Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-uNwy16VGaKV9owSJlYzg0e2bOw.roa
File: 1-uNwy16VGaKV9owSJlYzg0e2bOw.roa (raw, json)
Hash identifier: CR+EOYad8g/JnoGUfSl5YRNZafSmMfNtyqAU836phGQ=
Subject key identifier: FA:E3:70:CB:5E:95:19:A2:95:F6:8C:12:26:56:33:83:47:B6:6C:EC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACA51DE0806ABC79BDA6119031E52A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-uNwy16VGaKV9owSJlYzg0e2bOw.roa
Signing time: Tue 06 Feb 2024 18:27:17 +0000
ROA not before: Tue 06 Feb 2024 18:27:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211380
IP address blocks: 2a0f:b241:fc::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:a5:1d:e0:80:6a:bc:79:bd:a6:11:90:31:e5:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fae370cb5e9519a295f68c122656338347b66cec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:13:89:25:40:eb:11:9a:5b:14:8b:92:8f:07:
f4:25:74:2f:03:66:ff:52:48:57:29:56:60:aa:cc:
c1:b5:45:88:ab:b6:5f:81:30:c8:75:6b:da:67:08:
d5:5e:f0:0b:1c:b9:fb:5a:7e:0f:98:9f:de:7f:cc:
a8:93:26:08:26:31:a2:8a:58:de:c3:f9:98:fe:d3:
bf:84:4e:03:45:ef:f8:d9:b7:94:6d:0f:55:75:97:
7f:7f:97:56:91:ee:61:bf:ed:85:7e:12:f4:61:15:
ca:66:5b:39:13:06:82:fd:f0:5d:17:63:4c:63:20:
bd:f6:bd:6d:a9:a5:7c:05:d5:42:ca:3d:0c:46:87:
c1:c2:67:9f:49:c6:ee:7d:b8:ad:9a:00:12:57:7c:
5e:54:1f:35:44:a8:50:f2:a0:61:e6:14:72:c1:39:
04:b3:fc:76:fa:88:e0:e4:2b:bd:09:6c:c4:86:98:
ce:09:66:3e:75:25:d0:7b:62:57:e6:6a:58:35:f6:
52:f2:24:41:a5:e2:db:a6:10:b2:b6:a2:9b:ff:b8:
6b:94:c4:a2:6c:b5:14:1e:a6:63:b6:01:3d:44:09:
c3:22:34:b8:62:e3:ee:17:bd:72:14:90:6b:9d:f0:
90:99:aa:bc:54:06:93:25:83:86:98:77:56:e8:00:
c7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E3:70:CB:5E:95:19:A2:95:F6:8C:12:26:56:33:83:47:B6:6C:EC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-uNwy16VGaKV9owSJlYzg0e2bOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:fc::/48
Signature Algorithm: sha256WithRSAEncryption
5f:91:c3:37:50:04:80:5d:bc:42:fc:8c:90:8d:ab:55:66:a5:
64:c9:2e:f8:b1:cf:50:62:9f:96:ff:2a:0e:c0:14:a1:e5:ea:
96:0c:05:4a:2c:32:4d:62:80:75:fa:1f:1f:89:aa:94:67:47:
10:31:1a:1a:70:f8:c2:4c:97:fc:40:3f:c3:e3:34:2d:d8:10:
26:9b:f9:b5:31:13:bb:d4:ae:db:76:2a:90:c8:96:bb:ef:76:
a0:38:d9:c6:16:53:40:9a:72:30:6f:18:e7:73:94:45:f8:37:
60:a5:16:a3:3b:a5:0d:5b:4e:85:e0:c2:91:b7:b6:e3:8d:e4:
6d:98:9a:c9:d0:04:c8:ae:ff:f9:0e:92:9e:ff:a7:ff:45:df:
c8:38:8c:de:5e:a3:cd:02:05:0e:1f:43:f6:89:c5:be:e8:69:
ba:12:d0:0a:cf:94:82:4e:31:71:f8:a8:a5:43:00:b3:a7:74:
42:70:97:0c:2a:13:24:5a:d3:a2:58:7f:c2:82:3f:71:4c:28:
58:6f:85:7a:0e:44:b3:ce:34:01:b3:22:e4:f2:0e:f0:c9:77:
31:e1:b2:a4:59:19:62:b1:87:97:b4:fb:4c:78:b7:c6:d1:1f:
dc:38:7e:e9:1d:f6:63:1d:e1:89:fc:25:ee:1d:43:f8:fa:c2:
e3:52:b8:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org