Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/wddMrEH6A00DBwqgIArwgq0Tucw.roa
File: wddMrEH6A00DBwqgIArwgq0Tucw.roa (raw, json)
Hash identifier: pax2y3IcOhkHknTmGFpTXJ5nnyREi2vS8HT8NDvAId8=
Subject key identifier: C1:D7:4C:AC:41:FA:03:4D:03:07:0A:A0:20:0A:F0:82:AD:13:B9:CC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACAB79F63649ACD40B6A3BF370038F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/wddMrEH6A00DBwqgIArwgq0Tucw.roa
Signing time: Tue 06 Feb 2024 18:27:19 +0000
ROA not before: Tue 06 Feb 2024 18:27:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213293
IP address blocks: 2a0f:b241:104::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:ab:79:f6:36:49:ac:d4:0b:6a:3b:f3:70:03:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c1d74cac41fa034d03070aa0200af082ad13b9cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:27:93:2e:d7:8d:1a:1c:f3:05:c6:87:45:a5:
c0:2c:fa:8d:98:79:8f:0b:d9:f3:91:36:80:ed:db:
c9:4a:68:fa:dd:86:b0:60:bf:4b:1d:0c:8f:e1:ac:
7c:02:d8:ac:ae:f2:68:ec:a1:fe:50:23:a3:ab:7a:
96:d0:2e:f3:4d:e9:4d:ef:59:16:a1:15:d6:2a:09:
ba:d4:2e:c8:15:87:01:e3:ac:9e:1b:4b:1b:4f:02:
9c:f1:90:06:08:02:29:0f:cb:65:a1:ae:36:ee:24:
08:7b:10:b2:68:71:01:7e:7c:69:da:07:42:5c:ba:
61:5a:ea:56:b3:39:9c:ca:40:1d:b1:b2:de:37:1e:
4f:25:be:31:5c:2d:4d:74:94:09:9e:a0:41:2c:84:
f1:51:c6:3a:6c:31:90:d4:f7:8c:f8:c7:ca:77:01:
a3:1d:ab:70:7b:21:ac:52:be:6c:bb:a0:09:32:80:
4f:c0:60:7c:0c:05:23:9b:5d:0c:73:b6:08:39:ba:
32:c6:cc:cf:66:53:4a:ae:80:2b:58:a4:71:68:14:
7a:d6:e9:ff:2e:71:99:9e:5e:32:8b:8c:43:c6:9e:
1c:c2:f4:1c:ab:3b:4c:45:de:e5:ff:d3:a6:67:9b:
4b:94:69:2c:5f:ed:a6:8b:eb:27:fb:ed:f2:d4:86:
b1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:D7:4C:AC:41:FA:03:4D:03:07:0A:A0:20:0A:F0:82:AD:13:B9:CC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/wddMrEH6A00DBwqgIArwgq0Tucw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:104::/48
Signature Algorithm: sha256WithRSAEncryption
31:d3:60:43:cd:b0:ad:b2:cb:50:2b:1f:e8:77:59:85:43:ab:
96:c9:b6:af:61:3f:66:43:f3:c2:ce:0b:8e:c1:e7:f5:5a:c2:
96:20:98:4f:f5:bf:dd:b2:45:6c:7a:78:f2:39:ef:0e:45:0c:
1d:11:24:2b:97:b0:23:c5:4d:3b:37:4e:69:5a:5a:b8:01:1b:
a4:af:4c:bf:19:f7:7d:55:39:ef:f2:33:8e:eb:6b:03:0e:fd:
2d:c5:94:27:3d:44:52:de:5a:f7:a4:01:7a:97:a6:ea:b7:42:
45:a5:2d:74:b0:bb:36:46:6d:67:9d:36:52:0b:81:8e:cc:d1:
ab:b6:90:b6:53:8b:9e:f3:d8:19:8b:3a:68:bc:08:0f:68:ad:
f1:38:4a:d2:6a:51:48:4d:a1:8c:46:1c:c8:0f:f0:4b:a5:20:
3d:b5:4d:ff:63:42:cc:d9:42:51:81:bf:05:b4:b1:41:a7:cb:
65:30:3b:47:20:f3:fa:3c:e9:69:99:2d:b5:6e:8b:f4:41:2c:
56:b6:f9:70:d8:76:cc:36:5f:17:32:33:c2:de:4c:23:fa:54:
f5:76:03:63:cc:d3:dc:41:c7:bc:21:b4:2b:a4:f3:a0:c3:15:
4d:10:74:5f:97:9c:66:aa:2b:9d:39:c1:32:44:78:dc:48:1c:
7f:c2:89:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org