Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/mOh7MTBPEzrbt9_iqyztQdEShTE.roa
File: mOh7MTBPEzrbt9_iqyztQdEShTE.roa (raw, json)
Hash identifier: QgT9UNmEPeC73A9+Nf5nhHHiOx7hMCq6urRNEBRnjZw=
Subject key identifier: 98:E8:7B:31:30:4F:13:3A:DB:B7:DF:E2:AB:2C:ED:41:D1:12:85:31
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95C1DCA5EB7F760E2934C62E5BE09E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/mOh7MTBPEzrbt9_iqyztQdEShTE.roa
Signing time: Tue 06 Feb 2024 18:02:17 +0000
ROA not before: Tue 06 Feb 2024 18:02:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211966
IP address blocks: 2a0f:b241:49::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:c1:dc:a5:eb:7f:76:0e:29:34:c6:2e:5b:e0:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98e87b31304f133adbb7dfe2ab2ced41d1128531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:47:01:f2:16:e2:9f:c3:f3:3c:ef:75:46:e8:
e7:32:9e:03:ed:93:7b:1d:7e:6c:88:4f:16:87:31:
35:29:74:7b:48:48:25:e3:19:d9:32:9c:62:fd:57:
c2:98:a8:a9:e8:b5:63:6c:17:b2:cd:82:f2:b4:63:
9e:4a:1f:19:ce:b5:e8:a8:64:48:0c:56:db:c1:d0:
3d:2e:02:73:3d:0c:05:37:b9:3c:d5:d4:b0:b4:89:
a4:6b:66:57:30:cb:f4:4e:ea:b6:9b:f5:65:52:95:
0b:14:59:a7:5b:c9:e3:6c:85:2e:a9:43:b0:dc:3a:
81:f9:c7:51:b0:a2:fb:47:90:4a:99:a9:03:01:a8:
53:74:28:10:ee:76:e0:67:2f:9d:0d:e5:0f:03:ee:
c9:a4:e0:48:73:53:cb:c4:f2:6c:05:30:8e:04:b9:
f3:ad:34:5d:23:08:a3:ce:86:de:37:aa:c8:75:f0:
fe:1f:dd:b6:96:a2:4e:3c:a8:dd:4c:ef:cc:5f:0e:
7f:b9:30:a9:cb:fa:c6:ba:cc:6c:44:26:77:39:b4:
e9:5e:ad:27:d7:8c:31:2b:14:42:15:85:48:f0:d1:
de:4d:8f:56:b6:08:81:a6:54:6a:59:aa:38:d9:7a:
b8:17:b9:79:4e:e6:53:85:91:7e:55:6d:57:d1:cc:
e3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E8:7B:31:30:4F:13:3A:DB:B7:DF:E2:AB:2C:ED:41:D1:12:85:31
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/mOh7MTBPEzrbt9_iqyztQdEShTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:49::/48
Signature Algorithm: sha256WithRSAEncryption
39:83:12:4a:a7:37:ae:8d:65:5b:91:f4:98:38:09:19:24:c1:
5a:ce:78:36:64:23:69:14:c4:82:2e:16:bd:df:61:26:42:4f:
0a:f3:da:3f:55:58:55:97:38:e3:4c:3e:24:e9:94:04:6b:1a:
89:f7:3a:51:60:26:ca:b8:ea:b6:c6:87:a2:9e:df:dc:e6:5d:
f5:8f:b1:b4:21:b6:74:15:8f:48:9f:3c:e2:80:70:bc:dd:20:
e2:5f:1c:56:b4:0e:9b:8a:6b:b2:86:96:b6:e2:52:dd:89:60:
96:ee:1f:df:a9:0e:b5:63:03:e5:99:96:76:de:bd:0d:76:ad:
3b:dd:ac:1e:99:fd:c0:c7:27:87:f6:eb:16:09:6e:43:a5:54:
6a:b9:d7:12:6f:3e:6f:c0:f5:09:8d:fb:00:a9:3d:b3:31:82:
bb:ad:e1:45:71:a5:4e:03:d4:bd:f2:43:35:dc:d7:79:74:3c:
cd:0b:a8:c5:09:ae:4b:e7:d0:20:2c:43:04:39:90:c7:eb:ac:
d2:2f:27:ad:a9:45:3c:53:7b:3a:40:d7:0d:81:db:cd:72:e5:
c1:70:73:31:86:b4:dd:b6:70:a9:cc:96:ef:10:b7:2c:f7:5c:
94:4a:d4:14:cf:92:3e:d5:9d:60:4a:30:6b:e7:d4:b5:60:2b:
18:36:04:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org