Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0mzcDIMhyVWCuEPtc0_QO-Pmve0.roa
File: 0mzcDIMhyVWCuEPtc0_QO-Pmve0.roa (raw, json)
Hash identifier: FDBhvMdk0/x6rye+4tiS3mFJZdVOtDlsRyEeqyqbVKU=
Subject key identifier: D2:6C:DC:0C:83:21:C9:55:82:B8:43:ED:73:4F:D0:3B:E3:E6:BD:ED
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0685276F6AEFC38F45A95DC434627
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0mzcDIMhyVWCuEPtc0_QO-Pmve0.roa
Signing time: Wed 07 Feb 2024 05:00:32 +0000
ROA not before: Wed 07 Feb 2024 05:00:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60391
IP address blocks: 2a0f:b241:124::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:68:52:76:f6:ae:fc:38:f4:5a:95:dc:43:46:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d26cdc0c8321c95582b843ed734fd03be3e6bded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:48:17:eb:36:98:09:97:fc:d2:80:49:a0:e6:
f8:80:89:43:8f:39:00:7b:f5:48:13:6b:3c:1c:1b:
e9:d7:3f:b6:e3:c5:4e:3d:4d:97:d5:ca:71:e9:a1:
d4:cd:35:9f:ee:da:a8:b0:35:d6:8d:da:8b:cf:78:
64:18:73:10:1c:46:b1:f1:6c:36:ce:fa:57:b3:b5:
d3:96:ea:40:6f:63:8b:64:77:85:77:d8:dc:18:0e:
0f:ea:8b:c2:ec:ed:7f:d1:13:91:ac:e2:47:08:4a:
0b:c5:cb:d6:9b:99:50:37:52:64:f3:63:fb:ad:fa:
a0:2d:fe:ab:7c:66:23:6d:09:b3:be:b1:6c:b7:10:
a3:1c:3a:74:d6:65:88:e3:61:8f:5d:a0:f1:1e:20:
80:d3:68:e8:63:44:6a:3a:f5:ad:bb:9a:63:e4:03:
b9:48:0c:8a:c7:90:33:eb:76:e8:b4:3d:c9:ad:61:
7d:fc:11:03:b9:bc:aa:a1:07:35:a8:68:4d:79:f4:
2c:73:42:fc:22:2c:7f:83:40:e0:87:07:c0:41:28:
67:af:cc:b7:aa:84:3f:3a:1f:35:fe:6c:5a:cf:1f:
df:43:36:b1:0c:bc:ed:cf:6b:5e:36:e6:c2:81:2d:
0b:3e:ca:88:79:2b:32:4c:06:0c:40:b9:c5:a8:76:
2a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:6C:DC:0C:83:21:C9:55:82:B8:43:ED:73:4F:D0:3B:E3:E6:BD:ED
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0mzcDIMhyVWCuEPtc0_QO-Pmve0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:124::/48
Signature Algorithm: sha256WithRSAEncryption
60:8d:91:4a:55:80:2a:79:8a:da:c8:b8:1b:be:85:99:b4:8d:
4a:e8:78:0f:2c:1e:b1:f1:bf:57:62:8b:09:e6:7e:c0:37:0e:
9f:23:c2:2a:8e:a5:09:c8:42:5a:05:73:b8:0c:9e:e6:b0:af:
52:83:fc:65:c0:09:e9:67:71:8f:87:24:46:05:22:e8:f5:05:
3d:14:3e:71:22:b7:2c:3f:07:c5:46:2f:b7:48:db:a8:6f:58:
3e:16:d7:66:41:02:c5:b3:88:4a:e7:92:eb:1c:00:42:8b:01:
df:a3:fd:4a:e4:29:76:2d:e7:6e:ec:03:44:f0:fc:b3:b5:f8:
ec:dc:3a:2e:c6:6f:09:c9:1b:b5:c6:d7:32:e0:36:f4:77:ca:
b3:f4:d5:89:d9:08:11:1c:42:13:71:b3:3e:37:34:44:9d:a1:
b0:90:16:71:da:cd:ea:57:65:0c:52:fa:4d:c2:8e:30:9f:62:
30:c6:72:84:c4:9a:b5:89:15:58:02:1f:49:66:0f:ca:02:15:
53:61:f6:86:09:f0:d3:66:71:0c:40:3a:bd:05:3b:8d:84:9e:
e3:c6:22:28:28:a6:a7:8b:97:16:9b:19:a9:21:bf:13:c8:1c:
8a:f1:a3:b5:6c:5b:4f:c8:a1:c4:05:b6:89:cb:92:19:88:a2:
7e:6d:84:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org