Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/E-7Tzw06GDKc0o1NeL8clge1UTE.roa
File: E-7Tzw06GDKc0o1NeL8clge1UTE.roa (raw, json)
Hash identifier: /uidwyQUAPDxRuOo8WtrXOCuBALyRvscG2ymgBk/77o=
Subject key identifier: 13:EE:D3:CF:0D:3A:18:32:9C:D2:8D:4D:78:BF:1C:96:07:B5:51:31
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0BD7615593DE951FD7B515D5DDA43
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/E-7Tzw06GDKc0o1NeL8clge1UTE.roa
Signing time: Wed 07 Feb 2024 05:00:54 +0000
ROA not before: Wed 07 Feb 2024 05:00:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216101
IP address blocks: 2a0f:b241:154::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:bd:76:15:59:3d:e9:51:fd:7b:51:5d:5d:da:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13eed3cf0d3a18329cd28d4d78bf1c9607b55131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5a:21:81:f3:fc:a7:86:7c:d0:5a:fc:71:2c:
99:11:75:2d:b4:2f:1a:60:d9:14:ed:08:ce:35:aa:
cb:fa:51:e7:14:a2:04:89:6c:a8:1b:85:69:4a:b5:
16:15:a8:fe:a4:f4:e4:a2:02:61:0e:98:e7:fb:b3:
74:da:0e:77:e1:20:5d:88:a6:bd:61:50:fc:32:e0:
b2:44:be:f9:1e:9e:a5:72:1f:03:85:76:10:8e:b9:
86:da:d5:bc:c0:49:30:a0:93:56:9a:d1:89:40:c8:
81:da:5a:35:e1:bc:88:f3:11:1e:38:eb:a0:54:89:
6f:b2:d1:9d:8e:9d:3f:36:f8:81:ca:31:e4:a5:d4:
e8:5c:96:d1:2d:90:f9:3e:5f:74:12:eb:1c:2c:5c:
64:ae:8e:1e:09:d2:9c:92:c4:ca:7f:42:38:aa:a4:
04:54:4c:53:e5:42:3f:7e:b8:50:e7:df:1c:0a:38:
ba:ac:5e:e8:6e:f1:08:ce:d3:fa:05:f4:91:41:9d:
1d:21:12:37:41:05:e8:b4:ef:06:93:08:17:55:34:
94:e5:e4:54:dc:0b:89:35:60:7d:47:5a:5c:56:fb:
8a:6d:98:dc:84:e2:d0:2b:37:ea:85:eb:9d:e5:a3:
0e:8d:67:e0:2d:14:14:eb:8b:3c:02:49:d3:02:1e:
5f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:EE:D3:CF:0D:3A:18:32:9C:D2:8D:4D:78:BF:1C:96:07:B5:51:31
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/E-7Tzw06GDKc0o1NeL8clge1UTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:154::/48
Signature Algorithm: sha256WithRSAEncryption
2d:9b:4c:bd:0f:ee:ef:75:73:90:30:c6:6e:0f:b3:f4:72:92:
a4:46:eb:86:8d:1e:64:39:19:77:bc:6e:81:58:6a:8c:e6:9e:
ea:74:ed:c8:b8:ec:78:ac:74:c5:8b:f9:26:e7:e2:a0:95:2f:
a2:ed:e7:78:74:8a:ed:8f:d6:76:4f:6c:e0:29:3e:e6:6a:9e:
52:4e:e0:c9:00:ad:91:ed:af:ab:00:8a:65:d5:99:53:fd:86:
e7:63:bd:ef:d6:36:e8:7d:29:a5:f9:df:99:01:3e:72:aa:58:
c2:e6:6b:b8:8b:80:c2:1b:78:d5:1b:d5:a3:ed:cc:57:28:cf:
82:6e:1c:8c:87:01:b5:cd:8d:cf:70:9d:96:01:30:0e:b6:70:
e1:97:27:16:96:8e:ef:2e:d6:ec:2c:66:dc:68:f1:9b:5d:67:
18:ea:3c:3f:14:1d:54:f4:af:5a:8c:9c:6b:4b:67:46:18:16:
35:cf:3a:82:25:a4:ca:23:dc:07:d2:61:d6:48:7e:29:cc:29:
1c:16:53:64:92:fc:ea:c1:a4:b9:d9:ad:1a:6c:2a:7a:97:7c:
38:8d:00:13:7f:d1:4c:ef:d6:de:80:53:9b:84:f7:5d:0e:a8:
28:11:f5:50:b3:db:8e:65:8a:8b:17:97:c8:85:69:cb:af:cc:
0a:c4:fc:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org