Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/Oekoam6TrwnHhkDAdt4J0nf8ggk.roa
File: Oekoam6TrwnHhkDAdt4J0nf8ggk.roa (raw, json)
Hash identifier: wQjC2XdxxuhRhm0VuzC1YT6hBUS8eQxfuFP7sR508Q4=
Subject key identifier: 39:E9:28:6A:6E:93:AF:09:C7:86:40:C0:76:DE:09:D2:77:FC:82:09
Certificate issuer: /CN=458d12f095053c35876b88b47685d6435421fcf2
Certificate serial: 0185C20EFAA878A415BE1333EB348B5C08C2
Authority key identifier: 45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/Oekoam6TrwnHhkDAdt4J0nf8ggk.roa
Signing time: Tue 17 Jan 2023 23:27:19 +0000
ROA not before: Tue 17 Jan 2023 23:27:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51395
IP address blocks: 2a0b:7140:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 01 Jun 2023 07:12:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c2:0e:fa:a8:78:a4:15:be:13:33:eb:34:8b:5c:08:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=458d12f095053c35876b88b47685d6435421fcf2
Validity
Not Before: Jan 17 23:27:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39e9286a6e93af09c78640c076de09d277fc8209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:da:e3:47:68:12:26:e0:31:b2:32:b0:e5:8b:
e8:0f:e5:93:4c:30:e7:ef:ea:f8:c4:bf:d4:14:0f:
57:5b:38:4f:d6:bf:bf:7a:c0:d8:bb:28:65:ec:4f:
0d:ab:5e:14:67:ee:54:1d:1c:ae:5b:4a:68:c5:5f:
b8:19:d1:42:d1:06:9c:20:f7:0f:a9:2b:34:05:0d:
4b:51:3b:34:de:b6:74:cb:18:4f:c3:47:1f:1f:d2:
4f:85:78:7d:8c:eb:4c:d7:e5:8e:ff:a5:9d:92:18:
8f:f7:79:6c:82:22:89:e8:61:f1:86:1b:2b:54:5c:
38:aa:b9:04:73:88:a0:c9:88:70:b0:47:b1:ca:4a:
4e:5d:d9:29:28:e7:6d:92:34:3e:da:63:13:59:48:
1c:2d:a1:e7:8e:af:f0:be:a5:15:4e:e3:a2:79:dd:
5e:52:16:7f:fa:69:0a:59:fb:75:7c:b5:c0:8d:d5:
0d:b1:c1:a5:ca:36:30:86:4a:03:ab:ca:c9:32:9b:
0e:27:c6:ce:23:c8:44:e5:b8:ce:5a:ad:8f:0e:7e:
94:c5:63:5a:a3:89:08:67:24:4d:d2:a8:3f:11:26:
69:e5:73:18:85:64:44:1f:ea:23:03:e7:92:fe:00:
a3:2e:97:76:28:98:37:ab:39:4a:36:35:42:eb:a0:
a8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E9:28:6A:6E:93:AF:09:C7:86:40:C0:76:DE:09:D2:77:FC:82:09
X509v3 Authority Key Identifier:
keyid:45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/Oekoam6TrwnHhkDAdt4J0nf8ggk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:7140:4::/48
Signature Algorithm: sha256WithRSAEncryption
7d:e9:1f:66:fb:0c:82:99:3a:b3:bd:b5:23:c0:1e:5f:73:06:
a1:b5:f9:34:19:62:d6:91:2e:2d:3f:f9:c9:5a:e7:20:c5:6a:
f0:f5:24:40:49:bf:54:4f:fc:53:48:81:f2:24:4e:7d:52:f7:
b4:e3:da:61:c8:11:de:09:ef:5a:d3:dd:4b:12:bf:4e:5c:44:
3a:7c:ba:66:f1:53:71:14:ec:a7:44:b2:ba:06:be:e8:f3:bb:
ae:06:dc:95:fc:c4:75:dd:23:5e:3b:41:41:51:f3:79:f9:d6:
40:6f:59:f6:44:4e:8c:1f:97:bc:9b:cd:f2:85:08:e4:d5:c6:
56:58:7d:e0:ea:cb:58:ba:5c:c1:74:ed:77:09:cb:91:19:a7:
c9:ea:31:30:2c:b1:bc:a5:07:6a:d6:84:af:95:d5:2f:6c:b4:
99:d7:d6:9b:9d:5c:e1:b4:37:31:e9:38:9c:6e:b7:f3:a7:5b:
f5:c3:de:60:32:20:24:82:a6:e8:62:22:07:95:17:e7:94:1c:
c8:4e:3f:d1:b6:81:2a:fd:50:c1:05:9d:82:f9:c7:12:ae:04:
ab:60:ec:cc:5b:4a:7d:7d:fa:36:1e:ea:99:c3:dc:ea:51:fc:
ce:73:83:91:f1:7e:46:00:b7:58:ad:17:f9:ec:17:bb:95:fd:
5e:0b:ed:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:55 2024 by rpki-client on console-ams.rpki-client.org