Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8B8qPn59SnLLkGK0cdx5bdzs75Y.roa
File: 8B8qPn59SnLLkGK0cdx5bdzs75Y.roa (raw, json)
Hash identifier: QtrnorFJBptHAShNaagqi6ITBRB/KcosyvsAQVTov44=
Subject key identifier: F0:1F:2A:3E:7E:7D:4A:72:CB:90:62:B4:71:DC:79:6D:DC:EC:EF:96
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F9498DAF37471F398F27B75A3314CC1
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8B8qPn59SnLLkGK0cdx5bdzs75Y.roa
Signing time: Tue 06 Feb 2024 18:01:01 +0000
ROA not before: Tue 06 Feb 2024 18:01:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207487
IP address blocks: 2a0f:b241:3c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:98:da:f3:74:71:f3:98:f2:7b:75:a3:31:4c:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:01:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f01f2a3e7e7d4a72cb9062b471dc796ddcecef96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3a:21:e5:b2:2b:9e:83:36:e0:fc:3e:3d:c2:
2a:36:21:31:cc:4c:08:bf:63:66:25:15:fe:a9:ad:
6e:56:99:29:d9:0c:1c:84:75:1c:3a:6b:33:6b:3e:
38:2c:59:0a:f0:18:f3:94:fd:09:41:21:87:08:b0:
aa:0e:95:1c:50:e8:1a:6c:fa:72:97:ce:20:ec:e2:
43:36:26:b2:f9:4e:67:e5:b6:a0:ac:fd:e4:4b:33:
ed:03:f7:3a:df:ba:09:da:65:20:d0:67:99:94:c9:
c0:6d:f9:70:5e:9e:88:49:b5:19:07:fb:eb:b3:d0:
ec:2f:7e:60:57:db:16:02:e4:6e:c5:c5:0e:61:b9:
4b:90:9f:50:57:67:7d:e9:82:53:8d:bd:b7:d6:1e:
8a:04:34:39:98:14:84:f5:a1:bf:73:cb:73:0c:ca:
d3:2f:0b:c9:0b:5b:b6:22:7d:f3:88:fd:4a:a6:a4:
3e:51:3d:8b:f0:e3:5d:af:16:4a:8e:1b:47:c5:89:
1f:b8:89:ce:77:c5:be:b7:13:a6:68:2d:f4:d1:44:
47:e1:eb:7b:1d:4b:15:e6:ca:4e:64:72:e0:8e:00:
8d:76:e7:65:15:0e:1d:2e:05:2a:76:2a:4f:a7:28:
56:7f:9e:ef:45:b9:8e:dd:59:1e:64:38:33:eb:19:
43:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:1F:2A:3E:7E:7D:4A:72:CB:90:62:B4:71:DC:79:6D:DC:EC:EF:96
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8B8qPn59SnLLkGK0cdx5bdzs75Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:3c::/48
Signature Algorithm: sha256WithRSAEncryption
57:8a:60:9d:35:5e:04:38:09:e5:eb:8a:f0:d8:24:89:87:5c:
d4:eb:67:42:e7:01:8a:f1:7b:77:21:71:32:6c:aa:71:8d:e4:
ea:67:ca:a2:7d:37:f9:5f:10:77:cd:ce:59:1a:8b:a8:10:8a:
e4:60:d9:23:ae:0a:05:e9:ce:87:2f:9f:4f:50:bb:21:52:26:
65:6e:9e:b9:8b:7b:47:c9:74:4f:8b:c3:7b:54:17:6f:52:b0:
ad:ef:68:dc:2a:72:54:a6:e8:0d:fa:2a:07:61:2a:3d:b0:61:
eb:01:88:5e:94:aa:ba:ca:cf:48:90:f3:52:3c:6e:2b:bd:ee:
80:94:2e:ba:c0:e0:bd:91:91:0b:10:33:f0:f1:cf:b3:ac:f8:
86:97:e2:ee:fe:ea:c1:0f:1f:34:50:ab:54:5b:74:d2:28:dd:
e9:b1:b1:b6:3d:03:ad:c6:18:4f:83:14:a6:5a:ac:51:13:ac:
f0:ca:0c:e8:6a:2a:fc:75:da:14:f0:f5:45:b9:03:45:ad:9f:
69:b5:b0:30:e6:95:ba:be:a6:44:36:a2:70:f9:a9:9a:de:a8:
bb:00:65:41:3c:5b:50:3f:dc:c8:47:ff:65:bd:91:05:0c:7a:
50:83:d5:84:82:43:80:b4:57:5c:25:b4:be:43:65:f6:aa:22:
5d:27:96:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org