Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/g8iZlVWdTTMROx97w8P8zGY4TkM.roa
File: g8iZlVWdTTMROx97w8P8zGY4TkM.roa (raw, json)
Hash identifier: szAeRDVD4MCyq+ldGBsiOplQTDZuePHIOnLWpSNBKA0=
Subject key identifier: 83:C8:99:95:55:9D:4D:33:11:3B:1F:7B:C3:C3:FC:CC:66:38:4E:43
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD9090448A7CBF0F00FFD2158CECD1
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/g8iZlVWdTTMROx97w8P8zGY4TkM.roa
Signing time: Tue 06 Feb 2024 18:28:17 +0000
ROA not before: Tue 06 Feb 2024 18:28:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216115
IP address blocks: 2a0f:b241:108::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:90:90:44:8a:7c:bf:0f:00:ff:d2:15:8c:ec:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83c89995559d4d33113b1f7bc3c3fccc66384e43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e3:8a:3f:3a:dd:31:71:7c:94:f0:fc:87:b4:
09:76:10:da:91:ca:6b:85:4e:b7:1e:f7:dc:bc:26:
5c:9b:9e:2b:62:a2:d6:bc:4d:b3:e1:a5:21:5a:30:
ed:8b:be:63:b2:8b:33:e2:2d:9f:2f:a5:2f:1b:78:
aa:3b:ee:70:2a:51:ff:09:46:c1:cf:2a:4b:c9:53:
6f:47:ba:fa:8a:13:c9:42:23:82:85:ed:be:93:7c:
10:e5:8b:bd:75:ff:c4:41:99:ff:95:3c:e7:d1:b2:
a2:63:e1:dd:77:78:6e:0d:18:89:23:ff:92:9c:e1:
3b:4c:5b:13:43:6d:39:35:bb:43:ce:d3:19:44:dd:
7d:3b:79:a2:d7:a7:ae:b4:5d:ab:21:34:ab:c2:62:
74:2a:a0:84:33:d9:90:ab:dc:cf:4d:b3:96:60:8e:
a6:df:45:b1:85:d4:6e:d3:e1:58:96:e6:e8:d5:c3:
19:69:f2:6c:87:f2:5a:ed:7d:66:45:84:22:d5:eb:
e5:c1:00:17:21:77:5e:3c:0c:5f:79:52:7d:2e:f2:
2e:cd:27:a2:18:91:eb:33:94:24:fb:d8:a4:0e:cf:
29:ad:5e:a7:4a:55:4b:78:27:00:4c:5f:06:98:7c:
00:77:7b:cf:16:ca:0f:32:26:1d:7f:33:1e:07:b5:
36:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C8:99:95:55:9D:4D:33:11:3B:1F:7B:C3:C3:FC:CC:66:38:4E:43
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/g8iZlVWdTTMROx97w8P8zGY4TkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:108::/48
Signature Algorithm: sha256WithRSAEncryption
85:12:60:a0:a9:10:cd:d5:81:4c:d2:ed:97:05:46:95:cf:b3:
96:a9:85:0a:c9:3c:f8:78:81:70:71:1d:d5:09:73:dc:2d:a5:
e1:2f:88:74:c5:af:69:83:9a:31:ae:47:51:62:52:92:46:4e:
87:6e:6a:0f:30:93:31:51:f5:6a:9e:09:a8:e8:8a:d9:65:53:
46:10:06:5e:f8:5e:dd:cc:84:4e:36:20:d8:3e:3d:66:d9:ed:
fe:32:7a:f4:7d:72:b7:30:c6:c7:ec:c7:6c:e3:29:23:0b:36:
85:db:e9:e7:e0:ce:a2:73:b0:7c:c9:25:95:b6:38:f8:c5:06:
a3:b3:66:dc:70:86:a4:2d:8d:0a:e8:e9:0e:ee:38:a5:f7:db:
1c:22:73:23:f9:49:9d:9e:10:c8:fa:4c:12:04:2f:bf:44:0a:
86:0f:8f:66:77:4d:1d:cc:09:7f:c1:4d:1f:4c:f2:4b:25:56:
59:5d:11:a2:7c:f2:8d:49:cf:57:b6:c8:f3:89:26:2c:14:63:
04:d1:f8:83:b7:0c:ba:f2:a3:53:8c:08:c7:c2:c0:ea:fa:29:
58:48:fb:2d:4d:b7:07:77:ac:68:01:27:8e:69:ba:74:34:90:
13:ac:16:c4:f0:e5:37:1b:c0:ab:93:cf:7c:f5:af:3b:d0:be:
b1:eb:f3:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org