Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/OgWaFzZyIpYwpNfB6pFPqaa_dkI.roa
File: OgWaFzZyIpYwpNfB6pFPqaa_dkI.roa (raw, json)
Hash identifier: RGNDJV30427Kb2qSr+aCSyJQixZdr+PcPUvXCbwi5Pg=
Subject key identifier: 3A:05:9A:17:36:72:22:96:30:A4:D7:C1:EA:91:4F:A9:A6:BF:76:42
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAE7641A9036A1E16DBCD88DC7F4B0F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/OgWaFzZyIpYwpNfB6pFPqaa_dkI.roa
Signing time: Tue 06 Feb 2024 18:29:16 +0000
ROA not before: Tue 06 Feb 2024 18:29:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49187
IP address blocks: 2a0f:b241:115::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ae:76:41:a9:03:6a:1e:16:db:cd:88:dc:7f:4b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:29:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a059a173672229630a4d7c1ea914fa9a6bf7642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7f:67:4d:11:e4:41:a3:71:df:42:d6:88:3d:
c4:c8:9f:9e:65:45:4f:88:90:81:34:a5:6f:02:39:
3f:04:2e:cd:4c:b9:d2:1c:77:52:a0:09:b0:6d:24:
5a:45:fe:66:cf:46:55:e4:34:77:f5:f3:58:6f:a2:
9d:6e:c5:e8:61:58:37:64:7e:14:58:b8:9e:a9:dd:
fa:bc:d4:dc:1a:2e:b2:d6:fd:fa:e7:03:a1:b7:5b:
9c:b6:e7:a8:35:a2:88:5f:0d:c7:fe:eb:6b:f7:be:
26:b1:a3:c8:20:14:e3:99:a9:5e:14:96:27:fa:71:
f3:7f:16:b8:9e:51:41:d0:94:7f:0b:52:e4:5c:85:
70:52:ec:ab:e4:a8:e9:0b:a0:a5:0a:4e:63:f9:2b:
d7:9d:0c:0b:d9:f9:f3:67:d8:ba:e8:38:91:72:81:
c2:dd:59:fe:d4:db:8b:57:8b:a6:03:72:d9:0e:0b:
d5:ce:c2:2c:14:4c:c8:50:e4:75:5c:1d:f2:72:f1:
5c:9d:fa:ca:2e:0e:54:57:20:dc:a5:97:5e:d6:5b:
63:63:e1:09:09:7a:46:23:df:19:22:3f:be:62:44:
a6:db:c0:1f:2f:05:f2:81:32:4e:b1:f7:94:51:36:
18:a8:37:7d:a6:e5:15:1f:d9:7c:6a:dc:61:39:51:
9f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:05:9A:17:36:72:22:96:30:A4:D7:C1:EA:91:4F:A9:A6:BF:76:42
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/OgWaFzZyIpYwpNfB6pFPqaa_dkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:115::/48
Signature Algorithm: sha256WithRSAEncryption
4e:2b:ed:a9:b2:02:1a:2a:65:92:5b:30:15:38:12:93:28:01:
a1:45:db:a7:01:cf:ad:36:25:e4:cd:e3:18:83:a1:79:5d:2a:
82:1a:db:08:c5:7e:b0:8a:8c:d1:91:b8:39:7c:75:44:c7:bd:
4f:4c:40:24:de:33:98:d2:19:ae:6f:5f:b2:cc:01:f8:3b:e2:
e3:5a:16:c9:96:b7:4c:67:19:aa:7d:aa:e3:5f:e7:2a:68:da:
7b:3c:1d:b9:91:e3:36:f6:59:0b:8a:15:12:37:87:92:0c:3d:
ec:bd:73:6e:74:85:06:d9:24:04:1e:59:05:cd:ce:bb:d9:e8:
58:0f:3b:76:5e:6b:bf:fa:7a:48:45:15:64:53:88:7c:ad:06:
e9:b0:e5:ca:86:76:f7:e0:b4:17:fb:e9:26:76:31:08:27:96:
3d:62:ae:89:2d:55:88:7b:0f:d7:c0:66:7e:3b:47:4a:04:00:
3e:d6:9d:46:32:17:8d:10:4d:a2:d3:c5:87:e7:d9:84:71:d9:
80:a5:9e:7e:18:3e:4b:1e:c2:db:84:8d:b5:f6:ae:ed:9a:51:
af:c0:5b:3c:17:c3:76:aa:2c:8f:52:96:26:ea:83:75:06:92:
c4:4a:a8:d2:75:d1:c9:56:51:79:0a:d9:f3:e7:09:f4:44:f8:
24:8c:56:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org