Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/d073f1-96ed-4b35-a3f4-f8307779945b/1/S2hfJwZyssrMrSKZx5HgmLAUcZU.roa
File: S2hfJwZyssrMrSKZx5HgmLAUcZU.roa (raw, json)
Hash identifier: 9Im8+0G4pShwoPZoi0XXcXNowY/AlXURs4w0WnjqnUY=
Subject key identifier: 4B:68:5F:27:06:72:B2:CA:CC:AD:22:99:C7:91:E0:98:B0:14:71:95
Certificate issuer: /CN=f4dcb5741e29352ddd42469270178506008a4140
Certificate serial: 0193A1775769D1DFCE89B1A8FC48DD6043AA
Authority key identifier: F4:DC:B5:74:1E:29:35:2D:DD:42:46:92:70:17:85:06:00:8A:41:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Ny1dB4pNS3dQkaScBeFBgCKQUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/d073f1-96ed-4b35-a3f4-f8307779945b/1/S2hfJwZyssrMrSKZx5HgmLAUcZU.roa
Signing time: Sat 07 Dec 2024 14:12:53 +0000
ROA not before: Sat 07 Dec 2024 14:12:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16181
IP address blocks: 2a0a:e140::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 12 Dec 2024 18:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:a1:77:57:69:d1:df:ce:89:b1:a8:fc:48:dd:60:43:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4dcb5741e29352ddd42469270178506008a4140
Validity
Not Before: Dec 7 14:12:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b685f270672b2caccad2299c791e098b0147195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:da:3a:24:c2:78:a2:40:8f:a4:9d:e2:d5:dc:
3c:6a:cc:69:32:57:f0:ac:b1:db:d5:e0:8a:dc:5f:
cb:7a:4d:05:12:98:a5:13:f1:5e:e1:cb:28:d0:8b:
c2:7d:b1:ec:9b:06:db:ef:c9:c4:9f:3a:07:80:57:
16:6a:12:c2:8a:20:1f:bc:0b:7c:00:06:7d:0e:e8:
34:b9:19:3d:86:26:08:da:1b:32:90:b3:02:86:3b:
66:2d:cb:a1:dd:9b:8c:30:33:a9:78:d0:34:9b:84:
55:c1:e0:52:1f:17:08:51:d0:58:5e:6f:84:85:87:
3f:92:47:fe:43:6f:40:08:5a:dc:eb:8c:c9:cc:31:
6b:96:34:2a:2e:59:9b:e6:4a:31:7b:a7:d1:1c:4b:
9f:3d:0a:08:c6:c3:89:33:33:bb:aa:b8:e4:29:e7:
cd:d1:7f:72:23:54:45:74:9f:53:6c:23:0e:f3:c8:
e1:63:5d:ce:4b:a3:25:12:13:d2:a3:92:94:92:41:
07:ec:8e:93:57:1d:d9:f9:10:9f:89:01:ad:90:24:
77:8d:c2:af:0d:ec:0c:2d:52:28:75:cc:f0:1d:6c:
35:8a:71:43:4f:b8:f8:58:7d:32:81:a5:bc:28:13:
67:65:25:1c:2e:68:f7:25:d1:b5:64:a8:62:ee:66:
21:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:68:5F:27:06:72:B2:CA:CC:AD:22:99:C7:91:E0:98:B0:14:71:95
X509v3 Authority Key Identifier:
keyid:F4:DC:B5:74:1E:29:35:2D:DD:42:46:92:70:17:85:06:00:8A:41:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Ny1dB4pNS3dQkaScBeFBgCKQUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d073f1-96ed-4b35-a3f4-f8307779945b/1/S2hfJwZyssrMrSKZx5HgmLAUcZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/d073f1-96ed-4b35-a3f4-f8307779945b/1/9Ny1dB4pNS3dQkaScBeFBgCKQUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:e140::/29
Signature Algorithm: sha256WithRSAEncryption
95:6c:bc:c6:c8:b7:ab:87:0a:7c:e3:f6:66:ef:66:29:36:5b:
24:13:2f:97:6a:cb:ee:18:75:a1:f5:3a:c5:9e:1a:2d:0b:01:
b6:a2:0f:d2:47:98:69:d8:b6:7b:24:a4:2a:bc:08:d8:23:21:
b0:30:dd:ce:fd:f0:51:59:5f:4f:35:e1:71:61:61:fe:eb:6f:
69:ec:11:c5:f9:7e:d9:f0:68:29:44:a9:4c:37:0b:5d:da:62:
78:bc:52:cb:4a:28:b5:72:c2:89:a5:c3:4e:2a:cc:9d:aa:e4:
fb:d5:c5:63:7f:03:15:18:eb:97:c8:37:80:00:a6:00:62:60:
a3:bb:f4:ec:a0:8e:e5:15:73:2c:44:93:ad:30:7f:1e:cc:e3:
36:3e:20:c9:14:21:31:49:ed:43:46:95:79:52:7d:36:49:e0:
2b:07:2b:f5:2d:ea:d1:36:fe:38:f5:9a:05:f2:19:9d:99:42:
91:91:85:c3:0d:9c:68:74:55:33:b7:5d:94:2c:97:2b:f7:f9:
77:d6:8d:a1:83:73:da:14:17:9b:91:1e:f6:e7:2a:c5:88:8a:
95:7e:2a:6c:88:df:01:2f:4c:b4:ad:7a:96:59:d2:f3:82:3c:
76:7f:d8:89:16:41:f7:95:3f:25:ec:55:1c:b1:e2:5b:6e:dc:
16:64:ee:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 12 22:04:17 2024 by rpki-client on console-fra.rpki-client.org