Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/yEdlyuPGxu2XxP7rMPYaEgV06iM.roa
File: yEdlyuPGxu2XxP7rMPYaEgV06iM.roa (raw, json)
Hash identifier: 5gB1sHtyXPjcrngTDQaxZ6qwxS9+XmQ9SJvkbhtT5Kc=
Subject key identifier: C8:47:65:CA:E3:C6:C6:ED:97:C4:FE:EB:30:F6:1A:12:05:74:EA:23
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0743AF233F9CAA99E1B2CFA9662FA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/yEdlyuPGxu2XxP7rMPYaEgV06iM.roa
Signing time: Wed 07 Feb 2024 05:00:35 +0000
ROA not before: Wed 07 Feb 2024 05:00:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198946
IP address blocks: 2a0f:b241:7d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:74:3a:f2:33:f9:ca:a9:9e:1b:2c:fa:96:62:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c84765cae3c6c6ed97c4feeb30f61a120574ea23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:14:5d:03:69:67:db:e3:1e:d1:70:39:08:6b:
d9:54:e8:87:14:0e:4c:30:ad:c2:89:e2:24:0a:50:
83:43:73:71:73:ee:d4:82:e3:1e:c9:f8:fd:19:95:
1d:9b:85:12:35:60:aa:0e:2d:4a:f1:db:c1:91:31:
15:a3:a0:d1:bc:8b:a4:40:7a:08:19:37:22:07:9d:
d5:c5:7c:33:e7:17:d4:19:1b:c5:b6:02:c1:97:86:
78:97:0d:d0:09:b9:19:6b:83:77:85:89:2d:e5:b0:
50:bc:bf:21:b6:7e:54:d8:02:5a:aa:7f:a3:41:45:
f8:7a:74:84:b8:3e:7d:58:2d:fb:d8:67:75:68:08:
cf:3f:41:1a:1f:31:e3:58:11:4a:e4:24:bf:c4:eb:
b6:8d:95:d9:4d:2b:6e:4b:f4:af:67:87:88:0e:1a:
3b:71:92:e5:d6:ba:75:72:4d:ee:9a:be:5f:84:2f:
29:16:6e:a6:81:27:ee:8d:51:4c:60:dc:15:06:a8:
f0:eb:56:1e:42:b2:53:d6:d0:c7:48:47:88:df:3a:
48:f8:c2:1f:f2:2d:a5:54:28:06:87:b2:d6:bb:db:
2c:26:69:62:a9:62:eb:b6:aa:bc:46:ff:ac:7a:e4:
79:b8:47:8c:38:70:30:00:c6:55:d1:7d:a7:f0:cb:
a8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:47:65:CA:E3:C6:C6:ED:97:C4:FE:EB:30:F6:1A:12:05:74:EA:23
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/yEdlyuPGxu2XxP7rMPYaEgV06iM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7d::/48
Signature Algorithm: sha256WithRSAEncryption
1f:56:3d:e8:ce:e3:89:35:04:f2:e6:06:f7:84:34:4e:55:5d:
48:9c:a1:e1:8d:61:95:4e:08:fd:55:45:0e:21:c7:bb:0b:70:
3d:33:77:34:9b:5c:63:29:1a:ba:e0:47:ff:83:be:c3:aa:ed:
db:09:7a:41:cf:ca:f0:ba:d4:05:7a:19:7e:7a:07:7b:b7:fa:
91:17:56:c6:26:58:a1:fd:bb:b6:2a:80:d9:be:eb:d6:45:17:
80:9a:16:ee:6f:4a:9b:23:0e:d8:12:87:ff:13:d2:a5:f9:dc:
b3:bb:01:03:f5:51:4c:51:13:a4:64:d7:61:f3:93:28:77:f9:
eb:b5:84:be:88:9d:26:8f:0b:5e:11:f3:66:c6:b1:b5:b5:40:
95:75:55:0b:ac:22:34:d9:84:26:54:be:6b:9f:78:52:79:e7:
89:fd:1f:a3:d7:5b:b1:f8:5d:ff:dc:9b:8f:f6:43:dc:ff:e5:
a6:2e:6a:8d:61:14:11:bf:6c:d0:f6:35:1f:bc:9e:f9:6d:55:
90:ff:e6:24:cf:39:08:af:e9:c7:e5:55:d3:e7:b8:fa:3b:a2:
85:c8:e7:cc:74:4f:45:75:6c:e2:e4:a8:e2:76:70:a3:1e:c0:
f2:5a:f2:a9:61:ae:fb:21:04:0e:b0:36:bb:a2:af:b9:72:b4:
88:2e:4c:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org