Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/jUo9C2B92Xh0TR02Nu9B4TrPbLM.roa
File: jUo9C2B92Xh0TR02Nu9B4TrPbLM.roa (raw, json)
Hash identifier: GmBmSaDQnbmnEJw3o92hvt/p7O3Y3ksIPhZkIXGmxLo=
Subject key identifier: 8D:4A:3D:0B:60:7D:D9:78:74:4D:1D:36:36:EF:41:E1:3A:CF:6C:B3
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018CCA2BBA045B73E7A276C3882BC3F40E83
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/jUo9C2B92Xh0TR02Nu9B4TrPbLM.roa
Signing time: Tue 02 Jan 2024 12:35:12 +0000
ROA not before: Tue 02 Jan 2024 12:35:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51373
IP address blocks: 2001:1a68:14::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:48:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:ba:04:5b:73:e7:a2:76:c3:88:2b:c3:f4:0e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 12:35:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d4a3d0b607dd978744d1d3636ef41e13acf6cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:18:8d:b5:ed:da:97:05:7c:fa:8b:ef:9a:d8:
3f:77:eb:d6:fb:29:03:de:84:f3:7f:2d:2e:0d:ce:
60:62:c9:70:c2:a7:42:59:df:e2:db:67:71:5e:04:
c0:4f:db:87:e4:fa:f7:44:6e:5b:28:1c:0c:52:aa:
fa:d1:b4:58:ac:ee:2c:b3:bc:e1:46:30:a5:e4:54:
4d:e4:5c:b5:a2:2c:19:5a:b3:49:f4:56:8a:7a:52:
16:af:87:e7:e9:53:d8:9f:e5:2a:90:ec:f5:0d:ca:
b4:52:e6:e8:28:bc:d2:d8:0e:6b:b2:a0:c9:81:49:
59:92:ca:ab:f0:69:87:bf:85:57:c3:38:0b:c4:e4:
55:ef:f9:ac:a8:16:c7:3d:5d:20:5b:94:88:e8:f7:
85:5d:12:d3:16:86:be:8f:cf:0c:5c:bf:d3:7f:44:
19:06:be:47:e0:3d:c9:49:b4:69:25:bc:42:c4:5a:
fd:23:2c:d3:56:92:1f:fd:f3:0f:9e:28:bc:c9:5b:
d1:45:eb:a5:84:34:e4:a2:e2:c6:7f:b3:1e:d5:07:
26:d8:ee:ea:85:9c:36:81:aa:ef:cc:ac:4d:6d:92:
c0:36:af:79:1f:31:56:92:8f:a4:ec:94:a4:d7:71:
5d:33:d3:9e:67:2f:3a:2b:96:b5:87:fa:c8:e4:bb:
06:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:4A:3D:0B:60:7D:D9:78:74:4D:1D:36:36:EF:41:E1:3A:CF:6C:B3
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/jUo9C2B92Xh0TR02Nu9B4TrPbLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1a68:14::/48
Signature Algorithm: sha256WithRSAEncryption
13:58:9b:23:33:6d:2a:cb:60:a2:b0:5f:3e:34:37:10:0c:64:
c9:35:99:ad:3a:85:a8:76:c9:e8:2b:ee:53:f7:5f:43:0f:64:
4f:ca:90:4b:d1:d6:98:3b:09:40:3a:28:fd:fd:bd:ee:30:be:
09:05:29:3d:73:3b:da:77:49:a0:5f:e4:f1:6d:1c:f1:8d:5d:
44:f5:59:66:f6:b3:d4:09:b4:be:15:ae:db:2d:34:d1:ea:32:
45:76:dc:49:ee:fe:e4:69:1d:ed:df:72:30:cd:1d:b9:ca:90:
09:47:35:22:f2:5a:12:df:64:0c:0e:31:0a:ed:81:b8:15:3d:
a5:45:73:8f:da:49:b8:76:e1:f7:e4:d6:dc:f0:c9:a9:9c:c8:
de:a3:14:1f:77:fc:43:eb:19:2a:46:d6:36:c3:67:bc:e3:d8:
e3:99:90:01:2c:20:7a:d9:fb:c6:90:33:cf:82:b9:39:0b:76:
40:c4:04:9b:ef:76:b7:1d:a1:5f:a7:8a:5c:aa:e2:83:63:4a:
6b:f2:06:ad:f9:52:50:9c:eb:ef:56:65:cb:d3:a2:cd:a3:fb:
12:a8:af:7b:7a:9b:ad:4b:5a:e8:cc:23:e2:d0:76:47:76:ac:
b9:81:b2:1e:9c:23:e7:07:a1:5f:a4:70:aa:73:fe:64:05:0f:
e4:dd:2a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:20 2025 by rpki-client