Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xTWs6fd7W3UICpzcuE8ug7hgdGQ.roa
File: xTWs6fd7W3UICpzcuE8ug7hgdGQ.roa (raw, json)
Hash identifier: YgjziNsgmtR9GqqyzKmg8nAXd19gN+zWw2gDXSAYHtI=
Subject key identifier: C5:35:AC:E9:F7:7B:5B:75:08:0A:9C:DC:B8:4F:2E:83:B8:60:74:64
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F06AC8D397CF99A42F00CE80758DDC
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xTWs6fd7W3UICpzcuE8ug7hgdGQ.roa
Signing time: Wed 07 Feb 2024 05:00:33 +0000
ROA not before: Wed 07 Feb 2024 05:00:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197569
IP address blocks: 2a0f:b241:128::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:6a:c8:d3:97:cf:99:a4:2f:00:ce:80:75:8d:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c535ace9f77b5b75080a9cdcb84f2e83b8607464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bc:8a:43:77:46:29:c6:e9:9a:32:d7:b5:bb:
a8:d0:01:c2:88:54:63:7a:ae:88:13:a6:e7:cf:c3:
0f:79:90:4f:a1:7a:2c:97:69:c7:f9:4b:da:24:38:
85:b2:10:29:de:94:f3:84:be:ec:7b:c4:97:00:f5:
59:51:e6:7d:d4:c9:cb:1a:f8:d6:13:e7:23:01:d1:
0f:89:14:a2:25:51:4a:cc:7c:b9:ed:20:f1:d3:21:
54:bf:2f:ad:e6:62:6c:7b:33:80:19:11:53:10:56:
90:83:02:54:82:e8:91:17:cd:79:5d:00:3f:d5:8d:
0f:85:fd:c5:d5:dc:03:a9:e2:74:14:78:c6:5c:ea:
d7:f9:bc:66:7d:6c:d0:63:a9:0b:1a:8d:de:cc:a1:
37:46:f3:77:9b:16:16:de:89:f6:72:85:6b:40:e7:
66:97:e3:27:ee:39:dc:1c:44:25:33:05:8a:07:26:
5b:8f:20:a9:0e:aa:1e:74:f3:70:66:af:cc:b8:4c:
d4:6a:28:5b:3d:05:aa:50:1d:17:52:61:df:4a:0e:
2c:07:4f:b6:e5:7d:13:53:9c:6c:0d:30:64:a8:ba:
cd:df:8a:e1:81:a4:b2:69:43:bc:1c:f3:e1:4c:df:
16:9e:07:d9:3a:80:4b:9e:fb:11:6f:89:0c:b7:71:
8a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:35:AC:E9:F7:7B:5B:75:08:0A:9C:DC:B8:4F:2E:83:B8:60:74:64
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xTWs6fd7W3UICpzcuE8ug7hgdGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:128::/48
Signature Algorithm: sha256WithRSAEncryption
0c:2e:df:e3:2d:18:d0:48:69:39:b8:36:fe:92:d5:20:3e:a0:
e3:5e:95:cb:2d:a0:56:b0:4a:3e:44:5f:67:9a:b6:d0:5f:9b:
60:ac:94:97:5c:e7:7b:6b:2b:fc:ed:39:0e:89:82:52:a7:40:
16:d9:40:c8:88:60:78:63:ae:d0:7b:f4:2c:f5:4c:7d:2c:66:
73:99:1e:40:bf:1c:f4:0f:eb:7b:00:b0:81:e5:30:3a:50:ab:
5a:ae:2b:03:76:16:1d:cb:8a:b3:5f:ae:c8:d4:6d:b5:5c:59:
c7:08:b4:53:86:99:dc:9c:e6:71:9b:7e:0c:d2:89:9c:00:88:
c1:b7:e8:54:91:45:e3:15:51:73:54:e4:cc:d1:f3:bb:f0:94:
79:ed:85:43:4a:22:56:75:72:2b:72:87:74:d4:8b:64:d9:79:
94:e3:8c:a8:59:dc:70:65:04:82:eb:56:c3:68:3c:ea:cc:ce:
48:d6:35:1b:77:6a:d1:30:13:6d:81:c0:93:0c:8c:b3:d8:9f:
a8:fa:fa:73:f4:95:c0:a1:a3:b4:19:b1:26:a4:5e:3d:80:5c:
29:21:52:34:4e:ec:67:60:3d:70:26:e6:d3:1b:46:d7:92:f1:
e5:85:48:65:2b:22:24:0f:6a:e6:32:f7:d1:fd:63:52:62:b3:
29:ae:fb:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org