Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RElpc79vbidcZEs9XUQuvSikAxY.roa
File: RElpc79vbidcZEs9XUQuvSikAxY.roa (raw, json)
Hash identifier: UbqoWNBgAidE7/ydEcsPSw4WReZ5/rdSgK496SfvT/M=
Subject key identifier: 44:49:69:73:BF:6F:6E:27:5C:64:4B:3D:5D:44:2E:BD:28:A4:03:16
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB88F84A1E0CE0DF0411358AC1AC8B3
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RElpc79vbidcZEs9XUQuvSikAxY.roa
Signing time: Tue 06 Feb 2024 18:40:18 +0000
ROA not before: Tue 06 Feb 2024 18:40:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216014
IP address blocks: 2a0f:b241:153::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b8:8f:84:a1:e0:ce:0d:f0:41:13:58:ac:1a:c8:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:40:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44496973bf6f6e275c644b3d5d442ebd28a40316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:63:6f:3e:56:0d:ea:ea:f5:d8:cb:3f:9d:66:
5c:a7:7d:49:94:a8:3c:11:dc:64:85:ca:42:b9:8c:
51:d5:d5:3d:7a:9f:f6:5e:7f:28:89:37:fc:6f:ef:
46:97:66:33:ce:94:2f:28:c2:c4:12:69:4d:95:d3:
e6:69:d3:f2:2b:c2:d4:df:fd:6d:83:eb:64:c1:06:
0f:0a:4a:82:43:7a:33:82:57:cc:2c:3c:e1:da:66:
3c:f9:2d:4a:19:eb:3d:84:66:98:49:b6:00:29:a7:
99:0b:9d:04:69:b3:ae:96:47:f0:ca:b5:be:f7:a7:
bd:48:59:00:c8:05:41:8c:d9:48:5c:17:f7:de:99:
5a:93:81:71:06:15:da:82:9b:a2:5f:21:ce:a3:4c:
df:44:39:32:2d:91:12:b8:9b:2f:82:75:7d:91:ce:
0e:7d:c1:50:08:f7:d1:fe:f8:ba:9d:cc:ba:5b:14:
70:0e:df:1f:05:06:8b:ec:69:80:79:82:72:b3:fc:
9e:86:df:68:ef:68:f1:e4:56:89:3c:7f:7e:92:41:
35:1c:80:dd:ee:bd:2d:30:6b:95:d6:bf:2a:5d:38:
b4:71:4e:df:bf:20:4f:7d:1d:a1:2b:69:7a:26:43:
63:80:99:09:ff:df:aa:7f:47:00:39:dd:68:aa:3c:
c9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:49:69:73:BF:6F:6E:27:5C:64:4B:3D:5D:44:2E:BD:28:A4:03:16
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RElpc79vbidcZEs9XUQuvSikAxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:153::/48
Signature Algorithm: sha256WithRSAEncryption
7e:46:19:37:4f:65:0e:0d:e6:24:de:6f:41:7d:84:98:a7:9d:
01:45:aa:d3:5b:7a:b2:e6:44:13:dc:77:d3:f6:32:94:f5:18:
cf:c0:f3:d5:7a:6d:cb:a5:ef:d4:8f:cb:23:b0:cb:f6:54:24:
48:d1:04:e8:34:80:dd:61:ee:a5:02:8c:51:d4:f1:c9:76:e0:
85:ee:6f:06:1e:f6:36:fa:38:b4:d3:bb:4e:dc:d9:5f:7d:d9:
8d:ba:bd:cf:cb:09:6a:e0:41:19:1a:c9:80:9b:16:d9:60:22:
ec:42:53:7d:4d:cc:7e:b7:7b:5b:76:06:2d:37:a3:50:8d:3f:
b8:9b:9c:46:0e:21:eb:a0:af:94:5c:a3:de:a6:c4:9d:aa:d5:
34:f8:74:a4:07:66:af:f3:1c:3e:40:3d:06:29:5f:74:3d:11:
6a:cc:bb:67:66:82:b4:44:64:23:71:34:7b:71:80:87:3d:c5:
90:63:29:1a:54:fb:bf:07:64:66:fd:a3:48:e0:b4:d1:00:c1:
b3:6c:f6:05:cc:ec:17:a5:e0:99:2d:6d:c0:b3:d6:74:bb:34:
74:fd:38:15:a6:e1:67:af:e6:72:2c:c9:aa:4f:85:86:12:ae:
da:a0:dd:ea:44:f1:b3:06:64:71:36:7c:2f:02:49:bf:8c:b5:
d9:90:92:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org