Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xuoLCVjf2Q4Druz9Ot9J8rTmEGQ.roa
File: xuoLCVjf2Q4Druz9Ot9J8rTmEGQ.roa (raw, json)
Hash identifier: qvhzUHxmYpJTaHTXGwBylE5xp3Fll4j6791TDEqraN8=
Subject key identifier: C6:EA:0B:09:58:DF:D9:0E:03:AE:EC:FD:3A:DF:49:F2:B4:E6:10:64
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F93A4A65CBF8814FBDD0AA1A3140BA2
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xuoLCVjf2Q4Druz9Ot9J8rTmEGQ.roa
Signing time: Tue 06 Feb 2024 17:59:58 +0000
ROA not before: Tue 06 Feb 2024 17:59:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47552
IP address blocks: 2a0f:b241:2e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:93:a4:a6:5c:bf:88:14:fb:dd:0a:a1:a3:14:0b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:59:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c6ea0b0958dfd90e03aeecfd3adf49f2b4e61064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3e:8e:e5:be:ca:0c:29:18:7f:e8:bd:8e:91:
a6:5f:96:b2:a3:b7:5f:f7:bf:86:f8:dd:4e:45:f4:
b7:b7:f8:26:21:ae:df:11:c2:0e:34:8b:79:d9:1e:
38:d5:08:d6:9b:09:ab:ff:44:dc:18:a5:90:8f:f7:
01:46:07:0f:de:00:6a:32:66:0d:20:ff:71:12:9c:
c5:ae:0c:3e:a9:2a:cd:33:dc:70:c4:9f:a1:c7:51:
d7:ce:cc:0e:e2:99:1e:09:59:b3:ac:00:f5:45:7e:
2b:a6:fd:dc:e9:ff:9d:dc:6d:dd:7a:70:f0:5b:85:
5f:e2:65:8a:86:29:3c:cd:7d:6e:6b:5b:00:de:b3:
fb:60:78:c3:41:24:52:5c:8e:c3:b8:66:cf:8a:76:
c4:0a:5f:1d:e6:a8:7b:6b:66:cb:91:1b:82:78:40:
cc:b0:0a:6c:ff:6e:ba:df:49:4e:33:f4:ef:d4:1a:
51:a2:66:62:76:58:1a:16:f4:b4:64:66:06:ee:c3:
13:d4:f2:f5:c8:12:61:13:c4:3a:9d:48:d7:50:7f:
3b:b2:38:30:a1:f8:b0:a7:49:41:8d:1a:f6:ac:80:
00:2e:c5:5b:c1:4b:de:67:a9:95:14:b8:05:c7:82:
88:f6:3f:15:b4:3f:09:1e:b4:fc:3c:2b:10:a2:63:
ae:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EA:0B:09:58:DF:D9:0E:03:AE:EC:FD:3A:DF:49:F2:B4:E6:10:64
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xuoLCVjf2Q4Druz9Ot9J8rTmEGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:2e::/48
Signature Algorithm: sha256WithRSAEncryption
5b:cc:5e:eb:de:89:bf:a0:74:c2:d9:cd:2a:61:36:8d:b9:d9:
10:15:0d:c2:af:38:ae:63:4c:b7:70:0e:40:7b:bc:81:ba:1b:
98:25:7d:ae:76:42:6c:ec:6f:e5:a7:d1:9a:05:40:8c:5c:ae:
41:a9:ef:0e:83:6d:33:08:3a:e7:48:6e:fe:02:9a:51:06:fc:
cd:06:de:a8:17:b8:93:cf:98:51:07:4f:a8:27:7a:54:c2:18:
8d:7f:f6:9e:9f:df:95:76:66:62:91:1a:a9:46:c4:b8:43:3f:
44:c8:ef:ae:71:d3:19:da:ca:57:e7:50:3b:58:78:37:f3:14:
08:e1:81:53:64:f1:20:eb:6f:9a:2c:91:43:88:21:90:19:26:
7e:6b:45:dc:f3:b2:0c:ce:d7:63:7a:36:81:87:4a:59:f1:6e:
20:62:d8:76:e3:4a:2e:34:bc:22:85:fa:90:bd:3d:4c:73:c0:
d9:97:ba:60:be:db:2e:73:39:d3:94:6f:2f:21:dd:bd:1d:90:
de:a5:13:90:48:31:dd:35:0b:f7:d8:80:ad:ce:2c:96:74:a3:
e7:0f:d7:f5:50:80:86:e9:4a:03:21:83:a2:c3:ae:df:3d:60:
95:6e:68:66:0d:6e:46:3f:59:86:c8:bd:4c:77:bd:6b:0e:e4:
0a:11:a3:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org