Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ZJ0xBmarhG7ke-Krbkqp1o1YZf4.roa
File: ZJ0xBmarhG7ke-Krbkqp1o1YZf4.roa (raw, json)
Hash identifier: XSOjJ56OhmdXJxrnnGRmVscHQXqtsdbBiLmaCgAS66E=
Subject key identifier: 64:9D:31:06:66:AB:84:6E:E4:7B:E2:AB:6E:4A:A9:D6:8D:58:65:FE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA81010C5EE8E00482C087FF4FA2CC8
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ZJ0xBmarhG7ke-Krbkqp1o1YZf4.roa
Signing time: Tue 06 Feb 2024 18:22:16 +0000
ROA not before: Tue 06 Feb 2024 18:22:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199929
IP address blocks: 2a0f:b241:91::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:10:10:c5:ee:8e:00:48:2c:08:7f:f4:fa:2c:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:22:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=649d310666ab846ee47be2ab6e4aa9d68d5865fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cf:0c:db:6b:a1:4e:b6:76:fa:24:d1:67:f9:
c1:b4:11:fb:de:25:fe:55:c4:6a:86:56:4c:00:d1:
da:2d:9f:c6:7b:d2:51:d7:43:e9:ad:fb:cf:6a:50:
d0:c1:55:12:ef:e1:d5:87:67:0b:9e:b0:85:88:ec:
63:fc:f9:4d:f6:91:bd:03:e0:a9:e4:6f:7f:2c:23:
35:78:d4:d9:cc:87:0b:fc:91:50:4d:5a:cd:4a:c6:
80:66:5e:fc:53:3a:f2:41:82:9a:fc:18:9b:61:d9:
e5:8d:5b:a7:51:64:d6:8a:39:70:06:1e:44:76:a0:
3b:94:11:dc:eb:be:94:42:b9:c5:c5:81:6d:c2:9d:
7f:38:de:e0:3c:8c:94:f6:ca:03:27:7b:bc:6f:13:
4f:f0:91:64:af:57:e2:f3:63:64:df:b9:ba:76:13:
3f:85:d4:1e:a6:90:d7:98:05:c7:d6:76:ba:94:cc:
a5:80:7c:e8:38:f7:2b:85:58:4f:ba:1f:0f:43:09:
35:3b:67:0f:b0:4c:bb:d7:e2:76:a3:81:9b:c1:ef:
bc:b9:f6:4f:35:f2:e9:91:a3:f9:ea:db:75:9c:42:
e8:dc:a2:63:d3:64:a8:48:b2:15:9b:73:fb:4b:d1:
2b:9c:c7:d9:3f:37:dd:25:67:b6:61:ed:99:8b:02:
72:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:9D:31:06:66:AB:84:6E:E4:7B:E2:AB:6E:4A:A9:D6:8D:58:65:FE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ZJ0xBmarhG7ke-Krbkqp1o1YZf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:91::/48
Signature Algorithm: sha256WithRSAEncryption
05:01:d0:d8:6f:bf:e0:f6:38:6f:03:24:b6:8f:8a:58:be:f6:
73:97:09:6e:bc:20:7f:3d:be:16:71:5c:e2:79:da:03:cc:9e:
53:57:ac:9d:b7:21:9f:2b:92:2d:ef:94:d7:56:ce:12:4c:dd:
a9:e6:15:f7:2f:db:84:89:8c:d7:44:ed:df:8c:c6:fa:47:87:
bf:d5:e3:1a:55:c2:1f:a3:42:7e:88:ac:23:bb:29:aa:1b:dc:
58:54:c3:a4:cf:0f:86:df:9a:ae:30:50:e9:9c:74:dc:09:1a:
af:96:d4:71:a0:56:0c:82:c1:7b:98:15:32:97:0f:53:a3:87:
33:df:25:76:30:80:52:c1:47:00:d9:9b:a9:58:08:83:19:bc:
9a:82:cf:41:01:24:b3:c2:cf:91:a7:7f:7d:aa:9a:5e:47:65:
f0:d3:ab:3c:5d:f8:bb:2e:20:0a:fb:5c:8e:72:57:1d:bd:31:
29:94:15:37:ae:75:04:0e:0f:3c:5a:a5:7a:19:c0:ce:17:6e:
e8:1d:6c:8b:f0:87:67:93:cc:56:97:03:0c:a9:a5:d8:1b:dd:
f2:13:88:1d:bd:a1:33:1c:6b:56:21:bd:84:19:cb:ec:09:b0:
04:93:fd:53:1b:f9:2b:ff:39:4d:ec:9f:85:cc:f9:a2:b5:76:
3c:94:d9:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org