Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/x6Lk8Os1ngI_ChZ9L5hGbdtxrI4.roa
File: x6Lk8Os1ngI_ChZ9L5hGbdtxrI4.roa (raw, json)
Hash identifier: 8v29kzgwaeSqQy9XGPPxVlAMthpmM9F3JRathvpEZCY=
Subject key identifier: C7:A2:E4:F0:EB:35:9E:02:3F:0A:16:7D:2F:98:46:6D:DB:71:AC:8E
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95BE9B820E504649DFEE7E30CA5096
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/x6Lk8Os1ngI_ChZ9L5hGbdtxrI4.roa
Signing time: Tue 06 Feb 2024 18:02:16 +0000
ROA not before: Tue 06 Feb 2024 18:02:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209507
IP address blocks: 2a0f:b241:45::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:be:9b:82:0e:50:46:49:df:ee:7e:30:ca:50:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7a2e4f0eb359e023f0a167d2f98466ddb71ac8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5a:ff:bd:d2:3c:0a:b9:fe:01:a8:4f:f5:8d:
92:95:f2:be:8e:96:24:7f:1f:83:7c:2d:00:cc:c1:
6e:41:f0:19:d7:6b:28:b0:cf:4f:26:0d:da:ac:68:
69:8e:f6:da:d8:b1:2a:ec:9f:25:8c:eb:0d:51:9a:
40:ea:60:20:02:f3:59:73:a5:4a:70:7d:87:c7:b1:
d8:3e:e5:1e:5d:f0:79:44:88:e6:16:80:0c:f2:ed:
29:a1:03:61:70:b0:c8:34:ca:00:75:58:ea:ae:b9:
60:09:e9:14:c3:9e:ef:08:ec:81:75:e0:c0:e4:58:
00:1b:dd:19:58:a3:ab:58:24:e0:4d:97:c8:e4:01:
bf:ef:d9:8e:e3:3a:69:3f:7d:1f:08:01:65:e6:c3:
e6:31:2f:be:14:54:89:eb:a4:e0:a8:34:ca:75:2b:
85:09:1e:27:e6:89:ba:34:70:b4:5f:ca:36:ca:27:
93:4a:31:94:86:9a:23:dd:70:70:c3:a4:6a:a9:85:
49:78:6a:c2:4e:32:5b:d0:8b:4f:86:c5:b1:9e:50:
23:d7:f4:c4:26:99:f0:54:59:eb:48:b4:4c:12:79:
94:00:ab:c6:ac:f2:3a:a1:bf:a6:67:ce:29:10:23:
47:b8:d9:a7:d8:ae:8c:b4:0f:e0:ce:18:2b:a3:69:
4b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A2:E4:F0:EB:35:9E:02:3F:0A:16:7D:2F:98:46:6D:DB:71:AC:8E
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/x6Lk8Os1ngI_ChZ9L5hGbdtxrI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:45::/48
Signature Algorithm: sha256WithRSAEncryption
8b:e3:84:ac:6a:17:39:e1:ce:a7:32:66:a2:66:e2:f4:9f:8f:
4c:17:90:61:34:8f:26:7a:2f:d7:82:76:1a:e0:c2:db:7b:cb:
15:d2:f7:e8:da:91:9d:74:b2:4c:b8:53:7b:91:4a:80:e6:a9:
fa:5e:64:21:88:94:f1:76:c5:9a:19:e8:f7:60:43:c9:4f:0c:
55:a2:b8:c2:05:5b:fd:b4:08:19:cd:fa:d7:26:03:05:92:6b:
40:8b:10:ff:dc:50:68:a0:f5:df:e1:4e:03:6f:3b:fe:c3:33:
0b:27:ba:eb:ed:2d:21:ee:d1:f0:5f:47:71:ee:e5:9f:43:ce:
64:4c:20:26:9e:a4:e5:8b:89:6d:b4:52:0f:2a:3d:67:b2:70:
be:e6:11:4f:82:6d:30:d3:0c:3b:d3:c9:2b:d2:c3:92:7f:2b:
49:6a:12:dc:d9:50:98:20:93:5c:ed:ee:36:a2:27:ea:21:93:
4f:01:87:da:55:ea:67:24:fe:4b:9c:45:77:f9:ae:95:c6:2b:
60:0f:b4:d2:12:56:8f:26:40:37:1f:fe:91:ff:0b:d2:15:ca:
f1:ee:f4:09:e3:e9:a1:f0:f9:b9:4c:2e:26:32:95:9c:cc:ac:
0c:96:b0:87:63:d2:da:a2:1e:20:c1:c2:0c:e2:0c:9a:4d:13:
c6:82:db:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org