Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/G8L25yYEpEO2grNHsBF-CYdFme0.roa
File: G8L25yYEpEO2grNHsBF-CYdFme0.roa (raw, json)
Hash identifier: YXVtugiipjNdGJeJGq16sPRpKhiy0dKPVLvF8oQ+XEk=
Subject key identifier: 1B:C2:F6:E7:26:04:A4:43:B6:82:B3:47:B0:11:7E:09:87:45:99:ED
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACAAA1599A5FCA07527B693B34D7E4
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/G8L25yYEpEO2grNHsBF-CYdFme0.roa
Signing time: Tue 06 Feb 2024 18:27:18 +0000
ROA not before: Tue 06 Feb 2024 18:27:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212799
IP address blocks: 2a0f:b241:102::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:aa:a1:59:9a:5f:ca:07:52:7b:69:3b:34:d7:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1bc2f6e72604a443b682b347b0117e09874599ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7f:d9:c3:e6:5f:7f:42:a1:af:ab:7c:3e:91:
df:47:94:c3:82:99:07:b7:ae:66:13:62:75:99:ed:
2c:f8:8f:f0:f4:24:4e:83:2c:f6:fe:02:f5:08:e2:
3d:1c:e7:8b:4b:1d:66:f5:69:06:2b:23:b7:31:f0:
02:39:25:7c:3e:44:d6:2c:3e:da:5c:be:85:35:42:
a7:85:b5:c5:88:64:35:70:c5:b8:4a:81:31:b3:2f:
7b:6f:f8:f5:58:99:86:f7:6d:cd:74:e6:1e:81:2f:
d5:86:87:b4:17:e1:33:3b:a8:c8:33:8b:a3:0b:4a:
25:7a:59:7c:3c:f4:29:05:b1:a6:5a:d7:86:ab:2b:
03:ee:09:5d:c4:b5:99:03:e7:fd:45:c5:5a:c7:9f:
7e:1c:02:50:9b:b0:55:67:41:e1:6b:1a:3a:8e:18:
f4:a1:f1:d9:97:78:0b:a9:00:ac:74:e9:8f:e7:02:
1c:30:d2:ff:c8:10:54:8d:df:61:06:10:09:5f:9b:
d4:1b:63:1e:af:61:e8:73:53:35:d9:f0:81:3c:f1:
91:f6:f5:23:dd:35:4e:c0:16:7e:6a:a5:8f:19:b1:
96:9e:a8:27:73:4a:a2:e8:e8:9f:55:db:41:46:38:
f2:6b:53:52:68:4c:a7:36:ea:8e:79:16:30:4c:11:
e9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C2:F6:E7:26:04:A4:43:B6:82:B3:47:B0:11:7E:09:87:45:99:ED
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/G8L25yYEpEO2grNHsBF-CYdFme0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:102::/48
Signature Algorithm: sha256WithRSAEncryption
77:9b:29:23:c0:2e:26:9d:a2:9b:41:2c:c4:de:ca:af:47:a1:
f1:15:ba:6b:75:9a:85:89:bc:ff:d1:59:c7:0f:10:2c:c2:d4:
74:5a:12:71:12:c8:e9:44:18:05:f8:5f:d9:f3:d6:66:06:e2:
9e:77:67:d7:8e:44:1e:a3:74:f9:29:d2:73:b0:80:6d:eb:d0:
c1:ec:4e:98:2f:6e:b6:59:a4:cd:b7:aa:78:80:d6:95:c2:22:
54:a6:77:82:41:40:ae:4a:b4:ae:51:f6:d4:ef:6a:f2:ab:42:
26:dc:c2:c2:f4:f4:ed:e8:9a:34:19:ce:9a:47:61:2f:39:80:
5a:ee:6f:03:23:17:af:ea:a4:be:53:93:7b:98:ce:53:a3:3c:
6c:27:d4:27:da:ae:31:37:a6:dc:c9:95:f9:5f:cb:7d:dc:38:
ca:be:07:84:3b:fb:5f:a8:d5:29:9a:9a:4b:89:f5:55:d9:d9:
23:25:0e:3c:52:08:ca:82:09:03:37:f8:9c:10:e8:a4:27:7f:
03:88:6a:9c:73:30:3f:27:81:89:f8:59:4f:08:b1:8f:1a:06:
57:8a:de:f2:9f:04:46:e8:d2:7e:e1:ce:9c:83:49:c3:4a:c9:
90:de:48:c0:b0:56:d9:2d:bb:b3:76:42:d5:b0:f7:dd:ea:df:
06:58:79:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org