Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/u1UbErDYAl4W4yxjees-kEp-UmY.roa
File: u1UbErDYAl4W4yxjees-kEp-UmY.roa (raw, json)
Hash identifier: PX/KmNXk5+dnr65mHvrc+oI9YxoQ1tLhpOLJyOhJ7P0=
Subject key identifier: BB:55:1B:12:B0:D8:02:5E:16:E3:2C:63:79:EB:3E:90:4A:7E:52:66
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018E3CA75EF31A11B402CC98E24C9B7703B1
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/u1UbErDYAl4W4yxjees-kEp-UmY.roa
Signing time: Thu 14 Mar 2024 11:09:45 +0000
ROA not before: Thu 14 Mar 2024 11:09:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63150
IP address blocks: 2a0c:9a40:d000::/40 maxlen: 40
Validation: Failed, certificate revoked on Sat 16 Mar 2024 12:55:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3c:a7:5e:f3:1a:11:b4:02:cc:98:e2:4c:9b:77:03:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Mar 14 11:09:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb551b12b0d8025e16e32c6379eb3e904a7e5266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:28:d0:91:0c:9d:b6:f0:ef:13:df:53:51:ea:
c5:3b:7e:c2:8f:ce:1e:a9:3a:d5:87:b1:8d:c8:d0:
d8:a9:d8:35:a6:d5:bb:bd:4c:95:a0:cd:e2:84:f8:
67:43:0f:e1:62:e5:f7:4e:56:74:65:71:07:c5:46:
15:59:c8:00:1f:79:e7:91:a9:c7:8f:93:5e:6b:30:
ff:73:88:bb:78:22:83:22:7b:3c:67:a5:11:6e:4b:
b7:bb:43:5b:2c:b0:41:a3:5a:10:7c:32:85:95:5c:
b3:35:fe:d4:90:f6:95:40:09:e2:44:42:93:25:77:
ce:47:59:85:aa:c4:c2:a6:00:25:98:60:35:65:6d:
53:fd:72:69:67:7b:6d:d4:38:a2:e8:05:59:06:75:
f1:43:06:14:a2:5e:b1:1b:bc:e5:f2:c6:50:d8:c0:
b3:c1:8d:c0:da:b5:73:7b:eb:1b:db:8d:e0:2b:c1:
2f:6a:35:f6:12:e2:7b:a5:9c:0e:62:28:f4:f5:f2:
d2:08:43:3e:e8:05:b2:51:42:ed:33:7d:7b:29:38:
2d:75:7f:3c:32:0d:49:96:76:41:6e:05:93:69:96:
70:dc:ea:f9:0f:d4:e5:52:5e:ea:f8:e6:34:7e:0b:
8c:43:2b:5f:63:fa:62:6a:2e:30:d6:e3:07:ea:3c:
79:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:55:1B:12:B0:D8:02:5E:16:E3:2C:63:79:EB:3E:90:4A:7E:52:66
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/u1UbErDYAl4W4yxjees-kEp-UmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:d000::/40
Signature Algorithm: sha256WithRSAEncryption
57:32:6e:d0:77:8a:c0:92:29:5e:07:d2:7b:c1:35:8c:c8:91:
6a:1a:2d:2d:bf:cd:ed:3f:7e:6a:4f:7d:c2:1e:18:81:0d:fc:
16:d1:a6:1f:ed:83:c7:50:05:87:6f:d2:f3:dc:07:24:6d:2b:
2a:55:45:56:0d:f7:97:3f:ef:50:43:74:56:4f:ca:62:88:c7:
6b:a7:98:05:2d:1e:72:18:e5:0e:4e:fc:97:cf:e1:87:f7:90:
ff:6b:ee:b1:e8:8b:ad:6c:3e:31:08:bb:ad:57:24:eb:0e:fa:
a3:3a:27:92:0c:50:0e:aa:57:e1:6a:32:97:f2:a6:1e:08:bd:
0a:0a:7b:9d:93:79:8f:e1:e5:7b:90:36:18:2f:3d:84:77:02:
f9:a5:18:90:da:18:b1:2f:53:72:71:3e:bd:bc:d9:75:20:08:
a0:36:d0:75:22:9b:ea:0c:8c:fe:08:52:f5:e3:ff:bf:76:0f:
4e:69:89:3b:52:a8:4d:99:55:70:13:3c:bf:2b:73:8e:6a:96:
38:81:e0:74:f3:64:fc:a6:4a:70:3e:db:60:07:17:24:f8:8f:
71:80:64:19:14:2c:3a:cc:94:60:34:43:c4:66:5a:15:c9:95:
14:4a:12:13:95:43:ce:bf:60:fe:e5:1d:98:c3:c4:99:1d:2f:
29:2e:89:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:35:24 2025 by rpki-client