Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/4wdzYB53Ph0oxx45WaeUDm5W6Xk.roa
File: 4wdzYB53Ph0oxx45WaeUDm5W6Xk.roa (raw, json)
Hash identifier: QnqrdHb4Gd/nDLdye5GBTuDRlbblntyskYe5H9wVfic=
Subject key identifier: E3:07:73:60:1E:77:3E:1D:28:C7:1E:39:59:A7:94:0E:6E:56:E9:79
Certificate issuer: /CN=e9bfd0410c7bf3bb1d75b18acb1e96393ad21b26
Certificate serial: 0193DF0CE318EEAD0BC8D5B38193AD621A5A
Authority key identifier: E9:BF:D0:41:0C:7B:F3:BB:1D:75:B1:8A:CB:1E:96:39:3A:D2:1B:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6b_QQQx787sddbGKyx6WOTrSGyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/4wdzYB53Ph0oxx45WaeUDm5W6Xk.roa
Signing time: Thu 19 Dec 2024 13:13:03 +0000
ROA not before: Thu 19 Dec 2024 13:13:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16086
IP address blocks: 2a0a:62c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:df:0c:e3:18:ee:ad:0b:c8:d5:b3:81:93:ad:62:1a:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9bfd0410c7bf3bb1d75b18acb1e96393ad21b26
Validity
Not Before: Dec 19 13:13:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e30773601e773e1d28c71e3959a7940e6e56e979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:99:08:16:c1:83:2f:c0:33:35:5e:94:66:b0:
c7:f3:c4:0f:89:ca:dd:aa:e0:80:83:fd:71:49:af:
f6:72:8d:7b:77:72:14:74:eb:11:c5:6c:70:5a:db:
77:40:9b:85:ac:a1:0a:d8:22:9f:f1:63:13:24:79:
a7:34:f9:d5:69:42:9c:bb:3f:b4:cc:7f:18:7a:77:
77:bd:ae:25:88:46:4a:26:9c:ff:c8:f8:96:f2:1c:
d5:ac:f8:b2:3a:90:32:f8:1b:f6:0b:9b:8c:72:1d:
6b:24:c7:12:95:a9:de:bc:f3:ff:de:ec:e8:c5:9d:
f5:7c:2c:4e:49:13:5b:26:64:6c:a2:18:01:06:e1:
1d:c8:c3:b4:d1:16:a1:02:ca:ec:3d:26:68:b1:8d:
a0:57:e0:32:0f:4d:f4:56:ce:c0:ae:04:ea:8c:d5:
33:35:57:5a:ad:07:5c:e0:6b:75:b0:ba:48:10:2d:
6b:69:5b:e8:ee:84:9e:b1:78:ca:91:1b:82:d8:df:
47:b9:9c:d4:e3:48:f3:97:d1:be:06:a1:f2:ad:c5:
24:57:be:7f:a8:a3:be:ea:e5:34:3d:24:8d:e7:a0:
8c:a1:63:9a:a2:0f:4a:da:e2:55:44:9e:c9:1e:50:
dd:13:b2:cb:d8:5b:99:dd:dd:8c:33:04:e7:38:e8:
f3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:07:73:60:1E:77:3E:1D:28:C7:1E:39:59:A7:94:0E:6E:56:E9:79
X509v3 Authority Key Identifier:
keyid:E9:BF:D0:41:0C:7B:F3:BB:1D:75:B1:8A:CB:1E:96:39:3A:D2:1B:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b_QQQx787sddbGKyx6WOTrSGyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/4wdzYB53Ph0oxx45WaeUDm5W6Xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/8d939f-9ef9-4076-a8f3-7a70b787d2ef/1/6b_QQQx787sddbGKyx6WOTrSGyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:62c0::/32
Signature Algorithm: sha256WithRSAEncryption
78:30:36:86:c7:a2:bb:30:98:25:9f:85:6a:ce:ae:a5:ec:c0:
69:64:67:16:db:ac:24:9c:e3:b2:b8:f0:11:30:ca:ea:fb:53:
8d:4c:31:1b:45:62:33:da:54:78:3b:39:8e:ec:b7:3a:a4:4d:
78:4b:63:87:2c:76:a7:eb:56:e8:4e:6a:51:76:a8:12:f5:f7:
02:d4:a2:6c:aa:80:de:57:6d:fa:3a:99:c1:22:e5:ed:ad:fa:
fb:9f:d5:58:c5:0d:de:a1:14:76:60:0f:90:f8:7f:5e:8b:dd:
f8:24:07:8c:32:75:a3:d4:ca:b1:94:c8:7a:56:04:7d:3b:6d:
17:54:99:2f:99:74:de:ec:47:da:80:c7:49:7f:15:d8:88:f9:
d3:95:8e:72:d3:1c:07:14:c9:69:d9:c7:c9:af:cc:eb:7f:9f:
ad:e5:d9:c4:b1:af:90:46:54:ea:36:70:25:35:ba:54:57:6b:
cf:04:4f:06:be:2c:56:3e:35:41:35:c8:38:da:fa:eb:d7:94:
d0:e1:58:7e:a1:09:3a:4b:d8:78:a2:d6:10:ea:e1:e4:37:c9:
99:fd:65:23:c9:d6:11:c0:ff:b9:d8:25:be:57:74:3f:ec:ce:
e3:a0:e9:df:86:e3:eb:4b:91:f7:c3:4a:66:d6:7d:69:50:93:
60:6c:cd:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:49:55 2025 by rpki-client