Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bRCLIFHLxssJCbQMQCfOiz3ZBpQ.roa
File: bRCLIFHLxssJCbQMQCfOiz3ZBpQ.roa (raw, json)
Hash identifier: HQgU7979MAhdR+yh+r3VJel8jJbls6lhFK1Ca+CssMI=
Subject key identifier: 6D:10:8B:20:51:CB:C6:CB:09:09:B4:0C:40:27:CE:8B:3D:D9:06:94
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0ACA3B5C7B9C80A364D26A6B30001
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bRCLIFHLxssJCbQMQCfOiz3ZBpQ.roa
Signing time: Wed 07 Feb 2024 05:00:50 +0000
ROA not before: Wed 07 Feb 2024 05:00:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212332
IP address blocks: 2a0f:b241:100::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:ac:a3:b5:c7:b9:c8:0a:36:4d:26:a6:b3:00:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d108b2051cbc6cb0909b40c4027ce8b3dd90694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:59:03:d5:04:e6:74:01:43:6d:3c:aa:4c:8e:
bf:9d:54:c9:59:1d:75:60:31:37:29:9c:26:62:80:
e1:13:11:62:4e:0f:6d:08:64:f0:d0:17:41:20:58:
39:01:fc:47:f1:a8:4a:0b:dd:c9:b4:72:09:e5:db:
be:ee:ca:fa:90:49:50:08:cd:b5:99:e3:1a:19:ca:
0a:7d:44:8b:9a:9c:78:2e:e7:2b:5e:17:1c:6b:54:
3c:b3:0b:fe:9f:55:48:63:58:4a:49:df:51:20:c4:
b5:3b:c5:c2:27:9c:a3:93:f1:15:78:66:5f:37:b6:
53:be:ec:d4:c6:fd:5e:e8:6f:a9:74:8c:0b:b1:91:
e6:2b:e8:90:54:aa:33:12:18:08:15:ad:74:15:3a:
13:79:71:57:d9:d7:6e:4f:2c:2d:05:ce:8c:df:b9:
7b:40:4d:c5:37:f6:a5:b9:6f:4c:5c:a4:67:fd:18:
ca:4d:be:3d:5b:01:0e:04:d9:b8:fd:00:c7:77:11:
64:8a:e5:87:80:6d:8c:cb:fa:0f:b9:7f:f3:5f:ed:
c5:70:66:93:c4:2e:c8:01:c3:2a:7b:5b:bb:c4:5c:
6f:d3:bd:ce:e2:79:9a:73:b1:2b:df:0f:92:94:ff:
a0:6e:07:aa:5f:9d:89:88:97:b8:3f:9f:29:63:2f:
25:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:10:8B:20:51:CB:C6:CB:09:09:B4:0C:40:27:CE:8B:3D:D9:06:94
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bRCLIFHLxssJCbQMQCfOiz3ZBpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:100::/48
Signature Algorithm: sha256WithRSAEncryption
2e:e3:76:36:28:48:50:c6:13:93:8d:1d:2f:09:2a:d1:cb:25:
8b:6d:0d:75:06:35:98:d8:bc:25:54:86:ab:d9:72:0a:12:3b:
1b:26:78:ed:88:51:9e:ec:5d:4e:b9:3d:16:2d:56:39:dc:d4:
3b:25:90:20:7d:e2:d4:a0:23:7a:54:c3:6f:79:6e:60:14:71:
e4:4b:25:c6:1f:1f:66:5e:db:34:be:59:4b:be:48:a6:75:02:
6d:68:fc:31:f0:10:db:95:99:01:05:92:e2:6f:4e:fc:8a:00:
df:97:89:03:71:7d:e2:a6:9c:34:f5:2d:4b:3b:25:d8:bc:77:
93:59:6d:43:0d:72:85:e4:4f:8b:cd:18:1c:42:68:2a:4e:4a:
0a:63:e4:47:a9:91:b8:8f:eb:41:c6:1f:9c:38:91:ed:06:5c:
cd:74:40:1b:09:e7:d5:58:b4:0a:7a:ae:07:d8:9a:4c:84:17:
9f:b7:0f:d5:fd:f0:61:4a:e9:d1:dd:51:1e:05:ac:5e:85:4d:
0d:53:83:aa:5b:02:cf:fc:69:1b:79:00:04:8b:4d:71:fc:8f:
e7:4d:81:6c:d6:05:92:b5:84:77:db:7b:b3:00:14:bf:53:1a:
a8:32:76:6b:e9:73:e9:51:47:6b:c5:c8:47:94:95:f6:d0:59:
06:f0:2a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org