Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/D82YkIibm-OCZVjdx2QrdRbT8oU.roa
File: D82YkIibm-OCZVjdx2QrdRbT8oU.roa (raw, json)
Hash identifier: ANgzNNxrKj2hYCev9NuX/KS0wZOM+bVyEBYILFxvzcY=
Subject key identifier: 0F:CD:98:90:88:9B:9B:E3:82:65:58:DD:C7:64:2B:75:16:D3:F2:85
Certificate issuer: /CN=9d5138e1facf7b65dbb575fa7d47240c278b34df
Certificate serial: 01901B7B280566B5699E4869B02F69CD3657
Authority key identifier: 9D:51:38:E1:FA:CF:7B:65:DB:B5:75:FA:7D:47:24:0C:27:8B:34:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVE44frPe2XbtXX6fUckDCeLNN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/D82YkIibm-OCZVjdx2QrdRbT8oU.roa
Signing time: Sat 15 Jun 2024 10:39:34 +0000
ROA not before: Sat 15 Jun 2024 10:39:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 2a05:9bc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 15 Jun 2024 13:26:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1b:7b:28:05:66:b5:69:9e:48:69:b0:2f:69:cd:36:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5138e1facf7b65dbb575fa7d47240c278b34df
Validity
Not Before: Jun 15 10:39:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0fcd9890889b9be3826558ddc7642b7516d3f285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2e:12:fa:da:fc:a0:79:b5:d7:37:18:47:bb:
76:de:11:83:5d:6b:4f:2c:a2:cb:df:64:fd:3c:7e:
1e:7e:25:b0:c6:68:4c:54:0d:54:37:92:e7:f6:8a:
da:b2:d2:21:cc:9e:81:24:d9:4b:a0:d5:f7:89:cb:
39:45:8b:de:da:d6:5d:3a:4b:69:57:6d:a6:71:54:
f4:02:df:61:6d:7c:05:d4:98:b1:09:24:d3:2d:e1:
cd:96:d6:72:2f:06:b1:02:03:3e:d0:bf:f3:a1:92:
d8:fc:f2:9a:b7:08:55:7f:28:72:15:72:e1:ce:5c:
86:cd:c5:4c:2d:9f:2c:03:20:f4:74:dd:08:ea:00:
11:85:a7:3a:a8:1f:f7:31:0f:6e:b0:96:05:a1:1f:
23:d3:bd:5a:55:0a:8f:28:a9:87:9f:34:f9:7f:94:
82:0f:96:75:ac:b6:60:75:4f:fd:63:44:6f:27:f1:
89:23:55:56:89:72:2c:11:3f:c1:ab:7e:ac:e8:7b:
80:93:f0:3e:4a:72:d8:64:b0:24:95:fc:00:7e:5a:
a2:ec:31:1f:1e:35:7d:32:2c:77:f5:94:10:d8:54:
3e:46:9d:8b:1e:87:16:ae:f8:72:18:da:52:6b:93:
f1:2e:7f:8e:c5:8c:92:d0:e8:b1:d8:7d:b9:44:ca:
96:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:CD:98:90:88:9B:9B:E3:82:65:58:DD:C7:64:2B:75:16:D3:F2:85
X509v3 Authority Key Identifier:
keyid:9D:51:38:E1:FA:CF:7B:65:DB:B5:75:FA:7D:47:24:0C:27:8B:34:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVE44frPe2XbtXX6fUckDCeLNN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/D82YkIibm-OCZVjdx2QrdRbT8oU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d001ff-8323-4b89-be3d-c2efeb3b32a5/1/nVE44frPe2XbtXX6fUckDCeLNN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9bc0::/29
Signature Algorithm: sha256WithRSAEncryption
a4:13:83:d2:0a:5c:e5:ec:03:c3:2e:63:e9:82:99:1a:81:e2:
d3:2b:aa:5e:f8:43:b2:26:7b:13:b5:9a:53:4b:08:4f:7b:37:
5c:30:27:c8:9e:29:bb:dd:b4:2e:eb:15:59:d0:f7:bc:e0:4f:
6e:df:a9:71:41:b4:30:9f:4b:33:29:b8:a4:7d:2e:ce:89:2b:
60:ed:58:d8:8b:f3:fb:71:f7:c1:13:a6:b2:77:63:ee:8d:44:
8c:3a:bb:31:ce:a1:23:b8:c0:97:fd:43:c3:5d:d1:b0:3f:ba:
47:0b:cb:59:5e:44:c7:09:4f:07:75:6f:b9:4b:4d:75:e9:b4:
0b:26:0e:a1:fc:48:c6:8f:a5:9d:e0:1c:d1:ba:e2:56:b4:fb:
d7:d5:d9:88:91:91:56:58:25:bb:44:03:97:1d:0b:8d:39:df:
97:55:83:63:80:a2:7a:7b:b8:de:f3:b8:3a:1e:72:74:c3:f6:
0e:88:b5:f6:c1:fa:53:c4:4f:d1:e3:77:e8:45:f9:f2:c4:67:
28:ba:9f:da:06:e1:6a:74:ff:95:1f:2b:74:3a:9e:cf:26:1c:
29:56:34:a4:9b:ba:94:58:34:76:1d:8d:1a:83:69:b4:ea:5e:
4c:d6:56:cf:d7:71:08:63:d0:b6:20:3f:25:f6:e2:d7:ec:08:
3a:86:c4:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 14:42:59 2024 by rpki-client on console-fra.rpki-client.org