Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6hG_cQUcjstgWeZwjRZu_W3p51M.roa
File: 6hG_cQUcjstgWeZwjRZu_W3p51M.roa (raw, json)
Hash identifier: G1xC9mObvFt0ixFZqaaK40YHBeTvl9r6GRERUqmH3eo=
Subject key identifier: EA:11:BF:71:05:1C:8E:CB:60:59:E6:70:8D:16:6E:FD:6D:E9:E7:53
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F073E49C55CA33DC63DC9B95AA1B05
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6hG_cQUcjstgWeZwjRZu_W3p51M.roa
Signing time: Wed 07 Feb 2024 05:00:35 +0000
ROA not before: Wed 07 Feb 2024 05:00:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198804
IP address blocks: 2a0f:b241:7c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:73:e4:9c:55:ca:33:dc:63:dc:9b:95:aa:1b:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea11bf71051c8ecb6059e6708d166efd6de9e753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:88:46:b9:37:25:27:20:0f:91:ef:c4:a0:07:
ad:02:c6:15:37:f2:a1:f4:01:eb:37:2e:83:f7:aa:
28:da:34:55:b4:35:19:b2:13:14:18:8b:c1:7c:5b:
03:c3:a4:fd:f0:9b:83:13:a7:de:49:46:f0:92:13:
a3:75:4f:f0:20:aa:e3:e5:d6:54:57:2a:70:3f:e9:
da:31:86:c2:c8:be:13:b7:50:4a:90:9b:d6:ef:8a:
41:99:c5:7a:4e:e2:2e:50:78:78:df:3e:19:6e:f9:
f9:01:c6:6c:00:a0:64:8e:c4:73:03:ae:ee:7e:f3:
05:b5:14:1b:9e:a8:ce:7f:42:09:b8:62:6b:9a:16:
4a:16:2a:ae:60:1c:db:6f:57:df:d4:c7:c4:bc:91:
84:81:38:f9:dd:c2:32:5f:17:14:0f:26:13:17:a4:
57:a4:d6:48:47:97:2c:90:73:61:82:8d:7f:2c:57:
91:8d:1f:4a:70:3b:cb:74:a5:b3:dd:1d:64:af:88:
54:7d:60:4e:3f:09:50:89:25:bc:eb:ef:b8:9e:07:
96:3d:58:e4:22:2e:ca:db:72:dc:29:7a:ba:3c:30:
e1:07:3a:75:3f:21:53:5b:49:fb:ec:ea:9d:f3:f7:
e6:38:70:b9:31:a4:a2:79:4f:7a:8a:ac:4c:9d:06:
48:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:11:BF:71:05:1C:8E:CB:60:59:E6:70:8D:16:6E:FD:6D:E9:E7:53
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6hG_cQUcjstgWeZwjRZu_W3p51M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7c::/48
Signature Algorithm: sha256WithRSAEncryption
88:7f:ae:9c:d5:5e:6e:c1:b9:c1:01:1c:14:65:ed:f6:26:c9:
fc:86:af:90:a1:a6:f3:c5:4e:c5:02:e1:84:58:d5:44:2a:7d:
00:74:e1:73:0a:7b:2e:6b:95:10:5b:fe:20:ed:f7:b8:36:9d:
20:0c:65:54:91:9f:b1:17:73:b4:f6:6a:98:94:b3:5a:ff:c4:
96:ac:87:af:b9:aa:c6:21:ce:1b:47:75:8f:ad:23:2c:42:8e:
7b:4b:5c:b9:81:05:5c:10:b1:b4:a2:fa:ac:20:81:49:8e:b8:
df:0e:f3:87:97:c2:44:2d:31:ca:53:71:77:42:5a:65:a3:02:
e0:c4:68:67:fa:61:70:3f:be:9e:92:c7:17:f2:3e:8f:8d:b6:
7c:6b:19:a8:51:d7:bb:57:c8:a4:d1:9b:67:d9:61:de:b1:c5:
37:f9:29:43:36:52:82:84:58:fc:4d:b9:8c:3f:93:48:f5:82:
cc:69:cb:14:b0:c4:4b:68:0f:77:09:07:61:aa:7c:93:2a:ba:
3e:a3:37:3e:57:3a:2d:cf:87:d8:12:ac:14:e3:81:63:25:f8:
a2:e2:3f:72:63:51:d8:60:bc:8f:f7:d1:8d:d3:69:8e:18:ac:
26:a1:8a:74:05:f6:72:3a:a3:ec:2d:c0:b1:94:68:a2:d7:25:
bc:1e:3e:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org