3:f5:8c:ad:99:6c:fa:98:5a:d4:57:9e:2a:39:bc:
21:0a:b1:5a:2d:76:35:d7:9d:4c:03:61:3d:cb:1d:
7b:79:b2:87:e7:ca:bc:e6:fc:5d:ef:2a:26:01:40:
c9:35:ae:d4:03:56:f4:ec:e4:9f:76:5a:ed:bc:a2:
08:e9:cd:df:17:5f:66:7f:06:07:80:72:98:cb:cb:
e7:3b:a2:42:fd:1c:6d:ab:57:ba:f6:72:51:c9:34:
90:46:64:08:83:77:2e:67:78:2b:2c:91:19:eb:37:
8f:58:5e:05:60:bf:6b:ad:0d:26:20:de:44:83:7a:
ed:7e:1d:b6:ff:fc:91:59:35:4b:f1:6b:cd:f5:e3:
49:58:7b:f5:5f:11:68:6c:9d:1e:fe:9b:b5:cf:ff:
61:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:53:F8:4E:E5:BB:CC:DE:17:21:F3:96:CA:DE:6E:0B:8E:47:80:EA
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uFP4TuW7zN4XIfOWyt5uC45HgOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:3b::/48
Signature Algorithm: sha256WithRSAEncryption
6a:86:f7:cb:9a:53:08:7e:fe:76:50:f9:ea:66:49:7a:ba:c9:
70:92:2d:65:57:07:ed:d8:85:cf:e2:21:76:d3:81:9a:31:19:
bc:d1:d8:2f:52:04:b9:d5:4a:02:88:bb:a8:75:44:34:75:47:
ba:04:6b:1d:d8:e6:52:dc:89:a5:00:8f:35:3b:cf:a7:10:a4:
21:8a:43:5b:5c:1e:bd:ff:96:f3:46:bf:41:11:c9:f2:c6:a0:
04:b0:ec:e3:21:28:97:88:94:26:15:c0:42:40:dd:77:56:73:
e7:9e:5c:4a:c0:56:75:c4:d0:c1:c9:c0:2a:27:e1:ea:e7:77:
69:9d:5b:80:8d:88:da:32:cd:48:59:60:8d:b2:db:17:c1:d3:
c6:39:b0:1f:2e:3d:44:c0:99:ac:9e:39:eb:fc:79:4b:fa:f8:
fc:4e:c8:13:6f:33:d0:b1:cd:3c:c9:2c:6a:5b:f0:03:18:2b:
cd:4c:fe:44:a2:1c:9c:ac:83:9f:a0:6a:f9:e5:39:91:5a:1b:
51:15:12:7c:b6:07:b3:72:0e:58:cb:fe:ec:8f:f9:df:89:42:
a7:e4:a8:00:d0:48:dc:92:3e:e7:52:20:d2:a4:a6:75:c4:0b:
73:ef:10:c5:23:d8:7f:94:b4:76:17:ee:f2:f7:d4:02:2a:eb:
d2:31:34:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org