Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/V5ivQGfZkEhwJQ2_MrFI7J0teKY.roa
File: V5ivQGfZkEhwJQ2_MrFI7J0teKY.roa (raw, json)
Hash identifier: 7HdSKvMhIMKicm4JiOd9iQG/N4utwqsSgbM4yciUOUQ=
Subject key identifier: 57:98:AF:40:67:D9:90:48:70:25:0D:BF:32:B1:48:EC:9D:2D:78:A6
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F06E5E049F0BD862BB4CBF01F0620F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/V5ivQGfZkEhwJQ2_MrFI7J0teKY.roa
Signing time: Wed 07 Feb 2024 05:00:34 +0000
ROA not before: Wed 07 Feb 2024 05:00:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197867
IP address blocks: 2a0f:b241:75::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:6e:5e:04:9f:0b:d8:62:bb:4c:bf:01:f0:62:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5798af4067d9904870250dbf32b148ec9d2d78a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4a:ef:a8:8d:b1:fe:d5:51:57:ba:26:65:57:
91:dc:b5:00:70:1f:32:f7:09:6b:26:b2:9b:a0:c6:
33:63:85:89:97:7c:2a:35:bb:7d:5f:d3:4a:50:2d:
21:ed:6a:92:a9:18:39:23:fd:29:df:4f:1f:e6:99:
33:84:cd:37:c2:62:0f:82:32:f5:46:6c:8a:ee:5d:
4d:fb:10:4a:5a:62:1e:ff:60:45:9d:33:34:51:84:
30:af:b9:23:53:47:3d:fd:7a:4f:31:b0:c3:3a:fe:
da:f4:76:2a:91:91:de:a2:cc:6e:05:5a:2f:07:55:
bb:17:da:10:01:44:3d:ca:59:ca:df:a3:24:42:63:
4c:d2:1c:de:32:5a:a8:3b:eb:33:19:72:9a:9e:da:
08:fb:09:de:61:e1:b8:90:2b:35:d0:01:3b:ea:2e:
72:1d:96:f8:f2:95:8a:f0:44:df:25:de:7b:2e:38:
fa:b9:01:35:12:19:15:b0:e0:b2:c6:98:90:cf:96:
75:d3:26:9e:de:ff:12:75:d7:fb:d2:13:22:ef:61:
fc:24:a1:64:86:8e:3b:dc:bf:89:03:ad:6b:22:29:
b2:2d:b5:69:3d:2e:ce:e1:c6:0c:3b:3a:c1:c9:d5:
75:eb:05:6e:7c:1e:38:5c:31:3b:47:5e:b3:1a:5a:
f8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:98:AF:40:67:D9:90:48:70:25:0D:BF:32:B1:48:EC:9D:2D:78:A6
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/V5ivQGfZkEhwJQ2_MrFI7J0teKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:75::/48
Signature Algorithm: sha256WithRSAEncryption
68:1a:90:a3:c4:6d:d7:f3:90:d2:e2:82:95:24:9c:3f:4f:a2:
a3:95:c6:8e:4d:50:a7:17:84:77:02:44:9a:47:a6:25:7f:a4:
33:fb:a3:cb:a3:01:70:4f:91:41:b1:77:d7:e5:54:e6:c6:a7:
a5:0e:bc:e0:7b:42:f9:5d:67:f8:49:09:55:69:17:bb:10:c9:
6e:ab:34:c0:08:36:95:5f:90:7f:b8:ae:51:54:78:7d:24:6d:
38:0c:42:82:03:73:c0:b2:48:26:2f:a4:95:29:7b:fe:bd:e7:
b7:0d:0a:4a:c2:43:90:e7:f4:ad:b0:dc:b1:46:3d:11:fa:cd:
ed:02:8c:38:2f:8d:e3:f8:72:db:7d:11:e0:17:31:26:15:51:
2b:46:36:20:86:a2:d7:41:88:c0:d9:4e:1b:89:66:5c:90:e8:
1f:3a:64:c9:5d:16:e6:04:91:e2:f5:94:78:0e:a8:e8:1c:95:
85:b0:54:cc:90:ff:c7:b1:ba:27:68:6e:4d:4f:f8:36:b1:e2:
1e:1e:9c:52:23:bc:e6:83:18:01:5c:00:91:ab:2f:d3:bf:97:
38:fc:69:7a:1b:30:8f:6b:be:8c:20:15:92:e8:f5:5b:e7:29:
95:31:27:60:1b:c8:9f:47:31:87:d8:ff:1d:e2:93:f3:a8:73:
f4:94:80:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org