Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/vjpqAW5tAyxdgjkE48q36zvC3nI.roa
File: vjpqAW5tAyxdgjkE48q36zvC3nI.roa (raw, json)
Hash identifier: Tzpjw2gi6uk5slcAP33veHRU39itXJ/2oOHvL4pCoZw=
Subject key identifier: BE:3A:6A:01:6E:6D:03:2C:5D:82:39:04:E3:CA:B7:EB:3B:C2:DE:72
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA72848854F9B9775110EC80B38D13B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/vjpqAW5tAyxdgjkE48q36zvC3nI.roa
Signing time: Tue 06 Feb 2024 18:21:17 +0000
ROA not before: Tue 06 Feb 2024 18:21:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199376
IP address blocks: 2a0f:b241:80::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:28:48:85:4f:9b:97:75:11:0e:c8:0b:38:d1:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be3a6a016e6d032c5d823904e3cab7eb3bc2de72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d3:2b:91:75:41:40:be:3e:87:61:d1:82:f4:
b6:cf:8b:3b:de:c8:75:de:1b:51:bb:a9:20:2f:bb:
99:e2:83:1a:7b:ca:01:5f:bd:00:cd:68:08:bf:4d:
38:83:54:62:a5:fa:b6:03:11:14:30:54:90:cb:d1:
b8:88:e3:06:fa:42:8b:93:b9:fb:fd:4a:32:1f:2b:
0f:cf:2a:47:62:b8:a2:b0:b2:5a:db:d7:d4:c6:f0:
83:7f:6f:ab:42:de:53:c4:2c:c4:b6:eb:68:5a:d5:
0d:27:fe:68:a9:99:22:8c:be:ee:8d:d7:7a:41:22:
75:9d:d8:47:4e:e3:d5:5b:51:0a:e1:e2:4d:cb:e0:
82:7f:16:d9:34:2c:66:dd:64:c0:6f:f6:45:27:d7:
7c:b1:bb:a0:3c:0e:82:be:a4:b4:06:eb:55:98:cb:
dc:4e:8c:c4:ee:e9:de:b4:c4:6f:3d:9a:7b:a5:1d:
c7:7c:57:2c:4e:c4:2e:93:dc:07:24:97:a5:ed:a0:
12:26:7c:d5:c1:1f:62:6e:d7:03:a3:7b:02:78:e1:
5b:dd:e1:98:2f:48:c8:da:e2:33:4c:0e:83:a8:10:
41:6b:e2:a3:7d:8a:e6:14:81:ff:b0:49:7d:e0:38:
33:82:ef:8d:11:97:e2:8e:2c:f1:31:04:dd:fc:b3:
b8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:3A:6A:01:6E:6D:03:2C:5D:82:39:04:E3:CA:B7:EB:3B:C2:DE:72
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/vjpqAW5tAyxdgjkE48q36zvC3nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:80::/48
Signature Algorithm: sha256WithRSAEncryption
76:4b:7a:8a:ab:38:f6:00:17:98:bc:81:52:a6:1f:ed:06:02:
89:72:2e:2e:46:3d:61:b9:a8:ef:1f:eb:01:9d:97:1e:03:02:
3e:3d:d6:30:7a:71:ad:25:6d:e6:00:aa:cd:0a:4a:99:2e:c4:
1c:af:6e:b3:5e:42:71:e0:ab:f6:c8:a6:70:5b:a8:5d:ec:1a:
97:18:49:45:74:7f:a1:e1:10:07:41:b9:5f:63:7b:7a:28:fa:
de:26:d2:2f:29:dc:64:a7:e8:97:56:9d:d6:79:40:5d:59:a4:
14:a6:1f:df:91:8b:62:c5:7e:b2:38:49:e8:53:7e:8b:3f:d7:
7d:3f:1f:f8:a4:86:ef:b5:81:41:21:b2:3c:32:25:ae:02:36:
a5:cf:7e:43:83:2b:e3:39:f5:d5:c3:1b:de:82:92:44:3c:d4:
a0:52:c9:fc:5b:7f:1f:bb:fe:e9:5c:28:c2:12:54:94:8c:12:
8c:42:1e:ad:ec:c8:b9:9e:e5:0b:ca:a3:e4:41:c4:d5:d9:d0:
6c:48:85:a3:9c:e6:2e:6a:17:a7:8c:17:e3:2e:f2:38:83:b6:
61:cc:f7:ca:12:49:3a:0b:ad:95:7e:c5:35:b3:b1:30:ab:28:
5f:c1:8e:ec:71:4c:53:a7:48:58:dd:50:79:cb:18:b8:ba:59:
4d:e5:45:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org