Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oq0w7m6Gc4HCnocZinEgUeots_4.roa
File: oq0w7m6Gc4HCnocZinEgUeots_4.roa (raw, json)
Hash identifier: Z8RHv9byIOLb1Qd0BFcNkCd1mf3uNrExaJVBiPfAqnE=
Subject key identifier: A2:AD:30:EE:6E:86:73:81:C2:9E:87:19:8A:71:20:51:EA:2D:B3:FE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB6BB668B37BD1C4B63F8B01D268FFB
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oq0w7m6Gc4HCnocZinEgUeots_4.roa
Signing time: Tue 06 Feb 2024 18:38:18 +0000
ROA not before: Tue 06 Feb 2024 18:38:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204914
IP address blocks: 2a0f:b241:139::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b6:bb:66:8b:37:bd:1c:4b:63:f8:b0:1d:26:8f:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:38:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2ad30ee6e867381c29e87198a712051ea2db3fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b0:64:e4:98:a2:a7:0a:be:da:0b:f6:6a:16:
c8:fe:6c:89:4a:2d:0c:75:86:56:a8:0c:87:84:f6:
28:4e:fa:f7:e8:d6:8b:45:30:70:9a:75:eb:00:b5:
d5:5a:8b:5d:64:b2:43:a7:da:ce:69:f3:86:79:04:
00:37:ca:26:5d:e9:64:61:c6:15:34:10:43:2a:59:
c5:b2:c4:36:71:58:3f:83:f0:e8:b1:07:c2:7c:a6:
ab:fb:ca:07:c0:9b:cc:ba:31:f7:fb:cb:08:35:93:
8b:c9:2e:e6:ee:18:ed:4f:d0:55:f9:5b:f7:6c:b4:
38:60:56:1e:9c:24:0d:bf:d1:be:d8:b9:a2:b7:3f:
32:30:4e:50:eb:87:ec:97:f9:99:49:b8:42:bc:39:
b3:0b:3c:92:c8:0a:d1:61:5b:3c:b4:bd:84:94:65:
a4:24:d4:b6:30:77:09:0e:cf:04:ee:1d:7d:d9:eb:
17:86:f8:f6:ce:4c:b6:5b:57:64:28:09:a4:b8:24:
3b:59:32:95:53:c5:8f:21:d0:6f:33:7b:17:8a:40:
98:c8:3d:a6:9d:9a:d3:59:2d:25:9b:4c:c8:11:06:
e1:0b:65:cc:48:7e:95:1b:63:33:99:1c:d2:97:3d:
18:86:7a:17:07:8e:54:e7:2e:c2:56:87:2f:de:8d:
39:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AD:30:EE:6E:86:73:81:C2:9E:87:19:8A:71:20:51:EA:2D:B3:FE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/oq0w7m6Gc4HCnocZinEgUeots_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:139::/48
Signature Algorithm: sha256WithRSAEncryption
46:a9:93:e4:c5:a9:9a:d9:6e:c5:5f:7b:b9:c1:6d:b6:ef:33:
c1:d3:c8:cb:05:04:e3:0c:5e:96:4a:1e:90:54:59:46:39:bf:
63:36:94:b9:e1:80:ca:15:2f:07:29:88:45:9a:4b:21:7a:17:
d8:a6:6c:36:9f:97:94:33:87:ad:89:72:73:64:a1:f7:1b:da:
0d:bf:cb:89:aa:b9:94:92:11:58:33:51:5d:0d:b7:7a:9c:ec:
85:0b:38:27:b4:f0:54:60:18:84:af:bc:bc:f3:07:d0:35:9e:
08:7a:45:22:40:1d:42:32:30:f3:19:b4:88:e3:82:7e:89:c2:
a3:9d:9d:de:55:42:d3:91:af:bf:91:92:51:9c:3a:f2:67:a3:
d5:8e:0b:67:22:ee:ea:7c:36:b4:4a:02:9d:03:5c:e5:e6:ae:
63:56:30:45:c3:3b:69:d7:e6:78:5b:14:c7:4b:b9:24:84:5d:
c2:df:13:26:b8:81:f3:cc:0e:ac:bc:22:52:9e:bb:0a:7b:51:
e0:10:9d:02:a1:17:db:fa:66:78:f8:26:0c:73:dc:30:10:07:
49:1c:31:04:6d:8f:d6:af:e3:63:02:46:c9:fb:d0:21:e8:a1:
e6:c2:30:c6:7b:dc:a5:43:bb:1f:79:8d:6e:9b:21:78:12:60:
5c:8d:0a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org