Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/crb7afLaaRCDpyMjjeLfUS8b3lk.roa
File: crb7afLaaRCDpyMjjeLfUS8b3lk.roa (raw, json)
Hash identifier: CsLJD7JFscGwBgDtWZD8IxVZfPSG/Syui5kHp1qP+DE=
Subject key identifier: 72:B6:FB:69:F2:DA:69:10:83:A7:23:23:8D:E2:DF:51:2F:1B:DE:59
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA7230A005601B56FD44DF552FD551F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/crb7afLaaRCDpyMjjeLfUS8b3lk.roa
Signing time: Tue 06 Feb 2024 18:21:16 +0000
ROA not before: Tue 06 Feb 2024 18:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198942
IP address blocks: 2a0f:b241:7c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:23:0a:00:56:01:b5:6f:d4:4d:f5:52:fd:55:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72b6fb69f2da691083a723238de2df512f1bde59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c2:68:e5:26:df:e9:2c:b9:60:05:55:75:8b:
e2:f4:68:48:ae:ab:4c:f8:e8:e5:39:68:6d:3c:3b:
6f:7b:e3:20:98:27:0d:a1:4e:27:8b:cc:0f:6b:a4:
27:f6:a4:96:9b:10:cf:3c:a7:93:f2:a1:91:b0:ec:
08:1a:a4:a3:c0:92:50:b3:92:4e:3a:62:00:82:8a:
42:eb:ac:e2:ef:05:76:29:30:c4:06:d4:0a:30:2f:
db:a2:d5:ea:53:b8:8b:f1:41:97:6d:45:6c:25:62:
a5:b0:83:7b:c1:de:15:b7:8a:32:4d:ec:2a:83:93:
56:a0:ab:df:01:3e:81:72:92:46:92:b7:54:00:79:
75:4a:c1:41:5f:08:97:16:15:4b:9a:81:b4:e7:43:
8d:3d:d9:2c:15:ba:ae:59:15:74:dd:93:52:46:75:
ca:a8:99:50:61:a6:23:83:fb:21:68:53:09:ba:74:
01:96:d3:58:18:e5:18:c1:3c:04:b9:8e:e5:52:f3:
03:71:9e:71:58:bb:6e:09:f0:b1:de:b7:9b:3f:25:
e1:86:55:7b:35:9a:d7:85:08:5f:2a:b5:d9:ea:2b:
f7:3a:48:d5:86:f8:5b:57:78:17:af:a8:17:db:55:
c0:ee:57:2d:43:40:bd:d7:da:e4:fe:8f:bb:2b:9f:
0e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B6:FB:69:F2:DA:69:10:83:A7:23:23:8D:E2:DF:51:2F:1B:DE:59
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/crb7afLaaRCDpyMjjeLfUS8b3lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7c::/48
Signature Algorithm: sha256WithRSAEncryption
04:36:3d:bc:21:eb:bf:47:30:90:4d:ae:51:34:29:04:c9:cf:
b7:e4:43:49:bb:6c:8d:29:89:69:2c:ab:7c:2b:70:e8:1a:e8:
04:d1:9e:31:e6:80:27:0f:e8:65:b0:6a:c6:5d:ab:19:2f:3c:
18:f4:cf:25:75:78:74:69:f0:40:29:09:c8:96:90:6d:d0:86:
2c:79:f8:3e:f9:89:e1:af:ca:37:ee:1b:7f:cb:95:64:e7:ae:
b8:8c:a6:eb:2e:39:a8:b1:68:c3:d6:4a:47:aa:d7:f9:b6:64:
08:2c:ee:90:8b:95:e1:44:50:af:ec:3c:3c:d8:68:22:7d:58:
43:85:ba:89:b5:8c:63:a9:67:02:48:8c:dc:dc:d2:e8:51:b5:
e0:f8:5b:ce:4b:cd:a9:6f:b7:1b:4d:7a:70:d1:48:3d:bf:21:
86:02:dd:b8:1a:bf:52:63:ee:2a:e0:88:82:a6:9a:ab:3e:06:
ba:10:94:92:8e:4e:6b:fd:ec:88:90:c2:49:51:45:ec:15:88:
57:e5:3f:00:d6:65:8a:df:32:b3:53:dd:89:0a:45:b3:4e:e4:
08:59:61:4d:9c:5f:0e:da:8a:d4:89:b6:b3:3c:8a:a9:65:ec:
34:66:9c:64:81:71:1e:77:60:00:fa:4c:ed:b4:88:07:33:b6:
c2:a5:8a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org