Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oXd5fUMpevqgOr6WROS7Auhjai4.roa
File: oXd5fUMpevqgOr6WROS7Auhjai4.roa (raw, json)
Hash identifier: tnzalc8Tj7/WOn14A1Y6UQ04MIGf6tNwVwj17/7VCgM=
Subject key identifier: A1:77:79:7D:43:29:7A:FA:A0:3A:BE:96:44:E4:BB:02:E8:63:6A:2E
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95C621675DBC44FBC612E2DCF07B2B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oXd5fUMpevqgOr6WROS7Auhjai4.roa
Signing time: Tue 06 Feb 2024 18:02:18 +0000
ROA not before: Tue 06 Feb 2024 18:02:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215634
IP address blocks: 2a0f:b241:4e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:c6:21:67:5d:bc:44:fb:c6:12:e2:dc:f0:7b:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a177797d43297afaa03abe9644e4bb02e8636a2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f1:cb:a3:64:fe:55:c4:12:9a:a4:2f:4a:57:
1c:2c:ac:1b:50:d8:3c:cc:b8:5a:86:2f:d8:9b:99:
13:5d:52:ae:0b:2e:3d:31:ce:57:1c:06:90:b8:25:
e5:cd:f9:ec:0f:d8:95:12:19:f2:07:45:d8:6d:cf:
66:ab:91:67:d1:1f:56:6e:2c:88:1a:73:61:7f:88:
c3:0a:99:fb:16:4d:24:c6:21:43:2a:42:f0:00:11:
e9:79:6b:d3:7d:83:1f:e4:57:d0:78:38:b9:f9:71:
66:60:ca:83:96:11:9f:1e:1f:36:66:ad:be:ed:5e:
08:60:44:c5:b9:75:88:80:ef:46:b9:da:ed:b9:ef:
fb:fa:67:0d:e0:29:c7:be:c2:c3:52:ba:dd:80:c4:
c8:04:14:22:b2:d0:52:1a:c2:99:1a:f9:57:64:6c:
4f:24:f4:65:a8:f5:e1:d4:4e:d9:21:c6:10:92:57:
91:88:91:6b:68:87:29:b9:a1:f2:2c:17:a6:4a:b3:
d9:42:cd:24:ba:be:4f:c5:c3:73:54:44:3a:f7:42:
e7:52:66:42:50:9a:58:44:f8:38:a0:e8:bf:72:1b:
0a:9d:36:44:6a:d8:ed:87:61:3b:66:68:62:6e:1f:
81:7b:98:10:8a:58:85:17:91:c4:43:89:f2:af:2f:
4e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:77:79:7D:43:29:7A:FA:A0:3A:BE:96:44:E4:BB:02:E8:63:6A:2E
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oXd5fUMpevqgOr6WROS7Auhjai4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:4e::/48
Signature Algorithm: sha256WithRSAEncryption
86:d0:6e:0f:38:68:25:0a:4a:dc:16:9c:62:69:4b:44:d4:11:
86:34:ba:e5:88:3c:92:b5:cd:d3:80:8f:f9:4e:77:16:57:1d:
6b:af:cc:20:ae:f7:2f:6e:3b:31:94:be:9e:42:15:d5:5a:77:
30:f3:6d:7a:05:bc:34:6a:b6:16:5a:32:66:e9:ae:c5:58:76:
62:4d:6d:f9:19:41:1a:52:23:43:dc:87:e2:a1:a2:cf:fb:68:
95:55:69:1e:32:bf:d9:6e:93:4d:fb:64:ca:fd:c5:7c:a7:13:
43:c2:7f:21:e3:34:f4:c5:40:75:d2:24:f4:28:5f:40:03:b3:
60:07:bb:ad:c3:62:06:cb:cf:7f:43:57:c6:33:66:94:1d:e7:
17:ab:17:a4:0d:79:f2:2b:b0:ce:61:54:17:b5:21:4a:93:aa:
f3:0a:6f:9e:0f:55:42:e7:53:62:e5:36:71:8c:df:07:c3:31:
60:a3:91:24:64:ca:32:55:88:6f:4c:85:44:9e:94:1d:ae:97:
4a:68:e1:a3:a1:eb:f6:7a:31:f7:dd:89:5a:31:20:ee:36:54:
d3:d1:21:83:54:73:75:a4:f0:e5:00:45:2b:6f:75:f2:c9:5a:
74:b5:2a:d5:1c:10:5e:98:2a:b6:e8:54:b4:9f:51:05:8d:1f:
c6:c1:c1:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org