Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/J7TKG7hDiWmhtBTVTJ5fy4hsv50.roa
File: J7TKG7hDiWmhtBTVTJ5fy4hsv50.roa (raw, json)
Hash identifier: w1Cgq9r9mz+4GvXuNt+Pb3AdD4+hAcI05umFY+gl2+E=
Subject key identifier: 27:B4:CA:1B:B8:43:89:69:A1:B4:14:D5:4C:9E:5F:CB:88:6C:BF:9D
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0B23760ADFA820CBBD76AA3373FD5
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/J7TKG7hDiWmhtBTVTJ5fy4hsv50.roa
Signing time: Wed 07 Feb 2024 05:00:51 +0000
ROA not before: Wed 07 Feb 2024 05:00:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215614
IP address blocks: 2a0f:b241:4d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:b2:37:60:ad:fa:82:0c:bb:d7:6a:a3:37:3f:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27b4ca1bb8438969a1b414d54c9e5fcb886cbf9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:f4:f8:16:76:1d:d8:38:ba:1b:f0:a4:d6:76:
f3:d2:30:71:86:9a:b4:89:28:c0:ab:d4:9a:02:60:
5f:cf:c4:3e:fb:3d:48:00:e4:aa:49:74:30:32:ba:
9c:7b:58:18:85:e6:07:7c:45:a6:b4:4e:cd:16:a2:
c4:a6:c6:07:71:16:d0:bf:9f:b7:6a:86:ef:48:32:
e7:ea:d2:f5:3d:cb:09:cd:8b:82:ff:52:1c:c7:cc:
cc:e4:e3:33:f7:f7:ae:1b:98:74:09:9c:d6:e8:75:
63:49:25:d0:05:cc:82:01:89:83:19:11:cd:4c:c2:
6a:89:12:ff:b3:22:65:b7:44:76:fa:e9:46:e3:23:
50:ad:a7:df:ba:84:eb:06:f9:fa:64:13:75:5c:5c:
55:66:c3:cb:57:bf:39:34:a3:d4:5f:a2:d9:4b:29:
3b:02:80:46:4f:61:f9:97:df:be:8a:8f:2f:cc:6a:
02:25:20:db:a1:4c:06:e6:a4:98:04:71:df:84:7d:
b7:1d:ad:7c:20:a4:74:a3:9c:cb:df:6c:dd:5c:8d:
5f:fb:67:21:af:d9:69:9a:6d:b0:32:1f:d1:f5:4c:
6d:89:37:12:c2:11:a0:4b:1f:12:2c:19:e9:c8:4e:
41:51:94:77:af:fb:0d:28:ab:24:2e:1d:4e:4f:2f:
ff:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B4:CA:1B:B8:43:89:69:A1:B4:14:D5:4C:9E:5F:CB:88:6C:BF:9D
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/J7TKG7hDiWmhtBTVTJ5fy4hsv50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:4d::/48
Signature Algorithm: sha256WithRSAEncryption
42:93:1e:1c:91:87:bb:6c:b5:df:d5:19:e6:d9:33:47:40:8a:
a4:c9:4c:26:30:d5:0a:d2:5d:67:48:f5:04:bc:3a:16:74:8c:
46:75:0f:f6:44:16:81:09:f4:df:71:84:b7:b6:c1:f7:94:30:
9b:a5:76:ae:64:04:a5:3e:bb:e1:32:f4:04:98:7c:12:43:0e:
fa:89:b5:61:ff:94:f8:5c:b4:e5:25:bc:84:6e:d9:20:f2:0e:
db:b1:3f:bd:32:e4:b1:35:76:ce:c3:03:14:3a:a7:2f:d3:c0:
94:17:64:63:9b:52:e0:8b:e8:ad:7b:70:21:5a:ef:ed:b7:2c:
d0:2d:99:f6:04:13:ca:ea:8c:6f:df:77:ec:54:e2:34:66:1a:
1a:72:f7:9f:b1:28:b1:06:2c:7d:8c:86:84:1c:6e:a9:9b:43:
d8:c7:18:fb:8c:e3:59:11:ed:31:7a:cf:3c:5f:39:01:af:aa:
cc:82:f3:2e:e7:ca:0b:c4:a1:e8:1c:bc:8c:ff:de:1b:25:e8:
a9:36:b8:06:ea:a7:eb:07:64:f9:50:cd:23:62:a3:e0:81:55:
9a:c1:3f:5e:6b:c4:88:f0:6e:ee:72:2f:f0:bb:37:f6:b4:48:
1c:bf:18:21:a9:51:29:8b:5f:85:dc:9a:39:82:53:07:c9:8e:
35:d4:8c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org