Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/dTqtkhTjIBFrZBUlkxGiNPGKYAU.roa
File: dTqtkhTjIBFrZBUlkxGiNPGKYAU.roa (raw, json)
Hash identifier: NVzqrAZQjT8ReJknh3KnocsVYmDNCGn9XtY0kgY4xi4=
Subject key identifier: 75:3A:AD:92:14:E3:20:11:6B:64:15:25:93:11:A2:34:F1:8A:60:05
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96B0846F604D2F5D685EA785F45B6C
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/dTqtkhTjIBFrZBUlkxGiNPGKYAU.roa
Signing time: Tue 06 Feb 2024 18:03:18 +0000
ROA not before: Tue 06 Feb 2024 18:03:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216474
IP address blocks: 2a0f:b241:60::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:b0:84:6f:60:4d:2f:5d:68:5e:a7:85:f4:5b:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=753aad9214e320116b6415259311a234f18a6005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a9:95:e9:33:cd:71:3e:8a:ce:c8:e7:71:b2:
db:ec:92:fb:4d:7b:ae:b3:54:d5:cc:36:02:ab:73:
2f:59:d8:52:d6:5c:f4:62:21:5e:8a:3c:aa:ae:fd:
c3:0f:34:43:d3:8c:85:06:0b:9a:50:2b:20:ee:50:
e7:ae:d2:65:9d:28:0e:1c:18:af:ab:1b:3d:e5:e0:
e4:50:ca:f8:a8:6d:25:49:07:ef:2f:1e:77:bb:aa:
e3:97:fe:2e:0a:c4:dd:51:9c:88:cc:02:4d:32:da:
e7:80:de:2d:ef:99:bc:84:7d:2a:54:f7:4e:2c:5c:
5d:1a:9b:f2:bc:c0:14:dd:fc:e5:0f:3a:1a:6b:9c:
df:a8:a3:7d:10:90:0f:de:a6:cf:fd:6e:fd:e1:f3:
7c:bd:4a:09:a3:4e:8e:56:ff:af:d6:58:77:0b:8f:
f8:3e:b1:32:69:73:84:4b:20:ad:b1:d5:4c:38:71:
22:8c:d6:d4:44:ef:fe:57:57:5f:32:ba:82:77:24:
2b:cb:2e:a5:8f:86:f9:65:d5:f0:ed:fd:aa:e2:89:
b3:8d:dc:f4:af:ff:fb:90:fa:f1:d6:fc:3b:94:f1:
42:59:a8:5b:18:35:10:b6:70:4d:08:62:1d:4f:6a:
a7:82:b6:88:c0:23:97:a4:25:ef:6a:b7:5f:16:6d:
2c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:3A:AD:92:14:E3:20:11:6B:64:15:25:93:11:A2:34:F1:8A:60:05
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/dTqtkhTjIBFrZBUlkxGiNPGKYAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:60::/48
Signature Algorithm: sha256WithRSAEncryption
2e:61:90:d4:f5:11:bc:1a:e8:05:1f:5e:a4:c2:93:d6:97:25:
6a:f7:b8:c1:b3:af:1f:ed:b7:66:f9:1b:fe:2a:a5:81:28:4b:
4c:e6:00:be:4b:64:30:cf:fe:48:7b:d4:b0:3c:69:66:83:0f:
e4:71:24:be:e6:3b:87:55:9d:93:ce:ae:73:d8:10:1d:45:3a:
2c:65:ea:9e:5c:14:1d:2c:d7:d7:ec:a4:98:6e:eb:43:c4:e2:
2e:c4:b3:71:ce:0d:81:75:27:10:83:83:c7:aa:cd:65:82:62:
ad:b2:de:b4:1e:ce:47:71:9d:4d:d4:36:fe:47:a6:cd:d6:47:
50:a1:5a:6b:02:20:61:d8:27:ae:72:dc:6f:bf:74:d3:9e:1a:
da:61:8a:f0:20:3a:5b:ab:14:87:6d:04:c5:48:08:3f:ea:37:
f7:5a:f2:0a:62:69:2f:21:82:bd:bd:2e:0d:a5:bf:81:31:30:
02:1e:27:f0:01:5f:b7:e5:3e:33:d6:da:4b:97:46:a1:1d:d2:
35:69:ae:c1:07:c0:d8:55:1f:84:5c:8d:ad:51:0a:5d:6b:78:
46:82:ed:ff:84:58:23:f6:b9:05:9d:33:61:b9:9b:5c:bb:a6:
ca:54:aa:e5:69:0a:99:58:8f:5b:85:52:bb:78:80:05:1c:bf:
f4:aa:b0:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org