Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/623GqoAP_Wvy9K94GA4YelayVhc.roa
File: 623GqoAP_Wvy9K94GA4YelayVhc.roa (raw, json)
Hash identifier: vLt7lekVLB6NQf1BlkJzNLdR3PO3XNz6ilEan9mJXKA=
Subject key identifier: EB:6D:C6:AA:80:0F:FD:6B:F2:F4:AF:78:18:0E:18:7A:56:B2:56:17
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0A39B8302A8808373548FB5B069F7
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/623GqoAP_Wvy9K94GA4YelayVhc.roa
Signing time: Wed 07 Feb 2024 05:00:47 +0000
ROA not before: Wed 07 Feb 2024 05:00:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210532
IP address blocks: 2a0f:b241:8::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:a3:9b:83:02:a8:80:83:73:54:8f:b5:b0:69:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb6dc6aa800ffd6bf2f4af78180e187a56b25617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:6a:e3:9e:91:43:54:2b:3b:52:60:f4:e1:d3:
e9:35:f0:1c:5a:7a:5e:cc:0a:b5:1a:a7:ad:a3:fc:
f3:c1:3f:22:a4:e0:dc:03:02:c5:af:c4:08:eb:3d:
c1:fd:71:68:fc:a2:ee:95:fd:7e:5a:37:82:60:4e:
cf:a3:16:2b:a1:27:69:88:74:6e:8a:5f:d6:3f:c4:
4d:66:a4:a6:a1:de:e2:23:eb:3c:cc:58:04:96:fa:
b2:45:ae:0a:8d:6e:86:91:97:dd:0e:97:74:cf:1f:
18:d2:aa:f6:e4:58:06:67:ae:c0:f9:0b:c3:4e:e4:
c6:61:00:c6:66:f3:47:01:39:6d:76:c4:e4:37:88:
67:2d:ba:b1:ab:92:aa:21:44:c2:a3:03:b9:c5:7f:
f6:0a:2e:f9:14:ba:0d:e8:b3:7f:a0:52:e2:ed:e0:
ba:d1:31:54:fa:e1:d1:8b:45:3a:ab:41:ba:47:89:
77:a0:e3:2f:46:3e:e9:ce:1c:bf:a8:f1:6d:91:ac:
8d:6f:3e:58:72:8d:cd:a2:76:3a:81:14:a8:07:7d:
65:62:0f:dc:5e:1f:9a:60:7f:c1:85:0c:78:45:59:
2b:88:7b:2a:71:ff:e2:ce:e6:54:08:7d:0d:3d:49:
0c:df:82:71:c9:7c:87:c2:8f:4a:7e:93:38:1a:22:
8f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6D:C6:AA:80:0F:FD:6B:F2:F4:AF:78:18:0E:18:7A:56:B2:56:17
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/623GqoAP_Wvy9K94GA4YelayVhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:8::/48
Signature Algorithm: sha256WithRSAEncryption
76:38:ea:c4:5a:fa:5f:0b:2c:5f:df:23:b3:5d:d8:69:9a:4d:
5b:c0:43:34:ca:84:3a:f3:51:d4:7a:53:e0:ba:7f:62:27:b5:
3f:3d:5e:c1:a4:2c:ec:53:4a:85:3a:16:af:2b:7c:99:b3:63:
29:07:04:72:6b:22:65:53:92:eb:63:ba:6b:52:54:d7:0c:8e:
d2:23:2f:7c:ec:d7:e4:1a:86:d1:61:ea:5f:28:cb:eb:aa:91:
bd:02:88:02:65:73:87:68:39:c5:0d:2f:b7:7b:5b:93:3b:ed:
63:5f:f9:e0:7d:3b:44:2d:00:a0:15:bc:80:ba:77:5c:80:41:
82:4d:39:60:65:eb:f2:83:bc:d3:89:9e:81:54:67:6b:75:6c:
bc:42:e9:08:3e:b9:7e:62:24:79:60:74:cf:57:6a:bf:19:f9:
fd:f1:92:26:b0:6a:09:80:f6:ca:59:56:6a:d9:35:d3:71:60:
cf:a8:f9:b4:36:2f:92:bf:ec:f5:95:a8:c8:96:52:45:b0:8c:
35:f7:8c:4f:cd:93:64:1a:12:65:53:a5:79:d2:17:37:3d:51:
c2:68:a5:e9:ba:c5:8e:5b:9a:9c:b3:4c:30:ac:4d:1f:ec:1f:
13:ee:81:2e:bf:64:e7:86:69:ac:82:39:0d:46:a6:a3:de:04:
4f:84:f2:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org