Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oHm_CaOxDtcxHrAFbzuQLAGdDjo.roa
File: oHm_CaOxDtcxHrAFbzuQLAGdDjo.roa (raw, json)
Hash identifier: Dx46TZkL2gFxLkkxUE1JtildUmdqk55rVN0fwGWqv1Y=
Subject key identifier: A0:79:BF:09:A3:B1:0E:D7:31:1E:B0:05:6F:3B:90:2C:01:9D:0E:3A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F074F2DE4A436C3BDF1CFC01901ED5
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oHm_CaOxDtcxHrAFbzuQLAGdDjo.roa
Signing time: Wed 07 Feb 2024 05:00:35 +0000
ROA not before: Wed 07 Feb 2024 05:00:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199079
IP address blocks: 2a0f:b241:7f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:74:f2:de:4a:43:6c:3b:df:1c:fc:01:90:1e:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a079bf09a3b10ed7311eb0056f3b902c019d0e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:fc:38:32:0e:1a:a4:31:79:bd:d4:68:2a:af:
51:3e:11:83:7f:91:15:fd:b4:bc:7c:95:3e:11:e3:
9c:8f:ad:2d:11:4d:45:fa:45:2e:4a:5a:df:cd:25:
fb:0a:ed:8d:57:6f:d6:6e:15:48:e1:83:f7:95:99:
26:f7:51:a8:f6:4b:e6:2e:50:a6:83:f2:43:f2:65:
01:a0:47:2c:60:a9:34:aa:c3:22:29:d8:5b:ec:f1:
82:66:4a:50:7f:f7:3b:7f:a0:21:aa:b6:e6:5f:08:
8e:08:51:18:4f:54:54:f3:34:c2:4e:79:1e:f9:45:
2b:0a:8b:02:a6:2e:7c:81:f7:60:fb:c7:9d:c7:7e:
8b:88:f5:b4:4b:b6:56:ae:83:ff:e6:16:0d:7a:71:
d1:4a:08:04:9b:ce:a0:2e:20:b9:d1:cc:af:87:07:
1e:65:d6:d0:56:13:20:f1:c4:b9:2a:27:92:75:87:
8f:1d:f6:95:55:f5:45:0d:62:10:c2:a6:7d:9d:60:
75:3f:83:fe:fb:f0:4a:8e:d1:69:fd:73:fe:76:80:
43:bd:23:d3:4d:aa:5f:ed:4a:06:27:60:89:b2:e5:
93:3e:9c:bb:b7:d4:e2:98:a7:14:3f:57:3c:b5:59:
8a:c9:8c:99:e3:7a:66:4c:95:b6:71:a8:2e:da:a6:
04:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:79:BF:09:A3:B1:0E:D7:31:1E:B0:05:6F:3B:90:2C:01:9D:0E:3A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oHm_CaOxDtcxHrAFbzuQLAGdDjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7f::/48
Signature Algorithm: sha256WithRSAEncryption
77:e6:5b:11:91:bb:dc:fb:82:b5:7d:f6:8f:b5:f5:a2:3d:d0:
dd:df:8a:73:1e:1e:6d:d4:c9:c0:43:25:3c:79:b8:ad:7d:d2:
13:f7:88:5e:92:65:b4:6b:19:a5:f6:44:d1:96:5f:a3:15:0f:
76:8c:6d:1b:f3:5d:37:67:3b:2f:fa:f5:ff:a8:3b:1c:35:8c:
a1:26:92:b8:63:76:54:e4:12:a8:dd:1a:32:85:34:fd:94:36:
c3:6f:e7:e5:bb:87:ad:c8:03:ab:a0:51:a4:80:eb:d6:83:37:
06:05:07:b7:cd:1c:11:2b:22:b6:e3:56:15:1a:56:b3:02:08:
c3:f8:25:d9:ef:ea:96:32:d5:e4:b2:cd:58:2a:dc:83:43:8d:
bd:a1:a6:ee:b0:64:97:52:0e:68:77:a2:1c:92:76:95:c9:27:
61:4a:c2:6a:11:28:2d:75:85:20:41:87:1e:f6:c3:bd:15:14:
c6:84:7e:3f:14:8b:bc:b0:4b:1e:80:fb:a0:65:28:73:a2:08:
0d:30:8e:ba:1b:4b:ba:6c:a2:b6:4f:7a:ff:be:a8:ad:43:d3:
81:5a:95:43:fb:99:d6:78:c1:d2:c3:17:5f:14:11:3b:d6:3e:
ac:73:28:4d:19:2e:c6:8e:61:12:56:0c:45:e0:36:e3:ee:19:
f9:84:89:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org