Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/OYn_y9rQiPfVsJCRXFuuQ4pVMo0.roa
File: OYn_y9rQiPfVsJCRXFuuQ4pVMo0.roa (raw, json)
Hash identifier: jhmAbXZuKHrxSNtAm8N4HQUh4IXCgBGr+WdfL+31ePM=
Subject key identifier: 39:89:FF:CB:DA:D0:88:F7:D5:B0:90:91:5C:5B:AE:43:8A:55:32:8D
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F067628DF69269CE351CCBF7910525
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/OYn_y9rQiPfVsJCRXFuuQ4pVMo0.roa
Signing time: Wed 07 Feb 2024 05:00:32 +0000
ROA not before: Wed 07 Feb 2024 05:00:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60113
IP address blocks: 2a0f:b241:15f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:67:62:8d:f6:92:69:ce:35:1c:cb:f7:91:05:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3989ffcbdad088f7d5b090915c5bae438a55328d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:c3:fe:6b:ab:23:26:d8:59:b9:75:bf:25:12:
d1:d2:9d:b0:ff:b0:da:ac:66:c0:3a:ad:ce:05:5c:
3b:07:21:fd:31:de:3c:ff:f1:c8:8a:ca:59:0d:e6:
c7:1e:88:26:e3:8f:49:d0:2d:b5:e8:0e:02:f1:c0:
10:20:17:d8:3b:38:e7:c3:b4:af:47:2a:d1:97:19:
cd:06:88:fe:17:c5:04:bd:cf:02:1c:63:5d:72:31:
d8:8b:77:de:01:71:54:10:0e:b9:8c:b6:06:5a:08:
47:a4:6c:91:5f:ba:0f:f8:dd:dd:68:67:70:30:29:
fe:ae:71:a7:f6:2e:ec:48:ec:7c:61:3c:16:c5:a9:
17:21:29:91:f6:cd:2b:d6:9d:56:d5:09:1b:b5:b8:
36:ee:03:ad:fc:6f:78:fe:a0:fa:f8:8d:b2:58:75:
63:bd:0c:38:b9:b7:b8:0e:e8:2d:b0:02:ff:c1:76:
b7:eb:6a:f1:45:f8:40:94:01:fe:c0:c1:a6:d8:54:
84:dd:e2:91:53:a9:23:d5:c0:9c:72:65:53:de:78:
c7:e5:7d:82:71:27:1b:0e:d2:6c:8e:bd:28:49:da:
0c:33:6c:a7:f2:6d:ac:b2:b2:18:a4:18:df:a7:fa:
49:5e:62:c1:f7:d0:38:fb:59:ae:2f:1c:4c:84:fa:
83:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:89:FF:CB:DA:D0:88:F7:D5:B0:90:91:5C:5B:AE:43:8A:55:32:8D
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/OYn_y9rQiPfVsJCRXFuuQ4pVMo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:15f::/48
Signature Algorithm: sha256WithRSAEncryption
38:d7:c8:35:6e:76:11:ad:c2:06:81:9f:fe:0f:98:d1:0a:09:
05:e0:1c:b8:a5:e1:55:ea:e6:ad:42:d6:08:73:c4:e9:e2:1e:
09:ac:bb:e0:f2:7e:c2:19:ed:9f:77:32:bd:c5:4b:07:3b:bc:
36:db:31:ab:b5:32:44:26:c3:af:a8:23:bf:e6:87:88:76:af:
6c:1a:99:68:c4:ce:17:e1:07:9c:f6:60:44:61:6a:d9:f4:9c:
bf:ca:48:36:a8:70:32:ee:33:ed:db:b4:9c:50:38:25:a9:a6:
a7:94:47:c5:ac:a3:a0:52:2f:6a:28:20:02:2d:3a:b5:d1:e8:
b1:e2:47:f4:8c:a6:a6:4a:df:da:81:bb:37:38:07:fe:26:a9:
1e:8c:64:38:20:e2:42:1b:72:92:82:83:67:a6:5f:c7:87:2f:
a8:bb:99:a5:c0:5c:49:5e:1d:37:28:ed:55:20:7f:b3:30:b6:
c6:b3:70:5f:85:26:a6:60:65:d0:58:2d:d0:7c:38:7d:f4:d4:
17:66:db:b1:91:13:0d:ad:3f:21:24:16:5c:f8:09:2c:c7:b8:
83:72:04:05:60:e8:f4:f5:ea:13:75:02:66:df:f1:83:be:ed:
9a:5b:84:19:5c:47:1a:7d:29:e3:9e:4b:93:d4:02:86:b1:3a:
6c:20:0f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org