Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hOrapfFbYGyJeA54dKbcON1mtwI.roa
File: hOrapfFbYGyJeA54dKbcON1mtwI.roa (raw, json)
Hash identifier: CQw1EluaS4idPVKY1uhcfOn3qdGwOj4E1+LYD2TSd8w=
Subject key identifier: 84:EA:DA:A5:F1:5B:60:6C:89:78:0E:78:74:A6:DC:38:DD:66:B7:02
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD95745517735489813B24AC866229
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hOrapfFbYGyJeA54dKbcON1mtwI.roa
Signing time: Tue 06 Feb 2024 18:28:18 +0000
ROA not before: Tue 06 Feb 2024 18:28:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216455
IP address blocks: 2a0f:b241:10f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:95:74:55:17:73:54:89:81:3b:24:ac:86:62:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84eadaa5f15b606c89780e7874a6dc38dd66b702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:ec:a7:84:d4:8f:27:21:bb:78:51:9c:2f:ab:
2f:f7:c0:b9:ee:76:d3:c6:11:0b:22:8b:13:84:57:
a3:ad:35:54:2b:c8:7e:99:a9:66:09:66:3f:d8:e7:
d2:31:04:e0:31:96:49:cf:29:96:04:93:dc:64:4b:
ce:26:0b:4a:6c:0f:83:a9:d7:92:fc:0e:53:26:65:
1b:f9:2e:5a:a6:88:8c:fa:0c:51:19:9c:35:a0:e3:
34:bb:6e:5d:23:d1:cb:fa:4d:83:01:ba:07:51:5a:
40:ec:b8:aa:69:48:ed:88:d5:8e:59:92:15:1e:3f:
61:28:ce:b3:81:2c:63:53:f6:bb:06:63:5b:4a:56:
9c:00:bb:ac:5a:b4:e3:9f:27:cd:85:b1:d2:63:e5:
71:77:37:47:94:20:12:51:e8:01:65:f6:73:1a:5f:
a1:e7:cf:2a:11:d3:8f:a5:a2:5c:85:a0:90:a9:0a:
3b:bb:29:70:10:8e:42:40:38:d7:b4:22:b8:98:72:
ac:8c:29:28:36:c8:50:e3:5c:6f:df:18:4f:70:c5:
16:67:f5:af:d9:7a:51:cb:d4:1f:80:f2:6a:a4:15:
d9:5c:af:75:c0:2c:5b:8d:3a:0b:70:73:3b:d4:43:
eb:83:25:fe:fa:5b:c7:da:57:e5:30:1f:be:ce:37:
63:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EA:DA:A5:F1:5B:60:6C:89:78:0E:78:74:A6:DC:38:DD:66:B7:02
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hOrapfFbYGyJeA54dKbcON1mtwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10f::/48
Signature Algorithm: sha256WithRSAEncryption
63:10:8d:19:d4:f6:91:ae:2d:1c:36:a7:48:7f:d2:5e:19:31:
ad:f2:51:05:a9:5b:f7:6b:fd:87:ef:a4:d7:85:a7:5f:6c:8a:
e1:45:92:d5:48:6a:64:aa:18:87:d4:38:4c:b9:75:75:c6:c2:
35:f5:cf:2f:eb:fe:0e:4f:5f:ec:c2:3c:3d:f4:3b:9d:ad:fd:
37:b4:34:81:4b:0d:33:9d:af:09:23:c7:d0:42:1d:ad:12:7b:
5f:6f:0c:52:1a:b8:32:3e:f3:68:93:4b:7a:37:d9:19:08:ac:
c9:42:9f:b0:21:7f:c4:ee:43:a7:c7:f0:a5:4e:fe:a9:7a:f3:
37:d8:8f:8e:1d:b5:da:fe:59:fc:83:14:67:82:73:7e:2a:37:
8c:3b:b9:be:97:d5:79:46:fa:8b:6b:91:7d:12:e0:4c:a1:ce:
c1:55:bf:ea:aa:8b:32:fa:79:93:a1:38:ee:bc:8d:d4:02:77:
3b:28:51:f0:aa:9c:fc:cb:3a:30:cf:e3:ea:c2:48:4b:4d:3c:
89:c6:a4:1e:21:4c:98:49:36:02:53:38:88:eb:54:a6:3d:59:
fd:86:37:77:ac:4d:2c:54:8a:0e:9b:a5:b7:ea:93:90:6d:6e:
e9:c5:55:68:86:f2:44:a3:44:c1:df:ec:9d:e3:10:80:c3:29:
91:dc:cf:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org