Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0MsORkeq4A7LNLbQbAoo-1A_rgY.roa
File: 0MsORkeq4A7LNLbQbAoo-1A_rgY.roa (raw, json)
Hash identifier: OkFlW35SbkM+WMwIl/LceTXhhJpob7MDPAx/0Ld950k=
Subject key identifier: D0:CB:0E:46:47:AA:E0:0E:CB:34:B6:D0:6C:0A:28:FB:50:3F:AE:06
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F08A0F914FCF00ABEFF6A84112EAB7
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0MsORkeq4A7LNLbQbAoo-1A_rgY.roa
Signing time: Wed 07 Feb 2024 05:00:41 +0000
ROA not before: Wed 07 Feb 2024 05:00:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202201
IP address blocks: 2a0f:b241:e1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:8a:0f:91:4f:cf:00:ab:ef:f6:a8:41:12:ea:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0cb0e4647aae00ecb34b6d06c0a28fb503fae06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5d:7c:6c:8a:06:26:56:d8:f3:37:1f:bd:cf:
f0:4c:d4:16:9c:f1:89:d4:82:e0:06:07:c6:6d:7c:
d8:43:64:ae:26:97:e5:cf:63:78:db:fd:89:0e:bd:
62:06:30:6a:22:d2:90:d7:e8:9f:06:e5:ec:bd:3b:
38:ce:cf:cf:18:ea:6b:83:2a:7f:9b:00:62:47:3c:
60:f5:22:87:d7:99:61:ea:68:fb:6d:6e:2c:e4:26:
86:74:b9:1e:ac:5a:3d:94:5c:87:64:e6:d2:49:e0:
82:8c:8c:8e:75:3a:ac:a5:00:6c:f0:29:fd:e7:2f:
e6:e7:2d:36:4a:99:75:ce:42:97:df:51:bd:d5:94:
fa:a0:8b:96:b3:b3:ce:bc:4c:fc:77:df:b1:a5:5e:
ae:63:8d:ec:35:21:1c:0a:fe:b6:f7:27:61:8f:ef:
fc:e9:2c:75:78:15:33:91:84:0b:f3:5f:6f:b3:32:
08:18:f4:20:91:68:0d:b6:5a:be:e0:1d:8e:ff:01:
f5:77:5b:df:55:bc:76:92:55:83:b3:a0:33:c3:9a:
60:c1:76:57:a5:ab:e4:70:6c:75:d1:5f:0b:12:31:
9d:58:06:94:fa:35:2b:6b:60:93:e0:09:52:1a:7d:
ba:6b:5a:79:d3:7b:17:2d:c3:f0:13:c6:4d:84:48:
5b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:CB:0E:46:47:AA:E0:0E:CB:34:B6:D0:6C:0A:28:FB:50:3F:AE:06
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0MsORkeq4A7LNLbQbAoo-1A_rgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:e1::/48
Signature Algorithm: sha256WithRSAEncryption
32:e4:f8:e7:f7:bc:fb:e5:c9:5c:13:55:49:36:02:c4:17:e6:
72:35:1d:4a:81:e0:e0:39:bd:d5:66:20:b5:2f:47:ff:40:0a:
ca:69:38:7a:b2:21:ba:fa:23:6a:fd:e0:c3:a3:5f:33:94:8e:
1e:ff:f0:27:7f:59:bf:6d:8c:11:1a:07:8c:4c:78:2d:8b:6e:
cd:0a:f3:05:a2:5e:9e:19:8e:2e:cb:30:89:91:26:f0:fd:db:
41:ef:50:67:56:b0:f5:2c:09:2c:27:fe:7e:8e:a6:f2:de:24:
67:36:fc:9e:b9:1b:32:9a:95:6d:4d:e1:5a:dd:fc:08:c7:1f:
fd:9e:7e:8c:39:ce:50:17:43:d7:c1:27:79:52:88:b7:d6:f1:
e1:11:91:68:85:98:4e:c2:af:70:69:f2:cc:9d:17:79:bc:7c:
e8:5a:2b:34:1b:79:68:62:be:4f:1a:b4:70:f7:8a:16:49:f5:
00:99:96:20:e2:79:69:38:de:dc:96:b2:a7:0f:90:dd:4c:35:
59:e0:a2:8f:9a:0d:7a:97:81:8d:aa:45:b1:cc:09:f4:6c:4f:
6e:86:0c:9a:47:d4:40:5f:66:fb:4f:c3:00:86:b4:b6:ab:d7:
44:3d:05:22:98:8a:77:8d:11:2e:1a:29:10:f8:f5:13:46:a4:
a2:d8:c3:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org