Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6tLJPgM-PsvlqwBOAd7TpzI-UZY.roa
File: 6tLJPgM-PsvlqwBOAd7TpzI-UZY.roa (raw, json)
Hash identifier: JuDNSK1N2POvmXM4Yq1APB0bwWjegIe3UFj5C7LEVz0=
Subject key identifier: EA:D2:C9:3E:03:3E:3E:CB:E5:AB:00:4E:01:DE:D3:A7:32:3E:51:96
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96A8D8F60FA0DE1C4C373100ECCA7E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6tLJPgM-PsvlqwBOAd7TpzI-UZY.roa
Signing time: Tue 06 Feb 2024 18:03:16 +0000
ROA not before: Tue 06 Feb 2024 18:03:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215747
IP address blocks: 2a0f:b241:54::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:a8:d8:f6:0f:a0:de:1c:4c:37:31:00:ec:ca:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ead2c93e033e3ecbe5ab004e01ded3a7323e5196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:da:a4:f7:bf:3a:ac:1e:7d:3e:a7:76:4e:81:
eb:d5:e6:e6:65:5e:75:a7:d4:1a:fc:a9:d2:d3:ba:
e4:7d:25:cd:ba:9c:15:63:0a:09:74:d3:d0:b4:d6:
63:db:3d:a5:72:74:03:01:16:19:de:4d:b3:3a:98:
a7:92:a7:c8:bf:00:5b:0a:52:02:c8:bf:51:0b:fa:
ed:6d:46:c5:5f:d7:4e:d8:0f:d4:cd:0e:9e:5b:43:
b1:05:82:b6:23:4b:07:e5:b2:73:ec:f9:42:4f:a9:
4b:6b:1f:0c:c4:52:33:25:e6:2a:3e:d6:5b:0e:58:
09:14:78:ff:9e:02:b8:09:b0:73:ce:35:fa:6b:6b:
62:aa:7a:61:82:58:33:32:71:e8:20:4f:ee:a6:f5:
97:f8:27:3d:ed:89:1a:d8:d7:63:c9:bd:d6:b5:3e:
a3:6b:ec:ca:e3:26:41:6a:2e:c6:2e:ba:f4:08:30:
a0:d4:51:b1:60:6f:b9:ac:c3:0b:ad:e8:ef:96:c3:
e0:61:4c:fa:4e:e3:bf:b1:c7:37:88:bd:4f:9d:ee:
4b:93:31:59:3d:b7:24:9a:65:5b:14:4a:5f:14:67:
24:20:84:2b:86:c0:67:70:2d:2f:1f:33:bc:7a:bb:
2c:21:d1:cf:db:2b:cc:cc:5f:8f:36:80:f3:7f:26:
aa:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D2:C9:3E:03:3E:3E:CB:E5:AB:00:4E:01:DE:D3:A7:32:3E:51:96
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6tLJPgM-PsvlqwBOAd7TpzI-UZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:54::/48
Signature Algorithm: sha256WithRSAEncryption
7b:ae:a0:cf:7e:20:20:2f:05:7b:e7:97:3f:31:59:51:f5:51:
04:ac:7c:6c:70:df:3f:2b:96:7d:9a:86:a1:50:a3:8c:d7:dc:
36:16:b3:62:fc:e4:cc:ec:16:87:a9:49:b2:f9:ad:da:99:da:
ea:b4:0e:38:08:9f:65:a5:4d:aa:98:dc:c6:07:7b:ce:36:1e:
20:57:c6:d4:3a:fa:61:35:39:52:74:4f:be:7d:91:fd:ed:7e:
ab:c3:af:cb:05:f6:e5:09:ab:f9:34:23:d5:d0:c2:fc:f4:54:
78:6f:5c:71:45:c8:70:d4:f3:e1:88:5f:e9:04:c5:c8:ad:87:
c4:c9:f8:0f:f8:b9:5e:36:28:c3:3f:d3:68:2f:36:43:c9:a3:
c5:00:a9:98:2e:b4:9f:69:d9:80:8d:ce:d8:de:ca:c5:ad:87:
e4:56:1d:4f:af:b0:97:03:7f:47:df:f1:47:44:68:49:79:84:
85:cb:66:0e:9c:9d:01:d9:48:4c:1d:24:d6:88:50:d2:a8:13:
9c:5b:25:4d:13:a0:ff:84:91:25:02:7f:5c:a7:bd:a4:10:c5:
65:b9:11:07:79:77:c7:fe:b0:61:15:2e:b5:9b:0a:5a:02:d6:
b0:80:4a:f0:dd:d2:be:82:e6:0d:7e:79:e3:7f:e2:21:d4:12:
57:d1:9a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org