Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ep6LsOBQ7QdexR3GoRSwHpGeKqg.roa
File: ep6LsOBQ7QdexR3GoRSwHpGeKqg.roa (raw, json)
Hash identifier: Occ7XELACkQzaarLv468U5txsRd95mlLM6a/4Ls+eSY=
Subject key identifier: 7A:9E:8B:B0:E0:50:ED:07:5E:C5:1D:C6:A1:14:B0:1E:91:9E:2A:A8
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD8CA888EC7F99D7BAD10FF24E6E2E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ep6LsOBQ7QdexR3GoRSwHpGeKqg.roa
Signing time: Tue 06 Feb 2024 18:28:16 +0000
ROA not before: Tue 06 Feb 2024 18:28:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48605
IP address blocks: 2a0f:b241:112::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:8c:a8:88:ec:7f:99:d7:ba:d1:0f:f2:4e:6e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7a9e8bb0e050ed075ec51dc6a114b01e919e2aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d3:88:d0:72:38:d6:3e:f6:bc:d9:46:e6:40:
ff:41:c5:f1:91:74:bf:16:bc:d8:dd:c4:91:e8:91:
62:d4:a7:32:dd:be:c8:f5:5c:23:26:f8:f8:8b:5b:
0c:c1:38:eb:da:be:16:21:8d:ed:fb:9f:66:47:8c:
e5:64:90:02:20:c1:1c:0e:a0:50:b1:4d:31:04:c6:
a9:9d:a3:99:7a:2a:90:3a:d5:ed:8b:60:d1:b5:60:
eb:f4:af:5d:97:42:af:b8:74:43:f6:28:ce:60:75:
fa:e4:15:7a:7e:55:89:eb:e6:4e:ab:2c:aa:02:bc:
17:e6:1a:63:09:5f:6e:96:af:4a:7f:a7:2f:74:5c:
52:d6:c8:d9:1d:e7:89:83:74:b5:2a:d8:b1:bf:8e:
30:48:c7:0c:f3:f4:44:99:f2:d2:af:ca:ec:1c:0f:
68:f3:eb:0a:62:fc:f4:81:28:5e:d4:3e:6b:c3:12:
b6:92:6b:2f:e6:db:e5:1e:ac:98:6e:df:ff:83:25:
c3:80:88:e0:18:d7:da:4d:d3:9d:14:d6:f2:dc:3a:
e2:3f:70:87:25:3d:48:86:eb:c0:f5:c1:ce:bf:07:
f7:8b:26:a5:ea:31:b2:e3:16:c2:43:37:18:30:f8:
a7:9b:da:7a:66:fa:49:a0:1b:a7:2d:0d:6d:04:83:
87:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:9E:8B:B0:E0:50:ED:07:5E:C5:1D:C6:A1:14:B0:1E:91:9E:2A:A8
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ep6LsOBQ7QdexR3GoRSwHpGeKqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:112::/48
Signature Algorithm: sha256WithRSAEncryption
0f:98:fb:c5:77:73:f3:6a:9a:8f:a2:cc:0d:9f:be:80:7d:79:
da:04:59:3d:1e:43:ad:12:a2:bf:5c:d8:00:72:f0:53:ca:76:
b6:86:66:fc:74:91:77:aa:e8:3e:44:6a:0a:ee:8d:fc:93:9a:
b3:af:e1:a0:28:4c:f2:43:c2:23:6a:2f:d6:05:98:ff:bf:31:
14:24:89:78:5a:be:c4:ea:95:70:63:55:00:d6:74:5d:94:8a:
41:98:7c:ba:21:43:63:82:f6:78:2b:eb:fe:c1:c6:a8:4f:d4:
57:ee:c2:62:37:f2:06:9f:4d:2e:72:36:fe:75:9a:5e:8a:2f:
91:74:2f:1a:69:f9:8a:1e:ad:83:4d:d6:0c:1b:e1:ac:75:c9:
d6:64:a1:0d:c8:3b:b9:20:96:49:a5:c1:9e:28:90:fb:15:09:
df:e2:9c:1c:52:bb:4c:12:e9:ae:bc:03:0e:ff:78:03:df:61:
03:71:5f:31:0b:be:23:5d:66:f5:2e:3e:b9:eb:54:14:cc:cd:
db:a0:6c:58:3e:0e:6d:f8:30:04:65:64:f9:e9:45:47:6b:ca:
c7:72:82:6f:dd:ee:ce:f1:a6:79:cb:2b:45:51:b1:40:90:f2:
76:a0:f8:e8:5f:cc:96:56:73:6a:08:09:f9:ff:24:d1:4e:b5:
fd:53:ff:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org