Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/780c34-183b-46f4-b961-d4ae4071328f/1/FdiBt3_uIbtxsIe1JIJ0xri3UmU.roa
File: FdiBt3_uIbtxsIe1JIJ0xri3UmU.roa (raw, json)
Hash identifier: FBkgzNwSfHEd7h//pN52/pG3DHEybF7Qv+43CJmJpcY=
Subject key identifier: 15:D8:81:B7:7F:EE:21:BB:71:B0:87:B5:24:82:74:C6:B8:B7:52:65
Certificate issuer: /CN=8453d1e8618ef8fae8075ddd58270d094006be99
Certificate serial: 019421B1D26793EAF11775F9BA38CBD574A2
Authority key identifier: 84:53:D1:E8:61:8E:F8:FA:E8:07:5D:DD:58:27:0D:09:40:06:BE:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFPR6GGO-ProB13dWCcNCUAGvpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/780c34-183b-46f4-b961-d4ae4071328f/1/FdiBt3_uIbtxsIe1JIJ0xri3UmU.roa
Signing time: Wed 01 Jan 2025 11:48:09 +0000
ROA not before: Wed 01 Jan 2025 11:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59577
IP address blocks: 2a12:5b80::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 08 Jan 2025 19:23:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:d2:67:93:ea:f1:17:75:f9:ba:38:cb:d5:74:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8453d1e8618ef8fae8075ddd58270d094006be99
Validity
Not Before: Jan 1 11:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=15d881b77fee21bb71b087b5248274c6b8b75265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:96:87:5c:28:5b:4a:85:e1:ce:b7:10:47:3a:
72:1a:b5:d5:34:21:82:21:d6:15:89:cf:08:b8:57:
66:c1:b0:07:36:c5:ef:64:ff:6c:64:1e:2b:bd:8b:
4d:57:7b:5e:57:ab:a3:42:a1:21:5d:2d:58:42:c9:
db:b2:79:b8:08:60:0a:a2:78:9e:6a:db:6a:29:12:
9c:5e:e8:92:b3:04:79:05:d9:9e:ad:7f:e6:6d:ab:
1b:df:33:b4:7b:34:66:90:be:a3:c9:ff:56:c2:00:
52:2c:a5:4d:95:2b:aa:fa:36:5e:28:6a:06:2f:d7:
3c:3d:71:22:79:81:d9:f7:03:ee:32:57:e5:7e:9d:
fc:3d:cb:a2:96:03:89:ae:36:32:a0:4d:1a:b5:a4:
a9:73:b9:b0:8b:31:50:63:81:5c:9c:ad:19:1c:c1:
19:74:5b:5a:c8:eb:ca:83:54:59:b0:9f:72:a0:86:
73:17:73:10:9d:9d:ea:bb:2e:54:db:89:cd:a6:df:
48:af:97:14:f6:6c:72:b8:3e:0b:c5:d4:df:aa:25:
c2:85:cc:ae:3a:2d:96:65:ed:07:63:5d:2c:eb:aa:
0c:fb:5e:36:52:62:0e:2e:17:e0:88:dd:18:23:59:
9b:d8:fc:66:68:83:d7:97:04:04:50:45:17:a5:69:
67:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D8:81:B7:7F:EE:21:BB:71:B0:87:B5:24:82:74:C6:B8:B7:52:65
X509v3 Authority Key Identifier:
keyid:84:53:D1:E8:61:8E:F8:FA:E8:07:5D:DD:58:27:0D:09:40:06:BE:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFPR6GGO-ProB13dWCcNCUAGvpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/780c34-183b-46f4-b961-d4ae4071328f/1/FdiBt3_uIbtxsIe1JIJ0xri3UmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/780c34-183b-46f4-b961-d4ae4071328f/1/hFPR6GGO-ProB13dWCcNCUAGvpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:5b80::/29
Signature Algorithm: sha256WithRSAEncryption
e5:19:bf:e9:62:a5:2c:b1:70:57:de:e3:35:31:a3:f0:e8:37:
b0:e0:a2:ea:7d:27:39:b0:a6:81:83:d0:06:94:92:39:50:39:
02:a7:e6:17:b9:06:a4:bb:1e:b6:99:77:b3:d4:35:57:9d:a3:
7e:12:43:6a:ef:a4:c9:d5:b5:ce:92:bc:2d:57:a7:9d:eb:ef:
32:77:b1:69:04:fb:62:eb:76:be:65:17:a7:0f:a9:36:0b:ba:
b8:4f:15:f6:4f:e4:1f:ae:77:41:c8:9a:b0:22:5b:70:35:32:
8a:21:f7:bf:e6:6b:8b:ec:12:6b:42:ff:ca:a7:f8:d7:9f:f3:
58:d7:9d:ee:3e:a4:55:a7:6f:3e:2f:15:58:fb:77:d7:7a:5e:
6f:6d:8f:52:aa:b3:a0:b1:0d:fe:ef:fa:03:7a:0d:f0:a0:0b:
2a:47:07:88:e5:60:3e:7b:24:76:00:4b:77:3a:d1:80:28:f6:
21:a1:d9:62:c7:d7:4e:19:cb:52:54:0d:e9:61:4d:8a:d0:69:
71:46:f3:69:c7:8c:1b:46:58:85:0b:26:ce:08:b6:6a:98:0d:
71:1b:15:0d:fa:72:16:6e:6a:b5:bf:6c:83:7e:18:7c:5d:11:
06:2b:8c:ae:d3:ad:8d:44:91:f4:1c:ba:1c:23:d9:07:86:83:
19:9a:8c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:54:02 2025 by rpki-client