Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6HLZlIERDK_ukUtXNvB2006-dtk.roa
File: 6HLZlIERDK_ukUtXNvB2006-dtk.roa (raw, json)
Hash identifier: rPsw3m3OX6MeuBcDw+Rkd9iKjfXrr0oJTEx2JOxR/Sw=
Subject key identifier: E8:72:D9:94:81:11:0C:AF:EE:91:4B:57:36:F0:76:D3:4E:BE:76:D9
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96A7E4FE13E5F365CF694C99CD6AF9
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6HLZlIERDK_ukUtXNvB2006-dtk.roa
Signing time: Tue 06 Feb 2024 18:03:16 +0000
ROA not before: Tue 06 Feb 2024 18:03:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44822
IP address blocks: 2a0f:b241:63::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:a7:e4:fe:13:e5:f3:65:cf:69:4c:99:cd:6a:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e872d99481110cafee914b5736f076d34ebe76d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5a:c5:0f:c1:15:bb:cb:9e:7e:b8:b2:29:fe:
56:00:f5:f7:a9:2f:5d:a6:35:af:53:5f:2b:59:79:
b2:fa:32:c6:ea:84:f1:3e:3c:d9:63:f8:13:9d:05:
79:64:fb:b2:e5:fe:24:9e:80:8e:84:1d:77:25:94:
21:a1:01:28:33:59:a2:8d:5d:c2:a2:ec:91:f5:17:
02:21:6d:df:d9:e2:26:ee:01:db:51:74:ae:b6:b3:
41:70:84:64:52:4c:bf:b2:cd:e1:4f:21:01:88:cb:
6d:7f:e0:8a:6f:d9:1d:f5:0e:cb:b3:ee:3d:1a:76:
18:e4:ce:29:3c:b4:31:87:04:30:59:db:a2:41:3e:
05:eb:11:f9:83:b7:b1:62:91:ad:d9:66:22:e2:c2:
cb:ed:fb:b6:b4:6e:e1:5c:83:7a:6c:0f:a7:7a:47:
38:c6:5e:91:fc:ea:67:74:96:20:61:80:6e:42:e4:
18:0b:e1:0a:12:20:85:ee:60:d1:5d:41:5e:2f:d0:
35:9e:15:d3:e5:b1:c8:60:5c:fe:26:71:71:ed:6a:
56:a8:38:d0:36:04:fa:9a:d5:d7:98:89:3d:5b:ef:
74:8b:5a:f4:58:b2:c8:92:73:fb:a6:76:fe:48:52:
eb:cc:1c:e5:30:66:23:f9:9f:94:2c:7e:0f:2b:ac:
cf:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:72:D9:94:81:11:0C:AF:EE:91:4B:57:36:F0:76:D3:4E:BE:76:D9
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6HLZlIERDK_ukUtXNvB2006-dtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:63::/48
Signature Algorithm: sha256WithRSAEncryption
05:97:93:3a:1b:f2:fd:ac:ae:37:89:0c:7f:c6:b8:0a:a7:14:
31:f1:95:33:d1:ee:5e:b3:d0:b0:4b:25:ad:90:35:37:18:c8:
ab:19:95:56:54:ed:8d:e3:53:eb:91:7a:e0:e8:d0:7c:0b:9f:
a8:05:86:b2:da:35:1d:f0:0f:35:56:dc:f2:18:0d:53:10:2b:
2e:58:5a:fb:a2:b0:2e:33:dd:99:14:e7:8c:0e:7e:40:e7:78:
4f:26:dd:38:19:74:0b:91:9a:e2:be:ef:2c:f0:db:59:68:e7:
eb:e7:af:2f:ba:19:b2:f8:5a:db:f1:34:6c:6b:2c:52:bc:3e:
40:27:a3:0c:4e:50:85:8c:0b:7c:f5:9a:1a:ed:72:31:49:b0:
ee:96:98:60:4f:c9:49:11:8b:22:c6:8a:95:18:82:40:a7:2c:
b5:99:37:98:d4:4f:e3:19:30:a1:57:c4:ee:1c:58:b6:ad:3c:
46:f3:c3:b5:ce:3f:52:06:69:85:39:56:8e:88:82:93:e9:f2:
19:1a:e9:f5:50:e7:56:96:35:78:18:22:65:bc:63:d4:f0:96:
cf:1b:c1:7c:af:69:98:56:92:8f:94:0f:05:a2:53:bf:78:cf:
f2:43:7c:c3:f3:95:19:15:0b:f0:ae:9e:9f:ab:62:1d:93:a3:
d7:6a:00:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org