Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/n1N1iPQggbygOIvoVYnXFyPjXW8.roa
File: n1N1iPQggbygOIvoVYnXFyPjXW8.roa (raw, json)
Hash identifier: 1wCyDq0UTkEn32jaO0SNmpsLDjo9kiN/xDMwTlgZTHE=
Subject key identifier: 9F:53:75:88:F4:20:81:BC:A0:38:8B:E8:55:89:D7:17:23:E3:5D:6F
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96ABACD8CF383A1261FA6A1B856F5E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/n1N1iPQggbygOIvoVYnXFyPjXW8.roa
Signing time: Tue 06 Feb 2024 18:03:17 +0000
ROA not before: Tue 06 Feb 2024 18:03:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215885
IP address blocks: 2a0f:b241:57::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:ab:ac:d8:cf:38:3a:12:61:fa:6a:1b:85:6f:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f537588f42081bca0388be85589d71723e35d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c5:94:38:1e:96:6e:12:9d:e1:f1:21:19:10:
ee:64:b9:48:3f:4c:85:a1:66:12:6e:34:a8:23:26:
0c:54:80:fe:de:2c:d0:7a:7d:6b:db:95:fa:d6:98:
2f:b7:d8:d1:77:16:21:45:69:d7:06:18:85:02:3f:
2d:14:4d:d6:ea:24:c5:80:c3:a6:97:d3:66:6b:e8:
74:97:b6:61:42:68:7d:d2:42:30:33:43:98:da:50:
ba:e6:7c:a3:25:e6:bc:a7:06:9a:bc:3c:48:b2:6f:
10:2f:fe:26:39:47:46:9b:e8:b5:ff:7c:14:06:c4:
87:17:f8:c1:03:e2:4b:f9:96:a3:58:ae:8e:11:a6:
c1:8c:d6:e2:5d:98:72:26:f4:b0:ef:62:cc:53:6b:
c9:cc:15:0e:2c:e6:87:09:9d:b6:22:76:be:49:41:
dd:ba:e0:79:62:e0:d2:de:45:e8:36:e0:54:ac:b5:
87:ec:f7:ef:0c:e9:e3:15:31:b1:d3:96:d8:3a:3d:
36:dd:da:a9:b9:ee:ae:3f:4d:2e:e1:b9:66:a2:4b:
30:da:ee:26:1d:6f:cf:8f:34:1d:40:7b:4a:f1:40:
50:05:0e:9d:63:64:a9:16:cd:20:29:f3:d0:05:67:
b8:1b:9c:c2:bc:28:97:95:d1:3c:3f:1b:73:ed:21:
51:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:53:75:88:F4:20:81:BC:A0:38:8B:E8:55:89:D7:17:23:E3:5D:6F
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/n1N1iPQggbygOIvoVYnXFyPjXW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:57::/48
Signature Algorithm: sha256WithRSAEncryption
3f:0d:c0:d7:83:1e:80:cb:07:10:f5:55:86:aa:95:b1:5d:e5:
43:b5:e6:b5:20:79:b1:5c:e8:96:85:cd:9c:e4:97:5a:66:2a:
a6:6c:97:7c:40:62:9f:4f:33:c0:7d:21:88:1f:8c:ac:52:dd:
bd:91:59:b4:45:54:ff:88:6e:b9:5d:ee:03:b9:20:72:12:59:
1e:7a:e2:04:6c:fa:df:c4:b3:81:44:7e:4d:36:47:02:f7:e6:
65:9e:29:34:b2:d2:c9:aa:31:1f:bf:75:39:50:29:40:c8:5d:
56:fb:6b:f0:e7:c1:96:6c:13:1e:88:91:ff:ef:3f:71:5e:a6:
c4:a1:ac:d3:2d:3f:f9:1d:f5:7b:e9:12:58:6c:03:1d:75:ca:
92:37:87:0c:6a:07:65:a9:2f:19:f0:12:d3:85:4d:ef:98:2d:
55:12:1e:05:70:10:23:e7:84:3e:4e:30:c8:3c:cb:70:91:24:
3b:c0:46:b9:ce:2b:09:10:7d:4a:92:07:ea:ce:bc:64:ad:07:
59:63:7e:21:f4:eb:d6:9a:48:74:fd:5b:b4:05:ef:c8:c1:f0:
c4:b3:88:de:f3:8e:56:25:25:28:7a:51:74:16:bf:da:12:04:
05:15:8e:e4:55:d5:f7:1d:bf:d0:a5:75:69:fe:c7:3e:14:3b:
36:c6:cc:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org