Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/x5cGrWaTPTTehZD7hyCsNig9dPM.roa
File: x5cGrWaTPTTehZD7hyCsNig9dPM.roa (raw, json)
Hash identifier: UVRc86uKZfRXpyxwiNptOcoTFCql1ofh/CeIaskq6TQ=
Subject key identifier: C7:97:06:AD:66:93:3D:34:DE:85:90:FB:87:20:AC:36:28:3D:74:F3
Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404
Certificate serial: 0192E222C1C4E0D3000757C83D18E0AE7F98
Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/x5cGrWaTPTTehZD7hyCsNig9dPM.roa
Signing time: Thu 31 Oct 2024 10:33:01 +0000
ROA not before: Thu 31 Oct 2024 10:33:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213988
IP address blocks: 2a01:ffc6::/34 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e2:22:c1:c4:e0:d3:00:07:57:c8:3d:18:e0:ae:7f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=255876412d20fbb6cab823481782ac47703b4404
Validity
Not Before: Oct 31 10:33:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c79706ad66933d34de8590fb8720ac36283d74f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:95:1c:8d:cb:67:de:88:15:9f:9c:a4:b3:ac:
2a:ea:a4:ab:53:cb:b5:0c:37:98:28:fe:05:b0:72:
73:3b:fb:f9:42:4c:86:c6:e2:8f:71:f5:5e:01:eb:
b8:18:87:8e:50:a2:bb:c2:1b:f6:06:67:ee:5d:4b:
f4:10:a7:68:62:34:03:34:69:26:e4:e7:a9:07:ea:
fa:fd:12:ec:6f:4d:e2:e9:01:f1:9c:c1:88:e2:7e:
c4:5b:83:81:37:cc:c9:ec:e6:90:a4:a4:32:a8:8a:
8f:4b:33:0c:67:5f:bd:a4:46:0b:76:41:fe:33:17:
b8:6b:8f:76:82:46:8e:90:05:39:29:4d:e0:ad:d6:
b2:b4:90:de:59:ed:00:e0:33:12:13:65:21:56:e3:
8f:84:51:fa:19:b6:73:f6:60:e6:f9:9d:82:20:82:
d4:86:61:00:be:21:3a:61:1e:d3:e6:52:cf:7a:c2:
ef:ef:9e:f2:0f:1a:70:e1:56:29:43:86:1f:23:35:
8b:24:71:9a:bc:7a:be:af:50:ae:27:00:5f:5e:d0:
cd:23:7f:4c:1a:2c:05:a3:fe:cb:25:33:f9:1c:d1:
e3:64:81:f3:06:e4:22:03:7b:5a:b9:ac:2b:aa:65:
d5:ac:55:48:8b:8a:b5:ba:3a:09:ab:4e:5d:22:5f:
18:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:97:06:AD:66:93:3D:34:DE:85:90:FB:87:20:AC:36:28:3D:74:F3
X509v3 Authority Key Identifier:
keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/x5cGrWaTPTTehZD7hyCsNig9dPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:ffc6::/34
Signature Algorithm: sha256WithRSAEncryption
52:85:bf:9e:b2:ec:41:48:76:17:04:77:b5:74:a3:38:89:49:
ca:4b:8a:81:7f:e8:32:73:57:d9:99:8e:ec:93:fe:0d:7d:0a:
95:6b:c0:23:fc:ab:85:77:76:e1:d2:f2:1f:da:d9:f5:b1:1b:
e5:6d:35:8b:4b:74:35:09:9c:d3:39:fd:af:4c:86:0b:1a:57:
03:51:57:0d:19:87:14:3c:e6:02:06:e1:b7:b1:99:4d:e7:a0:
71:9a:f9:d3:a5:e7:17:6f:51:c5:80:5b:88:04:54:be:dc:2b:
f3:19:a7:33:1e:60:37:59:23:be:d6:e0:21:17:50:22:c2:21:
8d:3d:6b:5b:c2:a9:25:16:3a:69:ab:a4:f6:5a:00:63:57:57:
47:01:09:ab:34:55:3d:db:ae:47:76:95:74:d0:ed:62:f3:69:
38:47:53:a1:ff:d6:cb:58:a1:10:10:63:99:f4:52:85:9b:72:
0f:60:5b:4a:b6:ac:8f:5e:f8:b6:5c:b4:85:62:76:64:3d:be:
e4:98:38:e6:53:e6:b0:00:b9:7a:31:f2:86:17:0a:0d:64:07:
83:6e:c7:84:fa:73:9f:75:4b:5c:67:84:fe:e9:4f:3e:9b:ca:
70:2b:8f:f6:f7:68:e6:3a:d6:e8:8a:d9:0d:9e:bf:5b:47:6c:
67:93:b2:1f
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZLiIsHE4NMAB1fIPRjgrn+YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz
YjQ0MDQwHhcNMjQxMDMxMTAzMzAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzk3MDZhZDY2OTMzZDM0ZGU4NTkwZmI4NzIwYWMzNjI4M2Q3NGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpUcjctn3ogVn5yks6wq6qSrU8u1
DDeYKP4FsHJzO/v5QkyGxuKPcfVeAeu4GIeOUKK7whv2BmfuXUv0EKdoYjQDNGkm
5OepB+r6/RLsb03i6QHxnMGI4n7EW4OBN8zJ7OaQpKQyqIqPSzMMZ1+9pEYLdkH+
Mxe4a492gkaOkAU5KU3grdaytJDeWe0A4DMSE2UhVuOPhFH6GbZz9mDm+Z2CIILU
hmEAviE6YR7T5lLPesLv757yDxpw4VYpQ4YfIzWLJHGavHq+r1CuJwBfXtDNI39M
GiwFo/7LJTP5HNHjZIHzBuQiA3tauawrqmXVrFVIi4q1ujoJq05dIl8YtQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFMeXBq1mkz003oWQ+4cgrDYoPXTzMB8GA1UdIwQY
MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt
ODc2YzdmY2E0YjM0LzEveDVjR3JXYVRQVFRlaFpEN2h5Q3NOaWc5ZFBNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0
LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGKgH/xgAw
DQYJKoZIhvcNAQELBQADggEBAFKFv56y7EFIdhcEd7V0oziJScpLioF/6DJzV9mZ
juyT/g19CpVrwCP8q4V3duHS8h/a2fWxG+VtNYtLdDUJnNM5/a9MhgsaVwNRVw0Z
hxQ85gIG4bexmU3noHGa+dOl5xdvUcWAW4gEVL7cK/MZpzMeYDdZI77W4CEXUCLC
IY09a1vCqSUWOmmrpPZaAGNXV0cBCas0VT3brkd2lXTQ7WLzaThHU6H/1stYoRAQ
Y5n0UoWbcg9gW0q2rI9e+LZctIVidmQ9vuSYOOZT5rAAuXox8oYXCg1kB4Nux4T6
c591S1xnhP7pTz6bynArj/b3aOY61uiK2Q2ev1tHbGeTsh8=
-----END CERTIFICATE-----
Generated at Sat Apr 19 04:15:12 2025 by rpki-client