Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oebEZ9vaH39zRwv--hARmH-vlW8.roa
File: oebEZ9vaH39zRwv--hARmH-vlW8.roa (raw, json)
Hash identifier: R1QSzswKveKC6aaDBL4XZurVgEkrdIifBhuA7ADopzU=
Subject key identifier: A1:E6:C4:67:DB:DA:1F:7F:73:47:0B:FE:FA:10:11:98:7F:AF:95:6F
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0C05F96C130D27C23BF77D5ACD597
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oebEZ9vaH39zRwv--hARmH-vlW8.roa
Signing time: Wed 07 Feb 2024 05:00:55 +0000
ROA not before: Wed 07 Feb 2024 05:00:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216166
IP address blocks: 2a0f:b241:155::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:c0:5f:96:c1:30:d2:7c:23:bf:77:d5:ac:d5:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a1e6c467dbda1f7f73470bfefa1011987faf956f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9b:3e:ad:94:62:8f:b3:52:c1:06:4e:a2:63:
48:9c:7a:3e:61:d7:46:ae:c9:a5:82:48:57:c8:8a:
f3:74:f1:6b:7d:78:87:2f:aa:bb:e5:ba:0b:bc:a5:
cb:05:3a:e6:62:e4:52:c3:c3:b0:04:b9:32:61:77:
c3:44:95:c7:7b:e6:3e:45:3f:d7:b1:a9:1c:ae:33:
e5:e6:9d:b7:76:e8:74:2d:3a:14:dc:9f:18:4f:d5:
a7:28:57:9d:c9:36:ed:d8:aa:b9:3f:a3:44:4d:c3:
7d:76:ba:1d:35:b1:7e:a3:dc:f5:1f:78:43:7d:bb:
59:a0:68:77:c4:68:67:ab:cc:3f:d0:c5:15:21:42:
09:73:c8:a9:d3:5b:d7:52:2b:64:4a:51:0a:69:14:
79:38:76:16:04:65:9a:41:f1:4e:1c:77:9f:82:9c:
94:ed:78:47:70:9d:b1:e7:f7:6f:6c:f5:6f:6a:2d:
f9:c0:3b:8f:8b:37:49:83:90:10:e3:59:08:f9:c9:
6c:2d:61:9e:09:ae:f1:85:ef:1c:08:13:3c:7f:08:
52:e0:31:24:e3:9b:5f:d0:92:d9:4d:f3:93:0b:c3:
d4:62:2c:c1:cf:a0:ef:f4:d0:2f:21:22:ca:1e:0a:
55:06:cc:8c:cf:ce:a1:88:4d:da:17:fe:23:01:6b:
b4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:E6:C4:67:DB:DA:1F:7F:73:47:0B:FE:FA:10:11:98:7F:AF:95:6F
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oebEZ9vaH39zRwv--hARmH-vlW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:155::/48
Signature Algorithm: sha256WithRSAEncryption
17:0b:1e:70:a1:8d:79:5a:4c:4e:fd:41:b3:c0:be:4e:aa:e1:
b0:3b:5a:e9:9e:ac:7f:0d:e6:a3:6b:0b:84:e3:1b:d3:16:cd:
68:26:94:a5:27:d0:a9:24:45:14:a8:d0:d2:0a:e1:86:07:4e:
5e:c6:43:c3:5c:22:2a:d3:b1:75:be:3d:f6:8b:bc:cc:e5:9c:
27:2a:86:f7:37:4b:ed:4a:71:88:e1:59:cd:10:58:b8:15:77:
c2:cb:3c:21:21:a8:8c:89:b9:22:a9:0b:35:61:11:7b:cc:1e:
f6:d7:72:b6:9e:3c:d5:9b:01:90:d5:0f:b4:1a:aa:ab:ef:42:
58:73:13:0f:54:7a:97:23:d0:40:fc:62:d7:f2:90:24:b5:0d:
a9:ee:70:7e:fa:a6:ec:a9:df:2e:f3:eb:9e:7b:8a:0f:f4:0a:
0e:e4:b6:48:a4:a4:89:c6:82:9a:e6:b1:b3:0b:6f:2f:15:4e:
37:68:ec:de:d4:7b:65:e7:20:95:c2:c1:71:d1:c0:38:c0:1b:
27:e5:c0:89:74:29:e6:71:aa:5e:87:b8:f1:b6:95:10:11:5d:
86:e7:23:d8:08:02:93:4e:4d:62:30:ee:b3:7b:e2:5e:02:74:
3d:30:78:73:53:10:ff:9d:d3:4f:16:89:09:79:c1:5a:71:99:
e0:ec:51:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org