Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1NVFwL0YPEW31MuG2TCVdasRjHU.roa
File: 1NVFwL0YPEW31MuG2TCVdasRjHU.roa (raw, json)
Hash identifier: ua7+2t8TPjtqwDEScs/nGvDT3cAlNTH5d3+nhk9ifrM=
Subject key identifier: D4:D5:45:C0:BD:18:3C:45:B7:D4:CB:86:D9:30:95:75:AB:11:8C:75
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0C15E7971751F14E3C1F39AD6B4C3
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1NVFwL0YPEW31MuG2TCVdasRjHU.roa
Signing time: Wed 07 Feb 2024 05:00:55 +0000
ROA not before: Wed 07 Feb 2024 05:00:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216290
IP address blocks: 2a0f:b241:156::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:c1:5e:79:71:75:1f:14:e3:c1:f3:9a:d6:b4:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4d545c0bd183c45b7d4cb86d9309575ab118c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c6:18:13:b4:2e:dc:bf:c0:58:96:e0:4f:00:
c6:4d:fc:00:0e:ce:24:61:8c:79:a9:db:68:dc:ae:
32:65:84:81:eb:34:41:28:ea:67:d3:2a:e1:bf:ba:
6f:d3:ad:a5:09:74:9d:f1:32:0a:6d:cc:cb:21:98:
a2:23:e3:c5:f9:59:c7:71:43:b5:42:5c:19:ca:16:
a5:c1:04:e4:84:d3:42:05:30:b4:9e:51:e8:76:fe:
a0:ce:97:83:b6:c4:57:89:08:3e:12:3b:00:6a:b2:
73:14:54:b7:8d:2e:db:9c:89:79:62:6c:de:6e:9d:
8e:f0:05:21:4e:ad:14:28:d6:65:e8:af:a1:73:1c:
34:e7:97:1d:d1:9c:a8:e5:00:0c:79:c0:60:14:16:
28:ae:a0:06:4f:68:22:3d:8a:a3:28:31:e6:2f:99:
f5:28:10:7f:59:f7:f6:18:6c:2d:27:40:e5:e5:1b:
f2:4a:df:96:db:81:6b:8a:d0:59:79:c1:b2:0f:20:
c5:1f:de:c4:8d:1f:2b:78:81:ca:4d:f1:ab:78:ef:
54:31:f1:6b:d1:d0:7c:fb:34:79:ad:d9:1a:4c:61:
2e:2e:37:25:92:8b:81:e9:8e:a6:32:27:ce:75:fe:
14:ff:de:80:2a:e3:cb:b0:8d:75:63:dc:e8:f7:3b:
9f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:D5:45:C0:BD:18:3C:45:B7:D4:CB:86:D9:30:95:75:AB:11:8C:75
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1NVFwL0YPEW31MuG2TCVdasRjHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:156::/48
Signature Algorithm: sha256WithRSAEncryption
04:fe:6d:55:16:ca:57:8c:c6:0e:f2:62:19:83:af:70:6b:45:
23:d8:9b:b9:2b:d6:09:27:9f:50:c8:1a:24:ae:71:72:c5:78:
6a:a9:d6:6b:83:4b:0f:ae:7d:e8:6b:bc:48:d0:5f:f1:9b:4c:
68:35:b0:52:b6:a1:76:5c:77:1e:ea:00:49:dc:30:e3:42:7b:
56:e4:8b:fe:16:fa:a3:3f:3d:81:fb:3e:0e:f7:f4:7e:3a:86:
a7:e7:e8:54:c3:25:70:36:d8:ed:ad:8a:5c:e7:d6:5d:e5:ef:
1e:04:90:ae:db:da:e1:c3:d3:bb:30:20:08:0b:22:de:d0:54:
c6:f0:9a:53:dc:e8:16:51:d3:ad:7f:70:0c:4b:48:80:34:87:
72:35:a6:a3:95:06:5b:83:c4:45:4c:5d:c9:e7:29:5a:71:06:
75:08:7f:a8:77:79:7e:30:82:ad:6b:36:06:0e:29:2f:e1:5c:
b3:ce:fa:67:ca:4a:4a:93:45:7c:7a:23:7e:fd:0b:7a:86:ea:
c2:1a:6f:b8:80:b9:7a:27:17:6a:03:76:16:55:e9:2a:00:a4:
4e:59:7e:ab:f0:ef:2b:3b:f7:49:b4:e7:b6:4a:25:2b:17:25:
2d:1c:6f:c6:73:d3:7c:4f:d1:a7:30:a4:6a:a1:dc:99:92:48:
63:93:87:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org