Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/fEv5OL7ykP8ThlBwB790lZ-2ZU4.roa
File: fEv5OL7ykP8ThlBwB790lZ-2ZU4.roa (raw, json)
Hash identifier: 6K/fZWiehWmQNSdCXiFRU15p14Z24BcBw77BfP//fW0=
Subject key identifier: 7C:4B:F9:38:BE:F2:90:FF:13:86:50:70:07:BF:74:95:9F:B6:65:4E
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA9E5544547DA2CE569061061DA1688
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/fEv5OL7ykP8ThlBwB790lZ-2ZU4.roa
Signing time: Tue 06 Feb 2024 18:24:17 +0000
ROA not before: Tue 06 Feb 2024 18:24:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200791
IP address blocks: 2a0f:b241:d3::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:e5:54:45:47:da:2c:e5:69:06:10:61:da:16:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:24:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c4bf938bef290ff1386507007bf74959fb6654e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e0:e5:33:be:7d:df:02:5a:3b:cb:96:8f:bf:
d6:08:fb:4d:6e:fe:6b:11:33:33:09:4b:72:67:ef:
9f:f0:d4:53:36:ef:3e:a3:ea:5b:56:ce:06:66:f2:
23:ba:6b:fd:87:27:e3:e6:91:1e:a0:db:f8:0c:a3:
2c:01:b6:83:80:aa:ee:59:48:24:54:52:d9:a0:e7:
90:04:2a:c8:10:23:9d:9a:e0:7e:30:c1:63:56:00:
ca:06:5d:98:c4:48:92:f9:09:f2:b7:47:c1:b4:b9:
fd:7c:3f:51:38:b6:c0:c9:01:cb:7f:da:7b:5d:59:
3e:63:dd:fe:41:ed:f4:2e:80:f9:6a:77:58:d7:12:
2c:f6:67:74:64:97:05:a5:41:20:f5:13:c0:67:f2:
a3:51:00:62:5f:ef:8e:66:fa:57:b0:8a:84:5b:48:
7f:87:16:50:ce:86:6f:92:48:06:01:52:90:5c:bc:
ab:12:0c:6e:ce:0c:54:f4:d1:c1:64:e8:e3:2d:94:
4d:a4:40:85:c6:9a:66:e8:57:8b:6a:58:34:d0:65:
42:64:af:ac:26:4a:eb:a5:7d:e1:e6:fc:2f:3a:fd:
da:79:00:81:63:cd:ab:44:8c:9f:af:c8:f1:03:8f:
d6:e9:08:90:76:b4:2c:85:87:1e:25:72:21:d9:3d:
2b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:4B:F9:38:BE:F2:90:FF:13:86:50:70:07:BF:74:95:9F:B6:65:4E
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/fEv5OL7ykP8ThlBwB790lZ-2ZU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d3::/48
Signature Algorithm: sha256WithRSAEncryption
74:c4:2f:b5:24:1f:b2:0f:da:cf:e5:8f:a5:75:87:d9:45:47:
ec:38:dc:de:4e:42:33:04:e1:59:99:3c:95:36:5f:14:e5:e8:
96:11:e7:99:b0:d5:fd:d6:bf:12:cc:6e:3e:8f:c1:67:9f:13:
41:d1:4f:16:f2:68:1b:22:14:80:ef:f6:1c:f2:23:a9:de:24:
76:2a:ee:46:40:12:d0:a0:29:08:40:ed:fc:42:12:f9:08:d2:
e1:6a:f8:eb:45:c5:9e:23:cb:b1:ad:c3:3f:85:d7:88:ea:d7:
df:85:43:fa:e8:6a:e4:6b:70:93:29:26:88:89:73:21:72:f9:
b3:12:43:ea:78:e4:5d:37:bd:4b:22:44:e3:c2:c6:c4:5d:74:
73:eb:c2:3a:5d:07:37:16:c9:e5:4e:b1:23:ff:0a:19:a8:59:
b5:57:bd:18:28:19:f7:ca:74:28:5c:19:2b:ef:68:7f:ec:9e:
59:67:18:67:9d:28:14:87:84:4c:3a:4a:ec:f0:e9:51:02:4c:
67:03:49:e2:1c:14:99:ea:86:34:cf:15:4c:4c:ad:66:eb:8e:
12:cb:68:13:46:27:d2:3f:db:fd:25:17:d7:30:ca:f8:63:43:
94:ff:a1:66:f6:28:e0:63:38:95:72:c9:6c:91:b7:4d:d2:57:
cf:37:65:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org