Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PN50KZnNML6fRYMDimvJpLPRRpk.roa
File: PN50KZnNML6fRYMDimvJpLPRRpk.roa (raw, json)
Hash identifier: Uj13YUeF09dOunMqMm+RV+28LyhKcelhqPP9wlwoPmI=
Subject key identifier: 3C:DE:74:29:99:CD:30:BE:9F:45:83:03:8A:6B:C9:A4:B3:D1:46:99
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F087789B5415FCAB6A3B68EF9A41B5
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PN50KZnNML6fRYMDimvJpLPRRpk.roa
Signing time: Wed 07 Feb 2024 05:00:40 +0000
ROA not before: Wed 07 Feb 2024 05:00:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200936
IP address blocks: 2a0f:b241:d9::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:87:78:9b:54:15:fc:ab:6a:3b:68:ef:9a:41:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3cde742999cd30be9f4583038a6bc9a4b3d14699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:51:86:ba:03:1d:66:df:cc:fd:fe:f3:d7:59:
17:4c:0c:6d:42:dc:57:4e:3f:90:b2:85:d2:5c:6b:
e0:90:19:82:c1:e7:79:95:17:2a:ee:ec:9e:97:c6:
98:96:19:ac:a4:9e:35:cc:60:e1:6d:e0:5d:83:73:
9e:99:89:1f:30:9f:42:88:b2:f7:0a:3e:85:9c:c3:
39:d2:9c:3a:f8:2d:cd:d2:06:b5:c8:83:21:e3:2d:
c4:0f:a5:e9:03:5b:b6:48:42:ab:da:0e:55:ba:0e:
d1:eb:4a:04:bd:4c:e1:46:04:08:4d:63:ca:10:c7:
ae:90:58:cf:a4:54:4a:5b:55:01:e3:19:0e:6d:d8:
cb:00:8b:89:bf:c1:67:eb:1a:71:e0:82:b4:70:fc:
90:ed:e4:b1:f7:7e:83:d9:90:35:5a:26:38:8f:d8:
4e:d6:1d:f6:bd:94:87:d9:ec:52:5c:d6:d4:8e:81:
f3:53:6c:52:2b:2b:bd:89:58:6b:14:6e:08:9c:ee:
1f:90:16:85:7e:c9:53:e8:a7:a4:f4:8f:0d:30:d6:
61:90:0e:c2:60:b8:7e:e8:86:75:c5:dc:d8:25:f3:
64:53:92:43:43:a4:c9:10:3f:cf:40:61:96:4f:57:
c2:bb:84:23:46:86:a8:a4:78:c9:a9:ef:88:5e:a6:
bc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:DE:74:29:99:CD:30:BE:9F:45:83:03:8A:6B:C9:A4:B3:D1:46:99
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PN50KZnNML6fRYMDimvJpLPRRpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d9::/48
Signature Algorithm: sha256WithRSAEncryption
28:c6:f8:0d:65:07:9d:79:f5:86:10:89:50:cf:2c:6d:71:69:
27:04:16:80:ca:c2:07:b9:d3:fa:f3:3e:47:f6:bb:62:48:75:
f4:77:ea:cc:5b:a9:ef:55:a6:8d:23:07:a8:c8:73:e7:a8:e7:
64:ca:ae:1e:e2:3d:5d:43:bf:84:1c:37:2c:b0:c0:05:8b:5d:
32:e0:a8:ce:71:a2:0e:a6:34:35:1d:9c:90:f1:54:ce:76:aa:
69:c8:ea:61:0d:d1:ce:f7:9a:20:ff:00:c3:07:57:c4:86:b7:
18:97:89:4a:e9:1e:d7:37:35:0b:97:e4:56:e6:d4:10:1d:5b:
ab:50:a0:b6:d8:ce:06:28:84:cd:b1:d3:ef:f9:8a:08:a9:19:
6e:88:95:35:7b:56:87:15:ba:a4:d0:d4:1b:2b:12:af:4f:7e:
61:06:87:38:05:9a:d2:4e:84:07:a1:fb:d9:ed:aa:7c:a0:67:
13:a6:ac:b4:d2:6b:6c:d0:e7:2b:ad:bf:1e:02:8f:67:00:58:
14:78:a4:61:d9:e5:3b:25:20:b0:d0:97:fa:e1:84:70:30:37:
f6:5d:ec:1e:f6:b0:48:db:99:d3:d3:ea:ba:68:38:fe:47:f4:
d6:b3:df:51:75:87:c8:ed:df:62:bb:24:bb:27:1f:8e:60:db:
ca:e0:2d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org