Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8NgbpiHcVrfVvuCicQoBsIG-iDM.roa
File: 8NgbpiHcVrfVvuCicQoBsIG-iDM.roa (raw, json)
Hash identifier: lMVT3hKC+5vke686Nw1f3CK5aopzJCNSST2m8uuYMSc=
Subject key identifier: F0:D8:1B:A6:21:DC:56:B7:D5:BE:E0:A2:71:0A:01:B0:81:BE:88:33
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA9E5E01480D54FF99C0DB4B7823429
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8NgbpiHcVrfVvuCicQoBsIG-iDM.roa
Signing time: Tue 06 Feb 2024 18:24:17 +0000
ROA not before: Tue 06 Feb 2024 18:24:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200800
IP address blocks: 2a0f:b241:d4::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:e5:e0:14:80:d5:4f:f9:9c:0d:b4:b7:82:34:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:24:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0d81ba621dc56b7d5bee0a2710a01b081be8833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:0a:ee:d3:f4:a3:1f:23:2b:e3:cc:df:a5:9b:
b9:8d:71:4f:81:53:71:c8:62:6a:fd:3b:b6:20:13:
6d:44:68:ad:70:33:e2:9c:39:9d:66:41:75:b8:7f:
22:fb:61:98:fa:c8:a4:62:a5:56:b2:2d:78:61:f6:
cb:72:a5:ec:fb:02:25:d2:7f:9c:37:24:06:ce:3b:
bd:44:dc:6c:8b:8b:c0:80:1e:ad:cf:83:1c:ff:07:
a3:5a:18:50:72:f3:fc:d8:70:f1:f4:ff:51:5e:a9:
ae:9c:9a:f5:26:4d:fb:67:d4:c1:84:0e:6b:e9:01:
7d:78:e1:e7:b4:64:c6:45:09:83:42:38:f6:99:8d:
c7:8f:4b:de:a8:9a:2f:09:33:8f:85:1a:c6:2f:d9:
dd:4c:f1:a7:4a:c2:4d:8e:8d:70:a4:7d:d2:92:b5:
cb:d3:da:4e:64:52:23:7b:04:95:dc:53:01:dc:13:
4b:9b:17:3d:c4:dc:29:82:c1:1a:e0:7c:1e:04:58:
78:ab:d1:5e:e8:ed:01:7f:ea:48:54:29:06:5e:5b:
19:b0:81:29:82:9a:82:3c:87:f3:83:90:22:a9:87:
84:cd:2f:dc:72:45:57:9e:39:d5:50:86:9c:22:2b:
4c:41:1d:a4:b9:42:be:30:18:77:f9:1a:8d:34:ca:
be:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D8:1B:A6:21:DC:56:B7:D5:BE:E0:A2:71:0A:01:B0:81:BE:88:33
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8NgbpiHcVrfVvuCicQoBsIG-iDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d4::/48
Signature Algorithm: sha256WithRSAEncryption
23:b8:1d:0a:82:2a:22:8b:ad:3f:5c:ad:96:08:a9:73:03:a7:
45:07:04:d0:a9:eb:e3:ee:cd:94:d8:d7:c2:04:4c:e3:69:77:
e3:ed:e2:c2:46:5f:54:10:45:01:20:60:1c:4b:5f:e3:e6:c1:
69:7e:d2:51:96:7e:e3:66:8f:1f:5c:33:42:b2:3f:3b:36:0f:
81:e9:92:ed:74:53:35:14:c0:c4:11:b2:0d:20:c2:e6:01:a1:
78:0c:ab:e0:6e:57:58:07:cf:01:6c:56:9a:4a:03:7c:f9:07:
4a:8f:30:e9:a4:7f:9e:6a:37:77:4d:03:84:76:fe:9c:fc:ab:
e4:ff:4b:c0:b3:60:91:7b:35:23:6c:66:71:08:4f:f2:c1:08:
00:c8:0d:fd:74:51:15:2f:4f:5f:f5:9a:3e:a9:fa:4d:87:27:
af:5c:39:57:3d:d1:82:1a:51:d7:da:87:4b:14:c0:3a:58:36:
15:96:c0:39:b4:60:0d:7d:f6:3f:99:e6:ce:cb:1d:24:f4:31:
7d:59:7d:57:0f:e1:75:4c:d1:f7:91:93:7d:8c:c5:52:22:8c:
3e:7e:10:74:e1:52:82:54:34:2a:3a:38:6f:bf:46:2d:c7:96:
e7:be:81:bb:70:04:ab:60:75:03:8e:74:51:ec:19:41:ec:36:
32:a2:0f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org