Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/OrGTx0ekoSH6rEUll8PDQ9eTZHo.roa
File: OrGTx0ekoSH6rEUll8PDQ9eTZHo.roa (raw, json)
Hash identifier: xIXANVj2yCxfCJ0MOT83p/iPPMu1LRoIpyWaIbnrFVE=
Subject key identifier: 3A:B1:93:C7:47:A4:A1:21:FA:AC:45:25:97:C3:C3:43:D7:93:64:7A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA8FB81EC10EB9B9F607ED21AA1CB2F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/OrGTx0ekoSH6rEUll8PDQ9eTZHo.roa
Signing time: Tue 06 Feb 2024 18:23:17 +0000
ROA not before: Tue 06 Feb 2024 18:23:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200262
IP address blocks: 2a0f:b241:ab::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:fb:81:ec:10:eb:9b:9f:60:7e:d2:1a:a1:cb:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ab193c747a4a121faac452597c3c343d793647a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a6:9a:ff:74:e5:8b:89:3d:f2:87:14:26:18:
48:d4:29:5e:6f:7b:8b:04:4d:c2:67:ba:7a:72:b9:
46:e8:f9:d0:13:de:96:3a:38:a7:7d:0a:f6:b5:a8:
40:2c:84:68:56:cb:d2:20:98:4f:d8:0c:22:0c:f9:
1c:e3:56:7d:b6:58:7a:97:ea:a7:02:d3:0b:8c:ec:
56:d4:95:ca:9d:2a:1c:82:0e:d4:d1:16:c5:e8:1f:
52:29:60:95:ae:0f:23:4a:c2:31:bb:b9:19:68:e1:
42:a5:1f:a5:d6:fc:f4:83:c2:a5:7c:07:af:e7:c8:
5d:3a:e6:20:31:20:11:c8:7f:61:53:7c:60:a5:f9:
a7:6e:cf:90:6d:48:8d:ce:67:e4:0b:97:ad:1a:d1:
28:ea:cb:40:b0:11:4f:16:c0:f0:e1:d1:df:68:81:
2f:00:a3:87:ad:f0:a1:5d:91:4f:54:c3:7d:80:5b:
62:c1:fe:92:b6:fa:77:50:e8:52:81:04:7a:62:6d:
e3:fc:f3:b1:8a:cb:fd:6d:af:29:5d:8c:a1:b5:79:
3c:ea:ec:9f:d9:c0:fa:6f:20:8c:ea:a9:43:cd:6a:
84:b0:29:39:f9:71:ac:b8:ce:61:9f:9f:9c:3f:9b:
ab:72:77:91:de:ca:b8:50:91:95:62:aa:87:2a:58:
3a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B1:93:C7:47:A4:A1:21:FA:AC:45:25:97:C3:C3:43:D7:93:64:7A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/OrGTx0ekoSH6rEUll8PDQ9eTZHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:ab::/48
Signature Algorithm: sha256WithRSAEncryption
25:92:eb:16:9f:35:a7:d1:e4:ee:bc:7a:96:52:ce:3b:1a:2d:
27:de:7e:0a:42:97:f9:90:26:5a:ca:47:7e:b5:0d:04:4b:64:
57:cc:81:28:53:8d:21:bc:2e:ed:7c:f3:08:40:a6:2b:d8:99:
c9:5e:c6:f6:b6:45:de:12:5f:ef:c4:47:5f:49:75:e3:28:f5:
8a:fa:78:9d:31:ec:4d:cb:f4:55:01:0e:bf:24:56:72:bc:04:
16:0d:e6:ef:87:ed:d7:78:1a:d7:91:98:65:a3:3f:90:da:d4:
eb:10:70:99:98:9c:d7:22:3f:f5:ef:f6:ea:4d:4a:07:6e:7f:
6b:ec:79:b8:66:f6:5a:13:08:82:da:9f:4f:5d:78:76:ee:71:
4e:28:c1:dc:35:81:21:23:ff:82:34:f4:74:32:65:9a:7c:83:
0f:5c:41:a0:cb:e7:97:11:b9:c4:be:2c:08:1e:c8:84:c2:b6:
ca:23:b6:23:07:74:96:88:55:da:1e:b1:c5:a3:b7:b2:4f:35:
4b:f7:fc:d2:11:d1:93:43:f4:6e:0c:bc:34:76:04:1d:c2:9c:
d2:2a:27:a2:ad:a4:57:d7:d3:65:a7:8c:25:27:09:a2:e0:35:
8c:1e:76:9b:ab:3d:de:df:6b:db:ce:78:20:ba:34:d9:e5:c1:
e0:2f:d6:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org