Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Ot-kmAaumhXQA9dt0r5Sn4uJNiM.roa
File: Ot-kmAaumhXQA9dt0r5Sn4uJNiM.roa (raw, json)
Hash identifier: e5gcjD4uipD+LIqjLGjQsWMxlP9559/KHsaPFrb85xI=
Subject key identifier: 3A:DF:A4:98:06:AE:9A:15:D0:03:D7:6D:D2:BE:52:9F:8B:89:36:23
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA8FAE40B2D2130ED20CD03A6A9EC17
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Ot-kmAaumhXQA9dt0r5Sn4uJNiM.roa
Signing time: Tue 06 Feb 2024 18:23:17 +0000
ROA not before: Tue 06 Feb 2024 18:23:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200261
IP address blocks: 2a0f:b241:a9::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:fa:e4:0b:2d:21:30:ed:20:cd:03:a6:a9:ec:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3adfa49806ae9a15d003d76dd2be529f8b893623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2f:ad:8b:ac:20:89:bf:8b:35:31:32:d6:f3:
d4:cd:b1:d1:75:4b:b3:8e:6e:91:83:53:dc:d7:ae:
d4:0f:25:ea:ac:56:32:58:41:28:7c:ac:2a:5a:c1:
99:01:cd:08:f3:3a:95:c5:d6:63:ce:4f:d9:40:cb:
b6:7a:ff:2e:6f:21:0f:a8:69:4c:8b:26:6e:5e:f9:
f9:6e:29:52:a8:86:cd:c0:c6:87:43:a1:9c:d2:d8:
7a:d2:e4:0e:10:40:3e:24:61:2c:aa:e1:65:43:75:
1c:56:ef:1a:26:a0:33:99:67:3a:77:5b:5e:9f:74:
69:8a:71:0a:5d:13:30:54:2a:b6:76:f4:9a:f4:d1:
46:42:ae:16:99:87:b1:26:74:eb:45:53:85:d1:cb:
d7:4e:c3:53:c7:b0:41:f6:ad:32:41:6e:fb:d0:66:
2c:b1:7d:64:88:b2:c1:b6:15:e3:6e:b6:6c:12:6f:
5f:a9:6c:1f:f4:8b:c7:86:36:ed:05:82:a3:65:f3:
d2:8b:ec:e1:d1:fd:06:0d:fa:90:0f:2e:92:c1:c9:
8a:ce:de:98:16:f0:33:a6:51:11:ed:c2:9d:e0:0d:
67:46:e4:ce:ea:15:2c:0d:bf:c3:b7:f7:e9:5b:40:
3f:8a:84:45:9a:0f:9e:5e:1c:16:5d:cc:85:5a:20:
0f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:DF:A4:98:06:AE:9A:15:D0:03:D7:6D:D2:BE:52:9F:8B:89:36:23
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Ot-kmAaumhXQA9dt0r5Sn4uJNiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:a9::/48
Signature Algorithm: sha256WithRSAEncryption
71:ce:5c:a3:5a:e0:73:6b:85:a3:b6:dc:10:4b:50:5d:87:f2:
f7:ba:2d:8c:dd:7e:3f:63:87:2d:cb:6e:ba:6f:3b:b8:c6:30:
fc:d9:77:40:4a:77:88:60:d7:45:29:92:be:b3:3a:4c:e6:ec:
4f:e2:2f:7c:d7:ee:b3:b9:f6:78:df:8d:ed:ff:0a:f6:21:25:
2a:ed:0d:87:52:cb:ef:24:55:2c:b5:69:06:c0:f0:8f:ce:97:
fa:72:32:80:1c:eb:a6:45:c2:56:0b:3f:3e:51:de:cd:b6:2d:
b3:02:d6:39:f6:5e:76:58:5c:87:53:f1:e9:9f:a0:2c:c8:ba:
0f:db:62:80:b4:58:ff:f9:31:0c:89:20:c1:be:2d:f4:07:39:
75:f5:99:43:a4:c3:3f:5b:f3:fb:ef:c9:2c:f4:89:52:0b:d6:
71:5f:0b:40:ca:40:4a:79:52:89:80:98:c1:2b:f8:cd:8d:6d:
ef:b1:11:bf:2c:75:7d:71:07:25:33:4c:35:c5:03:b5:71:ce:
56:df:4c:fe:f3:05:23:09:68:0e:02:89:50:11:07:d6:d5:fd:
3c:f8:8b:c8:5b:db:18:d3:e2:d9:f8:1c:53:6a:6a:f4:f3:58:
98:7e:69:f3:3f:af:6e:54:a5:98:a9:73:b7:53:51:a0:6c:5b:
1f:6c:a2:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org