Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/SouY4mcWskKjeMBkHHLwkYRzZ9w.roa
File: SouY4mcWskKjeMBkHHLwkYRzZ9w.roa (raw, json)
Hash identifier: IsIQyIGKNfeFaltgFPRNcsm6wNMW/Lxs1tavSRk2F9c=
Subject key identifier: 4A:8B:98:E2:67:16:B2:42:A3:78:C0:64:1C:72:F0:91:84:73:67:DC
Certificate issuer: /CN=2e1164a9b5013d62f051344f6df91f13bc7ecb0f
Certificate serial: 01904B35CA9EBFE6C8F07D7C52D1A7F70379
Authority key identifier: 2E:11:64:A9:B5:01:3D:62:F0:51:34:4F:6D:F9:1F:13:BC:7E:CB:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LhFkqbUBPWLwUTRPbfkfE7x-yw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/SouY4mcWskKjeMBkHHLwkYRzZ9w.roa
Signing time: Mon 24 Jun 2024 17:05:34 +0000
ROA not before: Mon 24 Jun 2024 17:05:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42375
IP address blocks: 2a06:7840::/29 maxlen: 29
2a0b:2a80::/29 maxlen: 29
2a0d:4440::/29 maxlen: 29
2a0f:59c0::/29 maxlen: 29
2a0f:a380::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 26 Jun 2024 09:39:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4b:35:ca:9e:bf:e6:c8:f0:7d:7c:52:d1:a7:f7:03:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e1164a9b5013d62f051344f6df91f13bc7ecb0f
Validity
Not Before: Jun 24 17:05:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a8b98e26716b242a378c0641c72f091847367dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5b:d3:7c:d9:6d:72:80:bc:07:e8:cb:0f:55:
4f:f8:ce:da:14:d6:ea:be:d4:9c:41:37:40:2c:e0:
6a:ea:c2:b6:ee:8f:a9:5b:ba:51:06:93:f4:45:59:
7e:f4:43:58:92:d8:af:03:e3:dc:1f:b5:c0:34:72:
b9:d0:04:d8:37:f8:50:bd:aa:bb:bf:42:a2:21:e6:
87:6a:6e:08:b1:4f:5a:45:06:84:35:a8:49:dc:91:
8c:94:26:d2:89:91:51:38:e2:64:9d:d7:db:e3:62:
e6:14:bf:b3:43:af:bc:5e:2f:de:c1:74:6d:d8:e9:
27:fc:13:62:61:a8:9a:db:ce:e6:f0:2b:d6:4c:83:
8b:a4:c6:1c:5d:97:44:a9:22:e6:0d:5e:a8:9d:8d:
0e:77:5f:1e:20:75:12:f2:1e:f2:e5:cf:14:6b:bc:
a0:11:21:8d:52:df:d8:08:4b:a5:c0:56:37:a3:36:
2b:9e:84:74:8d:73:a3:b5:7d:56:3c:71:dd:27:84:
95:87:99:91:33:f0:04:1a:3e:08:0d:e0:c7:77:db:
61:2f:03:8f:ec:d2:99:29:c8:ac:75:1f:0d:c1:37:
d4:af:84:56:e3:4b:2e:a9:74:a9:12:78:35:48:77:
64:16:d8:8f:f4:70:b6:c8:f6:30:9d:09:18:e7:37:
ab:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:8B:98:E2:67:16:B2:42:A3:78:C0:64:1C:72:F0:91:84:73:67:DC
X509v3 Authority Key Identifier:
keyid:2E:11:64:A9:B5:01:3D:62:F0:51:34:4F:6D:F9:1F:13:BC:7E:CB:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LhFkqbUBPWLwUTRPbfkfE7x-yw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/SouY4mcWskKjeMBkHHLwkYRzZ9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/LhFkqbUBPWLwUTRPbfkfE7x-yw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:7840::/29
2a0b:2a80::/29
2a0d:4440::/29
2a0f:59c0::/29
2a0f:a380::/29
Signature Algorithm: sha256WithRSAEncryption
66:6e:9d:cf:82:2d:35:6c:00:1e:da:e6:08:c9:28:7c:72:bb:
01:63:9a:ee:43:2d:ea:51:39:09:a4:7f:e1:4d:ae:8b:ac:df:
82:f3:66:6c:8e:da:c1:27:8a:d0:59:76:2f:37:86:36:d9:0b:
a6:b7:b8:74:7b:e5:93:28:d7:1c:3a:35:40:74:a4:16:0d:d1:
e2:d1:53:5d:df:9b:c7:ac:64:0f:02:ab:4f:b8:48:a3:6a:44:
db:fd:d9:db:8a:4b:cd:bb:b5:93:ac:8d:23:d4:95:3a:86:4d:
7b:e1:24:63:c6:c9:c0:5f:04:aa:30:3b:60:cc:81:81:74:45:
eb:7d:11:20:b4:9b:86:ee:4a:8d:c2:6d:9c:db:d7:71:98:fb:
dc:fb:6c:2c:5a:29:bb:0e:c5:4c:3c:60:09:ec:f3:64:4e:85:
5a:e6:f2:b4:a0:4b:d9:27:0b:f5:e5:39:6d:0d:65:92:89:94:
69:97:dc:c4:68:70:8d:dc:b1:44:00:ac:24:28:0c:df:4a:dc:
76:f0:a1:ca:30:2f:2c:64:2d:7a:8d:27:ed:94:62:f6:5e:9b:
f6:1a:a9:27:f5:4f:62:74:88:56:17:14:06:6f:69:41:71:cd:
0d:0c:9d:b9:7b:d4:7a:e9:ef:11:80:8b:bb:80:a5:1e:7f:94:
2f:ca:9b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 15:26:59 2024 by rpki-client on console-fra.rpki-client.org