Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zK6mOrR5Md1uFGx2IqssaACivjs.roa
File: zK6mOrR5Md1uFGx2IqssaACivjs.roa (raw, json)
Hash identifier: Y6VACMr1pzuD7cT7161eRanHzvWe4h3Gem+WYdc5wFs=
Subject key identifier: CC:AE:A6:3A:B4:79:31:DD:6E:14:6C:76:22:AB:2C:68:00:A2:BE:3B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA8FFB8563193365C6A7E0F5779D271
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zK6mOrR5Md1uFGx2IqssaACivjs.roa
Signing time: Tue 06 Feb 2024 18:23:18 +0000
ROA not before: Tue 06 Feb 2024 18:23:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200455
IP address blocks: 2a0f:b241:bd::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:ff:b8:56:31:93:36:5c:6a:7e:0f:57:79:d2:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccaea63ab47931dd6e146c7622ab2c6800a2be3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c3:a0:b5:4e:64:28:94:95:e6:6c:20:83:c9:
0d:a1:37:40:2d:09:77:73:68:eb:f0:ed:0d:58:bc:
8e:42:e5:8a:d2:41:51:7b:a3:39:02:e6:0b:ee:a1:
dd:d6:3e:3a:c4:7b:58:dd:40:af:43:c3:68:f8:8f:
6f:61:d5:84:1f:32:a3:30:71:67:88:40:1e:8b:59:
99:a6:77:26:30:c7:16:1b:43:ef:5b:f7:86:51:3a:
e7:d3:ac:54:91:6c:74:63:29:35:a8:d8:d2:85:79:
21:d2:9f:3e:45:a5:61:75:07:38:4f:5b:d1:b6:38:
59:92:45:6c:2c:c7:2b:e7:97:75:40:c8:8d:38:16:
8e:ad:ba:b3:b1:cc:c5:f1:eb:a2:a5:e3:0b:9e:12:
53:b1:d1:17:6a:e5:13:15:fc:f0:9c:d6:86:d6:af:
fc:d9:87:84:09:24:88:d2:39:e5:08:59:a1:bd:fc:
9b:51:fe:4d:ec:0a:81:a7:67:d8:38:33:f6:3e:15:
05:86:5b:98:a2:ba:cd:47:ef:88:f7:59:47:37:23:
87:c5:18:90:ad:4b:b0:0e:0e:0a:e4:53:3b:5d:88:
17:7c:69:4b:28:9e:41:74:78:8e:91:89:44:32:42:
08:2a:79:ff:15:e6:dc:c8:57:f4:d9:ea:e8:f1:90:
4e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AE:A6:3A:B4:79:31:DD:6E:14:6C:76:22:AB:2C:68:00:A2:BE:3B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zK6mOrR5Md1uFGx2IqssaACivjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:bd::/48
Signature Algorithm: sha256WithRSAEncryption
69:30:81:38:9e:51:68:e9:ff:11:44:5d:82:d5:91:cc:c0:95:
a4:a0:25:b2:1d:9b:d1:72:ad:d3:90:41:a2:f7:95:95:5a:0c:
51:db:96:58:ca:b5:e2:4a:3d:d6:18:bb:b6:3b:00:0d:b4:c4:
15:d7:70:14:55:46:7d:3e:54:a9:68:7b:58:45:ba:85:5f:18:
ef:60:a8:34:3b:7c:c4:c7:e7:96:6c:a4:46:a6:31:c3:f2:9e:
b1:7d:b1:55:12:54:73:43:ba:18:f5:76:b9:74:0d:40:af:a1:
72:8b:68:a9:04:ba:18:c4:e2:3a:64:d3:29:e1:d2:c7:b4:e4:
7a:3f:56:d9:8b:2e:62:42:82:f6:1d:26:0e:94:0e:86:52:e0:
0b:aa:d2:be:3a:55:fb:42:2c:45:64:53:09:f9:18:cb:a7:48:
84:90:e6:49:32:be:32:53:10:f8:4a:76:29:c5:17:fc:3d:25:
38:d9:95:11:b8:1c:f1:7f:92:19:e2:84:8d:87:b7:7a:70:38:
9f:2e:8c:88:03:90:0e:d3:80:ab:9a:54:82:2a:c0:53:85:2e:
bf:ac:83:8c:a1:ce:c9:49:cd:ec:0f:a6:7d:ec:2c:cb:f0:03:
eb:d1:16:ad:9a:87:73:38:0c:a7:b8:37:fe:05:bc:1f:d3:75:
bd:e5:99:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org