Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/VrKBetv06epCsq8UNv0ew39z9c0.roa
File: VrKBetv06epCsq8UNv0ew39z9c0.roa (raw, json)
Hash identifier: mdNIEmRPAefmJFFSFRtLqySKbA+n0oyG0jOGxfihr1Y=
Subject key identifier: 56:B2:81:7A:DB:F4:E9:EA:42:B2:AF:14:36:FD:1E:C3:7F:73:F5:CD
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7EBE9433AB14569278E8099F983A65B2
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/VrKBetv06epCsq8UNv0ew39z9c0.roa
Signing time: Tue 06 Feb 2024 14:07:15 +0000
ROA not before: Tue 06 Feb 2024 14:07:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200454
IP address blocks: 2a0f:b241:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7e:be:94:33:ab:14:56:92:78:e8:09:9f:98:3a:65:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 14:07:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56b2817adbf4e9ea42b2af1436fd1ec37f73f5cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ef:17:29:8f:5c:be:7d:c1:26:5e:f2:f0:9c:
eb:15:a8:e1:d8:f5:1d:41:a8:89:3e:9b:21:97:00:
8f:bc:33:bd:a0:03:e7:ea:43:94:37:bc:81:53:24:
88:25:8a:fb:79:06:fb:bf:f6:1e:5c:78:5e:d8:3d:
85:02:16:1f:df:12:32:c8:1d:0b:4e:76:c9:09:e0:
59:c3:68:5a:3a:b6:8b:1a:ab:57:7d:63:c4:90:74:
86:d7:77:e5:06:03:76:2e:7b:81:18:d6:22:15:d7:
2b:c4:26:bf:5d:dc:00:7c:4c:61:08:27:cd:f8:47:
b8:60:86:61:78:15:3e:92:74:b8:69:ce:ff:c5:cb:
d1:24:5e:31:57:c7:69:66:57:c5:8f:e3:81:ee:b6:
f0:4e:69:d0:f9:ca:21:b5:7f:96:28:9f:20:d3:00:
15:14:5c:70:0c:37:ef:3d:f5:bd:77:0a:65:a5:db:
4a:b9:62:d4:2b:36:5c:74:b1:84:88:f3:ce:47:c9:
4a:5a:48:66:4b:4f:f3:7c:4d:03:60:4e:cc:88:d2:
20:b2:64:e3:90:03:a9:60:8d:bf:18:71:cd:ee:c1:
ed:6d:d5:ca:0a:ea:e4:c0:df:76:5a:02:d5:5f:9f:
27:9a:f3:b9:19:5e:07:b4:07:2a:2a:8c:6b:d6:3b:
9e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:B2:81:7A:DB:F4:E9:EA:42:B2:AF:14:36:FD:1E:C3:7F:73:F5:CD
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/VrKBetv06epCsq8UNv0ew39z9c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10::/48
Signature Algorithm: sha256WithRSAEncryption
29:01:0d:6d:1c:54:87:60:66:9a:cb:d7:93:3f:55:10:41:80:
bd:ec:45:af:5e:6e:58:06:db:f4:c9:da:23:98:4a:c7:3b:3c:
89:44:65:c8:10:ef:0e:27:06:c9:8f:9c:05:93:c1:8e:55:e8:
4a:6a:b0:aa:2f:26:68:cf:00:a3:49:c1:ce:a9:2d:66:07:89:
96:25:03:28:71:f6:54:98:99:2b:5c:06:8d:4b:1f:1a:c5:71:
6a:2b:4a:16:3f:65:f1:0b:8e:89:47:00:96:e1:6c:a8:8f:ee:
7d:62:fc:6b:7f:30:2e:8d:28:1d:43:7e:4c:95:d9:b2:7e:97:
e9:fc:83:36:15:37:89:a5:79:d9:8c:4b:a2:2f:1e:17:ab:b9:
4e:05:0e:1c:15:08:ab:df:cd:86:67:c9:da:94:e7:6c:49:2d:
ca:92:ba:ca:2e:a1:b4:e3:f8:ae:15:1b:32:3f:a0:82:0d:1e:
85:b6:ea:d5:af:49:48:96:5d:8e:58:53:15:f8:34:c1:b1:8c:
cb:7b:45:71:2d:c3:52:56:b7:c2:07:95:58:fe:a4:e1:7e:8f:
7a:75:c7:8e:e2:e0:44:79:e1:2d:8c:58:30:e2:e9:ce:f9:90:
7c:f7:cf:e2:2a:30:d2:37:d2:18:61:79:06:22:5f:df:51:d0:
1d:ae:ba:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org