Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/JHXohaupU5jKehxK1IWaM7B_2LE.roa
File: JHXohaupU5jKehxK1IWaM7B_2LE.roa (raw, json)
Hash identifier: r2rqrrBqD0Z+dgV2fsGAGxg1+GaeDtO2u+HCNudzRKY=
Subject key identifier: 24:75:E8:85:AB:A9:53:98:CA:7A:1C:4A:D4:85:9A:33:B0:7F:D8:B1
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F8D824AFF48727401995C2F37EB412C
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/JHXohaupU5jKehxK1IWaM7B_2LE.roa
Signing time: Tue 06 Feb 2024 17:53:16 +0000
ROA not before: Tue 06 Feb 2024 17:53:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215638
IP address blocks: 2a0f:b241:23::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:8d:82:4a:ff:48:72:74:01:99:5c:2f:37:eb:41:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:53:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2475e885aba95398ca7a1c4ad4859a33b07fd8b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:31:a9:11:00:aa:99:c8:64:b1:96:48:65:9d:
2e:55:4e:e4:67:de:26:f3:ab:92:aa:64:bb:f1:d7:
89:eb:58:69:67:ea:66:92:d2:3e:2e:2d:9d:13:a4:
cb:01:96:d8:15:f6:9c:bf:58:56:5e:67:d6:76:43:
6e:84:06:29:96:ba:1b:63:f4:1d:f1:07:6c:58:c7:
25:c1:23:ac:76:17:8e:56:eb:30:f2:13:7e:51:53:
58:e5:71:90:9a:f6:d3:5e:bf:59:4c:74:1e:da:d6:
53:6a:fe:14:34:df:81:84:5e:c6:93:f9:f0:44:5c:
9f:9d:28:df:9e:63:9c:7d:89:52:80:e8:29:26:f5:
7a:99:2c:db:89:6e:6f:bb:64:9e:b6:9b:c3:e8:d0:
01:70:73:0d:0e:62:76:bb:3d:23:1f:3f:b8:48:77:
e2:37:c1:6e:82:89:e9:6b:27:af:69:e9:db:4b:be:
54:64:f7:cd:2c:88:bc:0d:e3:26:b0:b9:75:e1:52:
54:dc:62:17:6e:9e:f8:0a:83:38:92:8c:60:d0:e1:
62:80:d7:c4:e0:17:80:96:9e:f1:18:c6:af:4f:cd:
07:eb:65:4b:29:f0:94:57:e0:60:a0:fb:9d:f2:77:
d0:87:6d:16:bb:d6:f0:b3:2f:97:c8:49:55:67:52:
d8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:75:E8:85:AB:A9:53:98:CA:7A:1C:4A:D4:85:9A:33:B0:7F:D8:B1
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/JHXohaupU5jKehxK1IWaM7B_2LE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:23::/48
Signature Algorithm: sha256WithRSAEncryption
5a:67:b8:fa:d9:53:12:89:4f:1d:4b:f5:b8:8d:28:8f:91:42:
7b:33:9a:54:54:f8:7f:e5:5f:f2:f9:b5:91:48:a9:fe:b5:6f:
b5:4d:e8:d8:19:0d:36:d9:91:f9:cb:13:a2:e6:68:a0:66:d4:
c7:c9:ca:2f:3d:b7:94:72:ea:d9:fe:69:b8:b4:ed:de:73:36:
4b:b7:56:66:cc:60:20:58:e5:63:a4:5b:74:49:3f:0c:2b:cb:
dd:a4:44:40:e0:c5:20:39:be:f9:0c:d9:98:3f:45:69:e9:14:
da:9c:22:0a:b6:60:2a:9e:82:a5:2f:08:00:c1:c0:38:a8:17:
f5:5a:0d:c1:36:86:df:67:d6:6d:53:7f:b7:b7:0a:0e:1a:4c:
f6:39:ce:b4:8d:43:e1:22:40:90:7c:51:2d:c2:5a:29:11:f9:
fe:5a:4a:19:21:a7:6f:d1:e7:93:9a:8f:7b:a4:c5:1a:70:22:
db:4f:2a:a9:02:95:3d:1d:62:14:14:59:53:b5:cc:81:cb:04:
96:db:52:d8:d5:95:79:cc:4a:7d:47:63:f8:2e:81:b9:8b:dd:
24:af:fa:91:0f:26:4e:f1:c8:20:09:ac:b3:6a:66:ac:5e:fc:
8e:77:1b:0d:5a:01:df:7b:f8:ea:db:a7:37:05:0e:23:b5:c9:
67:ba:88:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org