Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SiRyhb72SFJIowg2jvvqmlbkIFg.roa
File: SiRyhb72SFJIowg2jvvqmlbkIFg.roa (raw, json)
Hash identifier: XRdsiGxzVcvfJiq8fOcFUClqZEoMzArqLZ8Zx0CU/Gw=
Subject key identifier: 4A:24:72:85:BE:F6:48:52:48:A3:08:36:8E:FB:EA:9A:56:E4:20:58
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F094F3F674D37B65E6C9941A756B00
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SiRyhb72SFJIowg2jvvqmlbkIFg.roa
Signing time: Wed 07 Feb 2024 05:00:44 +0000
ROA not before: Wed 07 Feb 2024 05:00:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206439
IP address blocks: 2a0f:b241:f0::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:94:f3:f6:74:d3:7b:65:e6:c9:94:1a:75:6b:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a247285bef6485248a308368efbea9a56e42058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3e:77:12:ec:2b:d4:c4:81:2c:21:d5:78:ff:
e7:b3:c9:90:63:82:56:59:f7:7b:01:ff:63:4f:89:
88:b4:2e:23:71:06:03:43:6e:78:b4:fe:4b:db:1c:
76:c2:2a:39:21:2a:b1:5c:de:5d:5e:e9:9e:11:ef:
2c:75:59:c2:39:31:72:f5:44:b6:a2:66:c9:74:2b:
9f:a4:16:90:95:47:23:f3:95:92:04:d1:a9:5c:b0:
d8:04:c4:bf:e3:8d:c3:3a:4c:f1:33:44:3f:e1:1e:
12:7c:b0:8c:fc:bb:db:af:de:41:c9:23:b8:20:9d:
ac:b1:e4:9c:b2:cb:9a:4c:45:31:a9:75:18:69:29:
69:67:df:13:b4:50:1e:1d:17:0c:4e:07:fb:09:ff:
83:3d:f3:d7:6f:36:f5:08:51:be:d3:74:e8:ba:9a:
bf:51:38:f0:a5:7f:f5:bb:43:b4:51:4b:21:20:f5:
c5:ef:17:e1:1e:4e:2e:9f:b1:54:50:1f:62:8b:e1:
a9:3b:20:b9:cc:38:10:08:eb:60:51:72:b6:a6:46:
7c:ff:c9:7e:29:15:01:27:d6:67:9a:10:7c:48:cb:
a1:a2:47:29:14:27:fd:b1:f8:c5:f9:1b:5f:cb:0e:
31:ee:6f:60:bf:0a:5d:ca:83:ea:ee:b3:ee:07:58:
0f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:24:72:85:BE:F6:48:52:48:A3:08:36:8E:FB:EA:9A:56:E4:20:58
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SiRyhb72SFJIowg2jvvqmlbkIFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:f0::/48
Signature Algorithm: sha256WithRSAEncryption
03:67:4c:d7:83:3e:a8:93:67:23:5c:5e:a8:98:c0:d9:fe:36:
58:95:c7:54:ee:8f:07:dc:71:ba:81:af:f1:85:b5:6d:07:24:
53:1a:62:60:73:cb:7f:23:7f:22:13:40:f8:b2:d1:90:ed:98:
4f:0b:16:bc:1a:49:e2:55:43:67:0f:69:70:b4:34:d1:75:e3:
e3:26:4b:c4:2d:1d:9a:42:2f:d2:31:fa:4b:3e:ec:72:4c:21:
d1:8b:6b:b9:52:91:84:fa:54:f1:14:4e:8b:62:4a:e7:6e:7f:
a6:01:86:86:e7:a5:a7:ca:14:8f:d5:57:48:60:77:ce:96:33:
3e:3a:71:b3:a7:b3:cf:d9:78:b3:89:af:1e:75:6f:4d:bc:99:
c8:b0:29:e3:4d:a6:01:cb:6c:54:c6:38:04:f4:9b:c7:f0:26:
f2:fe:99:58:d9:db:78:c7:1e:67:b3:c1:87:30:71:b8:dc:8a:
1e:9b:cc:ca:3b:5c:b7:a9:e8:04:98:71:24:48:1a:fd:ef:9d:
cf:bc:4f:7f:f2:22:eb:21:7e:2e:45:2b:13:97:aa:a3:de:b5:
87:86:8c:7e:61:53:0a:44:c0:be:2a:95:f5:e1:a2:3b:87:28:
ad:79:9b:a8:f7:73:d0:17:f4:6c:41:6c:e2:46:cd:05:ee:61:
81:e5:31:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org