Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/omK1sMab7mNrH9kI-OzrYq-mkMI.roa
File: omK1sMab7mNrH9kI-OzrYq-mkMI.roa (raw, json)
Hash identifier: nnCP3y40HRW929iuqgADVdH7n5ihpBs1A37ldgnI54U=
Subject key identifier: A2:62:B5:B0:C6:9B:EE:63:6B:1F:D9:08:F8:EC:EB:62:AF:A6:90:C2
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB6BA5BC185BFE5091C0C5DA8918C79
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/omK1sMab7mNrH9kI-OzrYq-mkMI.roa
Signing time: Tue 06 Feb 2024 18:38:18 +0000
ROA not before: Tue 06 Feb 2024 18:38:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204611
IP address blocks: 2a0f:b241:137::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b6:ba:5b:c1:85:bf:e5:09:1c:0c:5d:a8:91:8c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:38:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a262b5b0c69bee636b1fd908f8eceb62afa690c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fe:2d:0f:f1:36:97:0a:9b:0f:fa:65:40:d0:
ed:6c:d9:ef:1e:d2:9d:74:fc:15:49:2e:80:3f:2f:
c0:3f:04:b3:a6:c4:9d:07:74:fd:0d:e7:e9:d5:b4:
28:3d:10:71:ed:9e:42:09:95:c5:92:07:da:b4:64:
28:16:02:d3:36:4c:8a:de:b4:c7:a8:5f:69:2f:fd:
1d:77:04:ca:c1:f9:b2:52:89:41:bc:f7:6f:09:47:
43:f6:1b:20:10:86:50:27:b9:0d:96:69:4e:4d:f3:
be:f6:83:b9:45:80:12:f1:d9:bd:0d:3a:9c:bf:3b:
d4:96:93:75:42:89:ad:ba:cf:06:74:98:72:66:2f:
3e:5b:b9:1a:f2:8e:08:94:ee:e2:bf:81:ad:3b:b5:
a2:3b:8d:ca:17:7a:ca:e9:0a:20:b5:0c:12:0f:55:
3b:da:2f:29:7d:2a:18:96:4e:b7:35:c6:28:3b:6a:
a2:65:3c:c7:d8:fe:aa:d0:fd:b7:bb:78:d1:da:16:
65:e9:65:a5:4e:ac:90:c3:88:a3:0d:29:46:3c:64:
bb:cd:04:18:d1:c1:66:97:e7:a3:b4:31:cd:61:d6:
76:78:d3:55:b2:fc:e6:68:cf:de:ae:a3:14:05:a0:
78:62:0f:f4:94:00:6e:35:c5:b6:32:87:2e:36:10:
17:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:62:B5:B0:C6:9B:EE:63:6B:1F:D9:08:F8:EC:EB:62:AF:A6:90:C2
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/omK1sMab7mNrH9kI-OzrYq-mkMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:137::/48
Signature Algorithm: sha256WithRSAEncryption
89:23:0c:87:2c:cd:05:97:dd:74:f7:22:69:86:93:7b:79:42:
02:e3:f4:61:06:ed:ec:f0:31:2f:e7:5c:6a:60:b2:36:85:0a:
5e:95:d9:16:b1:c6:b7:b3:67:e3:d5:97:f2:6b:fb:4b:0d:e2:
d2:5b:85:b9:ee:7e:d0:96:e5:4a:53:19:b6:f9:44:84:7e:f9:
aa:ef:f8:c3:76:33:d5:ab:0f:54:88:bc:9c:1d:96:c3:74:5c:
8e:b1:da:68:9a:03:4a:57:18:9e:cc:89:b9:26:76:01:83:95:
58:78:c6:92:a8:c1:4e:15:ba:1a:72:5c:f3:84:69:15:3e:d5:
8f:16:03:23:e8:1c:7c:9f:4e:7f:8c:1b:bb:91:e1:a5:39:20:
ac:b3:cd:20:10:2a:aa:71:18:ec:0a:a0:4d:13:6c:fb:de:0a:
4f:25:3a:d0:e8:7e:2a:8a:d7:6d:cd:c7:95:03:4d:32:e0:3f:
aa:36:a2:13:1a:24:84:22:f1:31:5c:96:fb:d5:63:dc:82:6f:
b9:2f:a4:82:c5:f8:1b:8a:5b:66:7f:12:05:ff:c8:20:ad:07:
f3:ed:6f:6d:b8:e8:72:f2:60:d0:23:06:61:cb:68:85:5b:e6:
44:fb:93:5c:dc:46:d5:85:96:70:23:74:b9:69:76:d7:d8:2a:
34:76:d0:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org