Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ufHfNTtythtUM2YuIba3h4uIFdA.roa
File: ufHfNTtythtUM2YuIba3h4uIFdA.roa (raw, json)
Hash identifier: tnTM4ogqUJgJSAdXSymjcHJfjo6rDUJYxSMlkAk6DXw=
Subject key identifier: B9:F1:DF:35:3B:72:B6:1B:54:33:66:2E:21:B6:B7:87:8B:88:15:D0
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA727CEDB2848C454BD76ED5D1F1CBA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ufHfNTtythtUM2YuIba3h4uIFdA.roa
Signing time: Tue 06 Feb 2024 18:21:17 +0000
ROA not before: Tue 06 Feb 2024 18:21:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199344
IP address blocks: 2a0f:b241:80::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:27:ce:db:28:48:c4:54:bd:76:ed:5d:1f:1c:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9f1df353b72b61b5433662e21b6b7878b8815d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1f:8b:bd:fc:10:20:94:06:29:74:2c:8b:0d:
2e:0d:0f:7e:b1:5a:84:7d:59:88:f8:d6:e8:9e:bf:
e4:84:5e:e9:f4:a9:9a:94:60:b9:ae:e8:57:8a:d4:
c0:21:40:22:6b:4c:c4:a3:e2:07:65:32:0a:f3:ff:
cb:71:2e:6e:2d:16:88:0c:68:ec:36:90:86:8d:f1:
77:23:59:e8:74:2e:44:79:9e:10:b0:35:94:5e:cf:
47:3c:fe:4c:2b:60:53:cb:16:be:9f:d6:5f:aa:0c:
d8:2b:15:f6:d5:42:79:b0:20:33:c3:e6:69:9a:92:
bc:0e:c1:41:26:72:28:dd:6a:8d:50:82:df:6d:28:
3c:a5:dd:38:14:aa:a6:46:30:2b:1b:91:66:d7:4f:
be:e8:91:78:7f:fb:81:10:d2:d5:30:cf:b6:70:c4:
f7:64:26:c5:9e:e9:33:d3:11:d3:21:36:a0:b2:30:
2b:23:08:ed:84:11:0e:3b:35:94:43:6e:b8:88:c6:
94:6a:e1:d9:3b:00:9b:41:00:bf:9b:0f:b3:06:5b:
8e:26:8b:72:51:01:38:f5:5c:2f:a0:e1:21:e0:3b:
3a:92:27:27:9a:94:57:12:a7:d4:bb:77:92:1e:5f:
ef:cd:39:e5:5a:f2:ba:39:46:f7:10:8f:60:ae:9b:
45:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F1:DF:35:3B:72:B6:1B:54:33:66:2E:21:B6:B7:87:8B:88:15:D0
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ufHfNTtythtUM2YuIba3h4uIFdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:80::/48
Signature Algorithm: sha256WithRSAEncryption
86:f8:16:b6:9a:97:32:ba:9a:c1:38:9d:8c:db:41:ed:44:07:
4a:22:0a:d8:38:b3:32:c9:5e:fd:c4:c8:2e:ab:94:3b:6a:b5:
3c:7a:b5:bc:ce:ba:cc:79:cf:c9:4c:b6:27:b7:f4:fc:b4:fd:
8f:ec:82:a0:e6:d8:d3:ad:83:3c:94:49:16:d8:5e:91:21:38:
b4:65:fd:ab:58:bd:c3:28:f4:01:65:7c:61:c0:e1:09:e2:79:
70:cc:ed:88:ce:c6:ee:5a:b7:e9:37:8c:d6:0d:2d:bd:2b:c7:
8b:cd:a5:6d:72:e6:e0:4c:0b:6e:4d:8d:60:ac:0e:08:71:7b:
70:69:be:5e:4c:04:57:70:ae:79:6a:ce:cf:20:74:74:cf:7f:
1d:75:2a:d2:79:2c:d1:22:4d:45:36:9c:95:4e:39:be:16:1c:
03:27:53:7e:41:fb:d0:f6:05:59:b3:3d:4e:a4:b3:0f:52:75:
ba:d4:79:f7:15:ac:37:a9:22:46:af:85:12:45:05:45:8f:17:
a7:e6:f3:05:5c:5a:2a:3f:e3:f0:0b:e1:91:35:cd:d0:87:1a:
74:d5:50:5c:cc:fa:ee:31:c0:28:82:f0:58:64:46:1e:3c:ef:
83:d9:f6:95:ee:fe:dd:ec:c5:33:6c:d3:f5:8d:2c:42:bc:b2:
35:e7:1c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org