Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/jAqwVmbuQgfwnjaSuGVI3rb6fY8.roa
File: jAqwVmbuQgfwnjaSuGVI3rb6fY8.roa (raw, json)
Hash identifier: 50AoPsB3BxkspprvKHcOGrgs+YI9yy9FxywN8JPdWi8=
Subject key identifier: 8C:0A:B0:56:66:EE:42:07:F0:9E:36:92:B8:65:48:DE:B6:FA:7D:8F
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAACF0CAB86976FC0C37664C9A977F2
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/jAqwVmbuQgfwnjaSuGVI3rb6fY8.roa
Signing time: Tue 06 Feb 2024 18:25:17 +0000
ROA not before: Tue 06 Feb 2024 18:25:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201501
IP address blocks: 2a0f:b241:de::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:aa:cf:0c:ab:86:97:6f:c0:c3:76:64:c9:a9:77:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:25:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c0ab05666ee4207f09e3692b86548deb6fa7d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e7:e2:0e:2e:c5:c3:11:9e:8f:9d:0c:27:1c:
8c:62:74:32:0c:94:e3:91:31:f5:26:5a:ca:0c:9f:
ba:ea:ee:d3:d0:52:38:5e:29:28:80:28:39:9b:db:
7d:ad:e6:96:e0:bd:58:03:07:32:ab:fc:55:41:cd:
6a:f3:0d:99:34:30:d6:cf:c1:1b:54:68:7f:4b:43:
a5:4a:dc:c9:cf:b6:84:eb:39:7e:26:9e:95:03:0a:
f3:fc:c8:7f:c0:27:83:b0:bb:91:ae:c8:76:31:50:
a7:cb:65:fc:b6:6c:03:f7:95:57:77:d9:6c:df:4c:
4f:38:0d:81:66:83:c9:1f:59:c7:48:a2:2c:8b:a0:
56:44:76:0a:7e:7f:64:2b:6a:e6:6c:23:ca:e1:07:
cd:77:5a:c5:85:b8:8a:a6:ca:31:88:4c:fa:67:2f:
e9:ee:10:9a:b0:1a:57:c2:8a:92:bd:58:05:69:95:
13:29:16:64:69:30:b1:fd:80:19:0c:43:5b:fc:b4:
94:d1:42:9a:6b:0b:aa:46:24:31:95:fc:14:5d:8c:
7e:c8:0c:15:13:4e:41:58:a7:ba:16:b3:3b:29:27:
60:06:2a:2d:d8:f2:4a:68:dc:da:2d:bd:51:1e:b5:
31:bb:e7:98:7c:f4:7b:52:74:a1:f9:e3:61:2f:20:
49:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:0A:B0:56:66:EE:42:07:F0:9E:36:92:B8:65:48:DE:B6:FA:7D:8F
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/jAqwVmbuQgfwnjaSuGVI3rb6fY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:de::/48
Signature Algorithm: sha256WithRSAEncryption
87:32:48:69:fa:4d:04:01:e7:13:15:8f:93:60:75:6d:8a:01:
78:00:74:19:33:43:06:84:67:58:89:80:e7:54:dd:40:8b:28:
51:f7:9a:45:e0:34:ac:c2:bc:48:eb:d6:bc:5f:f0:5f:b0:2f:
07:df:1c:11:ec:b6:9e:3a:2a:96:02:4e:ce:16:c8:1f:0f:b9:
da:58:0e:a5:8e:23:5d:13:b3:11:32:5f:9e:13:f2:84:0d:62:
61:39:01:fb:3c:27:73:fb:e0:47:7f:67:85:5a:0c:a6:e7:30:
dc:8d:d4:bd:20:a9:55:16:ba:8a:5e:14:2a:97:a3:c5:70:9c:
7f:df:a5:14:e9:00:49:e9:ed:c1:0d:a0:b0:2b:95:31:d1:c1:
63:c7:d3:af:10:5f:00:66:10:d0:d6:2f:eb:32:6a:6c:f0:e4:
f9:e3:cc:53:b1:35:1e:26:b0:78:39:3b:d7:20:23:b8:02:84:
5c:e9:ab:b8:10:92:94:ec:1d:18:13:30:a6:9e:2e:e2:50:12:
96:39:fb:47:5a:3f:50:da:48:ba:58:a0:9b:2f:61:39:3d:1f:
0b:9b:36:d3:34:6e:cc:4e:ba:dd:10:2e:97:7e:54:a0:bf:99:
55:4c:3e:68:8b:d5:4b:5b:71:f2:bc:a7:a5:27:d4:ab:02:f2:
72:1e:57:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org