Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/25HHg-b_2MDc5fBRm9MDJXBl3VY.roa
File: 25HHg-b_2MDc5fBRm9MDJXBl3VY.roa (raw, json)
Hash identifier: CwRaRRZW3a+7iGMXhTEFAovNzqAJFsyrQ1uMKxGfwMU=
Subject key identifier: DB:91:C7:83:E6:FF:D8:C0:DC:E5:F0:51:9B:D3:03:25:70:65:DD:56
Certificate issuer: /CN=722325ecf368c9148a7c41281d607fa6d804a0c9
Certificate serial: 018CC7266E17C414FC82265F1A056A7FADD6
Authority key identifier: 72:23:25:EC:F3:68:C9:14:8A:7C:41:28:1D:60:7F:A6:D8:04:A0:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciMl7PNoyRSKfEEoHWB_ptgEoMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/25HHg-b_2MDc5fBRm9MDJXBl3VY.roa
Signing time: Mon 01 Jan 2024 22:30:33 +0000
ROA not before: Mon 01 Jan 2024 22:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211335
IP address blocks: 2a13:e300::/29 maxlen: 32
Validation: Failed, certificate revoked on Thu 29 Feb 2024 11:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:6e:17:c4:14:fc:82:26:5f:1a:05:6a:7f:ad:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722325ecf368c9148a7c41281d607fa6d804a0c9
Validity
Not Before: Jan 1 22:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db91c783e6ffd8c0dce5f0519bd303257065dd56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ad:c6:a5:35:10:12:3f:63:3f:b7:07:ca:28:
8b:d7:28:2b:29:65:17:30:7f:97:bc:14:ea:1f:38:
e5:8d:7c:c5:08:83:f1:29:b3:67:fb:69:c7:79:ed:
44:c6:1a:1f:7e:11:84:19:fa:63:a5:26:d0:ac:07:
aa:16:a7:20:f0:15:0b:21:76:65:82:c4:56:aa:21:
9b:77:e7:68:a7:d5:80:2c:16:6b:2e:84:45:64:03:
4c:e3:25:96:c7:74:ca:78:38:a4:e7:30:e3:af:2c:
d4:7c:6c:45:9b:6b:e5:94:d5:47:a1:f3:d6:05:58:
60:31:fc:67:e3:04:66:21:12:b4:23:46:5a:ab:2a:
24:af:a1:ea:3f:7f:29:ee:7b:d5:77:16:5e:52:03:
47:55:d5:06:9c:e7:0e:b7:70:8b:05:20:d1:c9:f6:
8c:87:7d:7e:24:67:c8:c9:00:02:ee:b1:b1:aa:30:
7f:91:bd:13:f5:00:cc:32:ac:ca:1c:d2:4e:b1:d1:
e0:49:04:2d:e2:0c:1c:45:ce:ae:7c:c6:d3:f1:7d:
3b:91:e9:17:82:37:93:73:74:7f:82:07:7e:d4:43:
89:dc:51:ca:2b:a3:f2:c8:84:ea:90:ec:a6:b1:2a:
62:e1:4d:6d:49:73:d9:80:00:ed:24:70:63:5b:f0:
9e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:91:C7:83:E6:FF:D8:C0:DC:E5:F0:51:9B:D3:03:25:70:65:DD:56
X509v3 Authority Key Identifier:
keyid:72:23:25:EC:F3:68:C9:14:8A:7C:41:28:1D:60:7F:A6:D8:04:A0:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciMl7PNoyRSKfEEoHWB_ptgEoMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/25HHg-b_2MDc5fBRm9MDJXBl3VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/1c062a-04d4-4c05-a2d2-90bdcc4aa5db/1/ciMl7PNoyRSKfEEoHWB_ptgEoMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:e300::/29
Signature Algorithm: sha256WithRSAEncryption
50:62:e1:db:79:85:da:a9:e5:72:de:ac:bd:93:16:dd:c4:1d:
f5:1d:5e:f3:7b:0c:09:1e:c1:3c:4b:64:2c:72:e1:9e:20:b7:
5b:7e:36:6f:5e:a9:bc:ca:53:f8:c9:34:d9:fd:ee:60:df:9d:
82:94:71:8a:a1:71:91:6e:e0:1c:4e:af:08:3b:1b:01:6e:1b:
c1:bc:a6:74:63:d3:43:90:d1:5c:52:95:76:ac:76:84:78:4d:
91:7b:75:f9:2b:80:01:9e:9a:4f:c7:da:dc:5a:ff:08:41:af:
98:bb:71:db:d9:8b:d3:f9:a6:c1:75:40:98:63:9f:3d:e2:fc:
00:b3:d8:4d:f9:56:b7:20:32:62:01:bf:a0:d6:af:51:b2:9c:
4a:f0:de:d5:29:be:bb:9a:83:35:f2:c0:8d:75:b9:ed:ff:0c:
56:8f:45:93:97:c7:80:59:67:77:ce:c3:72:21:86:a8:8e:40:
9a:6f:d0:7b:41:8e:f7:b5:f3:a5:f8:7d:0b:89:9a:9d:c8:47:
b9:db:d0:47:bf:38:7f:a4:d1:af:51:1a:20:3b:8e:2a:29:81:
92:0b:e7:04:74:67:05:83:16:3e:af:a0:90:24:63:d7:0f:e0:
52:36:88:12:19:db:8c:03:07:5d:82:10:f2:40:e4:77:b7:f0:
ac:20:e2:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:36 2024 by rpki-client on console-ams.rpki-client.org