Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4PtFDd6PSbGK-ZajGBj1lU9H1wI.roa
File: 4PtFDd6PSbGK-ZajGBj1lU9H1wI.roa (raw, json)
Hash identifier: /f78mawDSeSEsVJz7xUmSqCVvFD6c/StiazBr+HBV+U=
Subject key identifier: E0:FB:45:0D:DE:8F:49:B1:8A:F9:96:A3:18:18:F5:95:4F:47:D7:02
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0A4F1450CB6EDAF56CA0C4D56774B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4PtFDd6PSbGK-ZajGBj1lU9H1wI.roa
Signing time: Wed 07 Feb 2024 05:00:48 +0000
ROA not before: Wed 07 Feb 2024 05:00:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210881
IP address blocks: 2a0f:b241:143::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:a4:f1:45:0c:b6:ed:af:56:ca:0c:4d:56:77:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0fb450dde8f49b18af996a31818f5954f47d702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:41:95:c9:4c:50:2c:31:17:b1:a2:ba:5d:07:
ee:fc:6b:b8:6b:cc:76:21:9a:92:c1:dd:c5:2b:55:
3b:32:25:40:aa:c0:89:02:d0:07:39:6b:80:02:77:
70:a7:ce:a9:9c:b1:c2:b2:d1:17:75:d7:c7:dc:21:
ed:13:55:39:98:8d:46:ac:0c:51:6e:e6:e6:6e:b3:
50:57:dd:68:ea:33:fb:ff:84:fd:23:53:73:91:2a:
a5:e6:46:74:13:92:c1:71:62:3f:4f:6b:ec:e7:d1:
ca:3a:e0:11:bb:b3:ae:8d:da:b7:0f:25:cb:48:a4:
1d:75:b1:91:72:1c:76:c7:42:16:6c:ac:63:be:3c:
7a:8e:d8:93:d4:65:da:c9:23:8a:99:ee:b4:78:83:
c7:4a:45:48:de:4d:c6:bf:ee:b8:97:88:f3:96:6c:
f6:fa:70:b1:57:bf:c9:2f:a1:af:8e:8a:b9:a8:61:
73:2e:8a:66:a6:1e:fa:7b:b6:34:8a:84:6c:c6:85:
c3:74:b3:0b:ec:ae:35:0f:bb:78:ea:ae:9c:5c:02:
c5:61:54:db:2a:6e:6b:04:b1:48:4b:3f:a2:85:f6:
99:7b:01:33:43:8a:f9:b3:49:da:54:8a:72:38:73:
ac:96:5d:f8:59:bc:33:3b:25:d6:55:ee:d9:40:53:
f3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:FB:45:0D:DE:8F:49:B1:8A:F9:96:A3:18:18:F5:95:4F:47:D7:02
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4PtFDd6PSbGK-ZajGBj1lU9H1wI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:143::/48
Signature Algorithm: sha256WithRSAEncryption
5f:3a:cf:4b:76:ba:cd:ee:b9:d0:0a:0e:f8:4e:b7:fb:29:e5:
fa:3f:8c:3f:05:1b:15:06:cf:ed:de:b0:27:ab:8f:97:a4:67:
c7:35:ba:d8:00:53:1f:bd:68:6a:9a:9e:a4:9d:c9:ac:b5:80:
81:d7:0a:f7:85:b3:f3:b4:3e:a1:00:4f:bc:d8:b6:94:43:fd:
bb:da:f1:e9:77:48:2f:bc:ed:4f:64:39:d1:13:5c:b8:9a:71:
f3:0c:bc:99:58:88:4c:26:43:f5:61:57:c2:bd:dd:27:d2:df:
7e:55:1b:58:fe:0f:70:82:82:5d:ec:81:9f:bc:d2:f2:cd:52:
43:77:b3:16:1d:c0:0a:87:fa:80:f2:da:c4:95:06:e6:8b:3f:
3d:a3:e0:29:9e:7d:1d:01:46:9b:a2:e3:54:d9:e9:78:3a:76:
b2:8d:71:97:a6:d7:89:45:96:b1:bb:41:3c:9a:f6:f0:9a:42:
3d:fb:9b:8f:b2:5b:4f:ae:d6:08:d1:9b:07:a7:56:7d:e7:d8:
13:bc:14:1e:e5:9e:37:b4:f7:af:e5:3a:a4:02:6c:6a:3d:c8:
d0:06:05:3e:ce:b2:16:1b:35:b0:92:fa:4d:1a:57:5f:8d:b7:
e4:02:81:d3:59:af:54:22:77:f6:71:1d:96:f9:52:3c:ef:a9:
e0:4f:91:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org