Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7xQgz7Zy1UAr4IYmAemuqIqq4Tw.roa
File: 7xQgz7Zy1UAr4IYmAemuqIqq4Tw.roa (raw, json)
Hash identifier: YgLu4bAQivU9wR8JAHP5JgXUipWgbRxFlSApqASEW8w=
Subject key identifier: EF:14:20:CF:B6:72:D5:40:2B:E0:86:26:01:E9:AE:A8:8A:AA:E1:3C
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F075343A934DDD2AC98C681D3C120E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7xQgz7Zy1UAr4IYmAemuqIqq4Tw.roa
Signing time: Wed 07 Feb 2024 05:00:35 +0000
ROA not before: Wed 07 Feb 2024 05:00:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199184
IP address blocks: 2a0f:b241:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:75:34:3a:93:4d:dd:2a:c9:8c:68:1d:3c:12:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef1420cfb672d5402be0862601e9aea88aaae13c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f6:81:a7:17:90:f7:da:db:14:05:9e:c9:c7:
95:a5:ae:0c:52:64:3a:c2:bd:d7:10:54:76:e4:1d:
0d:43:d1:7c:fa:80:90:5e:58:bc:a1:b4:9b:b4:45:
6c:08:f1:b4:67:b1:24:15:83:58:2e:c8:28:c7:96:
f8:f9:21:15:9b:5c:30:c3:ad:f9:1d:41:6f:09:10:
d4:04:11:b7:79:6b:69:9d:cc:f0:aa:06:40:b4:f2:
68:ea:00:56:03:35:ef:66:2a:f6:d3:f2:83:e1:08:
de:8a:5a:be:31:5f:60:d0:4b:89:4f:11:d8:b6:99:
2a:a7:ea:b0:ed:a0:e4:2c:83:63:de:f6:5f:e1:96:
0a:13:11:64:60:e1:f5:3f:52:a9:46:01:66:32:88:
67:64:11:cd:bf:bd:d6:e5:a5:69:8d:8b:a5:91:b8:
7d:c6:08:9d:0a:01:05:eb:98:07:6d:6d:fd:cc:5c:
e7:10:73:df:62:64:dc:48:df:e6:e2:98:da:7c:be:
df:e6:11:67:49:b4:1a:9e:f4:9b:0d:2d:65:69:fb:
05:db:e2:f5:23:1d:07:69:1b:80:80:8b:2c:51:80:
10:46:b3:7e:42:83:d4:17:df:4e:08:6d:5a:70:f6:
9d:f8:96:23:29:33:f6:b2:c0:08:77:dd:09:92:33:
5b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:14:20:CF:B6:72:D5:40:2B:E0:86:26:01:E9:AE:A8:8A:AA:E1:3C
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7xQgz7Zy1UAr4IYmAemuqIqq4Tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:5::/48
Signature Algorithm: sha256WithRSAEncryption
7e:4c:2c:55:cf:e7:37:eb:06:3b:55:92:6c:4b:f5:2e:bc:75:
7d:41:19:23:50:e8:a2:b4:f8:18:76:8b:60:c9:04:01:cd:c8:
ce:92:83:a4:f1:ee:81:56:f5:5b:cc:1f:7a:fe:b3:bf:a0:58:
01:c2:cb:22:e8:03:fb:7c:58:31:ec:b6:2d:30:ad:12:4f:11:
43:a8:96:69:0f:89:0f:5c:58:c3:5c:d6:7c:7e:ca:97:04:04:
f6:5b:ab:d0:09:0e:9b:94:b8:1d:36:dd:18:45:a5:8c:57:1d:
4a:b9:73:01:00:0b:b4:42:0d:75:8c:25:11:03:9d:7e:2c:a6:
2d:b0:13:67:12:92:fe:65:78:12:ff:0b:b6:31:f3:89:13:a2:
37:1e:0b:db:8b:b3:23:4c:61:48:59:e3:08:51:04:c5:20:ab:
9e:39:93:ef:d1:52:3f:f6:65:a9:86:8b:ad:65:2b:cd:eb:31:
f7:b9:b2:b8:27:85:12:25:a9:25:74:b5:95:ec:78:cc:e2:ca:
af:5d:2f:f3:64:58:3b:4e:ee:e1:57:12:ee:cf:87:2d:38:a0:
70:67:66:65:14:6e:b8:a1:b3:00:d1:a8:31:a0:c3:f9:e9:ab:
7f:56:85:2f:b1:17:f9:3a:14:36:00:c6:16:87:11:b9:b3:4c:
d0:ec:cb:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org