Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3OTn6CHbjKz8iF_qEE8gJTszaR4.roa
File: 3OTn6CHbjKz8iF_qEE8gJTszaR4.roa (raw, json)
Hash identifier: 6jhbvI03rrFCR9wZE1CQvD4R/pB9oxHq5o+d9FvX4OQ=
Subject key identifier: DC:E4:E7:E8:21:DB:8C:AC:FC:88:5F:EA:10:4F:20:25:3B:33:69:1E
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACAAF94983805724BE09CE9268521A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3OTn6CHbjKz8iF_qEE8gJTszaR4.roa
Signing time: Tue 06 Feb 2024 18:27:18 +0000
ROA not before: Tue 06 Feb 2024 18:27:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212854
IP address blocks: 2a0f:b241:103::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:aa:f9:49:83:80:57:24:be:09:ce:92:68:52:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dce4e7e821db8cacfc885fea104f20253b33691e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:96:07:c0:27:25:e7:b6:28:b2:89:e4:19:01:
eb:7f:f0:47:aa:7d:50:ff:50:d8:42:fd:23:0d:ad:
5c:33:28:43:d5:52:98:cb:57:8c:4b:61:13:09:bd:
09:e2:e3:08:88:70:18:88:9a:42:c9:4c:24:a9:86:
64:c5:01:f3:49:40:73:5e:86:21:28:61:19:09:88:
fd:89:38:da:20:0a:b2:fd:75:e7:1e:15:b7:fb:ea:
4a:1f:91:9a:f4:8f:4b:61:6e:a6:20:3e:8f:19:f6:
a3:6c:ec:75:10:07:49:d9:0d:11:87:6b:42:d6:2a:
98:7f:60:db:c1:d4:22:70:9e:01:a8:fa:80:dc:5e:
27:21:e2:2b:f9:4b:e3:69:8a:cb:2c:12:3b:26:c3:
aa:e6:b0:b3:70:e7:54:d2:94:64:b7:30:2d:8e:f0:
8b:6d:c9:39:48:d8:15:ee:77:3a:f5:9d:98:f7:5e:
ce:4c:e5:8f:69:45:c1:fd:87:83:90:00:27:b9:19:
66:ac:85:b8:9c:77:84:23:66:e3:d3:3c:57:e7:d7:
ae:f5:9e:db:21:e9:8d:ce:2a:2f:71:e2:16:5d:52:
09:41:0f:b5:16:d1:fc:43:8d:46:bf:fa:43:72:68:
a6:e2:fe:d0:5c:69:db:3e:eb:23:73:2c:9b:d9:57:
21:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E4:E7:E8:21:DB:8C:AC:FC:88:5F:EA:10:4F:20:25:3B:33:69:1E
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3OTn6CHbjKz8iF_qEE8gJTszaR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:103::/48
Signature Algorithm: sha256WithRSAEncryption
30:b6:34:ca:a8:f5:b2:74:1f:db:5d:1e:2d:e4:02:b2:64:8f:
1c:c8:e1:f9:e4:eb:77:1c:b1:a7:85:2a:a0:d9:54:b4:ad:95:
cb:ff:d6:d4:ec:fc:a8:22:73:da:b4:2f:19:cf:83:f1:62:6b:
30:a9:ca:22:a7:e0:e1:a6:9b:60:35:66:1c:11:e2:80:b0:4d:
c7:75:f2:8a:e8:cd:15:c5:87:20:7e:24:09:66:2f:b0:eb:45:
05:b8:93:c5:a8:35:56:06:2b:3e:d9:ac:8c:59:32:2f:e2:9c:
92:75:5b:a8:c5:d5:27:18:9b:1e:b4:d5:40:b7:30:d7:9c:2e:
f7:b7:dd:e2:5c:d6:0a:14:ac:af:26:82:05:73:17:75:a6:b7:
d4:13:00:a3:04:12:6d:18:fe:b7:df:06:b8:c8:1a:15:f4:d0:
7a:8c:83:1c:7a:88:fb:7b:bd:0f:e5:77:be:d9:25:f3:d6:b9:
0e:88:42:7e:f3:1f:c8:70:2e:29:4a:a1:a5:03:8e:27:ce:17:
a4:e6:75:be:5a:a9:b7:70:3c:8e:fc:6d:6e:21:b1:04:a2:c3:
70:5e:26:b2:54:9e:8e:63:de:1f:ca:ed:36:80:ed:0e:ce:33:
58:26:54:f1:fa:00:e7:32:c1:f7:47:f5:b6:03:47:da:b6:68:
8a:11:83:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org