Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/sc_ISCzsmCc5qv2kgxD0thspJ74.roa
File: sc_ISCzsmCc5qv2kgxD0thspJ74.roa (raw, json)
Hash identifier: VDhJMNgRL/aZd0UjTbjqvDGl1BuRvuJM3xAB0billBg=
Subject key identifier: B1:CF:C8:48:2C:EC:98:27:39:AA:FD:A4:83:10:F4:B6:1B:29:27:BE
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019183092F4ADB25FD2256CC8372C09B6A4D
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/sc_ISCzsmCc5qv2kgxD0thspJ74.roa
Signing time: Sat 24 Aug 2024 06:18:22 +0000
ROA not before: Sat 24 Aug 2024 06:18:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 2a13:c240::/29 maxlen: 29
2a14:1100::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 25 Aug 2024 11:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:83:09:2f:4a:db:25:fd:22:56:cc:83:72:c0:9b:6a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Aug 24 06:18:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1cfc8482cec982739aafda48310f4b61b2927be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:19:33:42:0f:39:cc:b1:f7:c2:68:74:84:7f:
f2:10:79:82:de:75:a7:a6:6d:fb:83:02:81:07:3b:
c0:43:38:5a:52:7c:24:d7:eb:39:5c:b1:0b:cd:9a:
2c:2d:9b:04:22:30:83:7e:b7:51:32:8d:4b:69:09:
af:4a:7e:55:7a:37:8d:bf:b7:48:0c:b7:af:27:ba:
2b:50:b7:90:ce:7c:91:33:66:7f:21:d9:17:81:c2:
03:85:d7:37:fe:d4:d3:7c:29:54:9f:f2:0c:e0:5b:
6e:a4:f4:0c:20:84:46:c4:60:76:37:9d:45:f0:d3:
4c:f4:1d:bf:9e:b7:06:ef:1c:cf:e6:9c:34:cf:b2:
6f:b7:c7:53:79:fd:43:87:bb:79:61:2c:41:50:8d:
a1:66:8c:78:55:68:fc:6b:ed:56:19:7c:c2:24:a6:
40:b0:6a:cf:13:3b:1c:71:54:40:39:3d:a4:2c:61:
37:cb:bd:2c:91:d0:5d:ee:64:d9:94:4e:ab:84:36:
b5:7b:86:00:83:3d:a0:c1:4c:25:34:5f:bb:6f:2e:
c0:4e:35:72:6e:96:e4:26:66:81:f6:8b:74:39:7d:
7c:63:fd:70:ff:0a:34:b5:18:19:79:bb:e6:4d:f7:
f3:9b:2a:58:ef:72:f5:9d:31:62:10:84:80:f3:f8:
4a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:CF:C8:48:2C:EC:98:27:39:AA:FD:A4:83:10:F4:B6:1B:29:27:BE
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/sc_ISCzsmCc5qv2kgxD0thspJ74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c240::/29
2a14:1100::/29
Signature Algorithm: sha256WithRSAEncryption
3a:42:96:2f:7d:02:91:44:91:8a:4b:83:e0:92:9b:98:40:6c:
63:12:3c:fe:f6:c2:b7:76:71:68:cb:6f:ba:66:02:28:e8:5c:
f2:13:91:de:bb:51:41:af:bc:e1:6b:40:fb:39:5e:c0:e1:55:
6c:7f:3c:8f:db:bb:0e:ab:e4:30:39:5b:52:0e:78:15:aa:4c:
de:5d:dc:78:97:e0:07:33:77:51:94:a8:19:0d:59:a3:48:9f:
24:88:fa:a1:3c:7e:34:6c:56:da:b9:c4:9e:ed:26:47:4a:11:
a8:0a:02:fa:92:d8:f2:cc:7a:7e:19:f0:aa:0c:ec:3a:f8:34:
42:55:ff:5c:e6:d3:67:55:42:4b:57:10:cd:9e:11:19:15:80:
e4:04:19:97:43:da:3c:a8:71:5b:ad:8b:04:57:e9:0f:83:be:
9c:40:9d:b5:43:62:f6:03:af:68:4c:dc:92:a5:9d:a7:e9:22:
d0:65:cf:80:6a:50:8c:ae:eb:b2:5f:3b:35:49:3b:03:a1:27:
9d:b2:2d:06:d5:43:aa:96:0a:0a:f6:8a:f0:39:93:aa:13:88:
52:6f:85:c6:13:ac:af:03:48:9d:73:cc:f1:84:2d:c3:bf:3a:
8a:a4:53:62:b9:f0:3e:64:a3:85:6e:6c:e4:6f:6c:ad:b1:33:
72:fc:e1:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:48 2025 by rpki-client