Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/J5T50fh55kT3etm-elqlbD6jeBE.roa
File: J5T50fh55kT3etm-elqlbD6jeBE.roa (raw, json)
Hash identifier: REnhQ8vEf8v21+GtSdswmCPVssNvaBbvGPhbDtCfzuw=
Subject key identifier: 27:94:F9:D1:F8:79:E6:44:F7:7A:D9:BE:7A:5A:A5:6C:3E:A3:78:11
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0194180577E79D27DDCC7477DAAAFD27D145
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/J5T50fh55kT3etm-elqlbD6jeBE.roa
Signing time: Mon 30 Dec 2024 14:43:19 +0000
ROA not before: Mon 30 Dec 2024 14:43:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213661
IP address blocks: 2a0c:b641:150::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:18:05:77:e7:9d:27:dd:cc:74:77:da:aa:fd:27:d1:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Dec 30 14:43:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2794f9d1f879e644f77ad9be7a5aa56c3ea37811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:08:0d:65:c2:a9:58:b1:4c:ee:b3:12:78:73:
0d:d0:1b:b1:ee:38:df:e2:29:de:e3:ce:26:47:d1:
83:27:73:f2:a1:bb:b2:ea:a3:ce:ec:d3:8d:79:66:
ca:4f:07:e0:21:05:24:dc:5d:25:fc:f6:04:26:c5:
99:fe:5b:26:20:12:02:8a:ee:01:bf:ae:8a:c4:63:
b2:19:02:b0:ef:cb:11:0e:d1:43:c5:11:2a:f3:7f:
b5:aa:2e:7f:34:60:07:21:f3:71:b5:31:8b:07:61:
37:fc:52:bb:c9:87:c2:d8:eb:ed:83:03:83:87:07:
2d:a1:79:56:28:ca:ab:f0:b5:06:58:fe:bc:86:7f:
08:37:a2:fa:91:95:ad:fd:a9:00:bd:bf:90:3e:f6:
e0:71:c8:66:02:88:62:63:03:d0:93:ab:08:e9:dd:
1a:5f:39:d1:4d:bd:c1:60:0b:14:63:ab:ba:12:f9:
b1:98:11:97:ef:2c:e8:85:e8:12:bc:de:07:dd:4a:
6d:71:89:16:8d:92:09:d8:c4:5e:03:8c:ad:d3:10:
2a:11:7e:b8:17:f9:05:d2:b9:0b:3b:6e:f3:1d:af:
37:07:c8:7f:5d:17:48:1d:0e:95:be:d3:88:e7:bb:
d3:c0:84:87:b9:3e:79:38:fc:ff:a5:b6:bd:1f:37:
b7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:94:F9:D1:F8:79:E6:44:F7:7A:D9:BE:7A:5A:A5:6C:3E:A3:78:11
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/J5T50fh55kT3etm-elqlbD6jeBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:150::/44
Signature Algorithm: sha256WithRSAEncryption
08:40:b3:f1:98:16:a1:44:4f:e7:33:d7:93:13:99:7c:38:20:
f4:47:68:0c:a3:b8:8c:93:a7:81:53:05:d7:1f:cc:80:e9:8e:
26:bd:01:af:d5:7a:7b:bb:0b:85:dc:cd:79:da:95:69:4e:67:
2c:11:2c:ce:30:04:b5:a8:cc:96:37:db:96:20:2e:e5:4c:bb:
e0:a7:e5:8e:26:12:6d:65:4a:f4:b6:86:a4:37:8f:eb:35:9c:
a4:34:fa:1b:12:07:7a:cf:ca:c9:92:d0:ee:f5:97:1c:1a:e0:
a5:83:e6:a1:68:97:8d:ab:ba:ea:ca:ec:5d:e0:8e:6e:bf:94:
c1:ee:9f:d1:2f:98:ed:96:45:9e:01:e0:70:79:83:7e:35:3d:
99:7a:fb:c1:98:46:fd:d8:22:f7:7b:e6:75:b3:57:aa:8d:87:
84:a0:90:de:b3:75:31:40:34:89:05:b3:fe:c2:f0:d1:eb:b3:
a2:72:02:40:18:4c:af:45:09:ce:32:52:48:b0:b5:4e:97:02:
97:e5:d1:f8:26:5a:94:10:09:75:65:c3:23:04:15:36:33:28:
4e:84:f5:8c:b0:da:27:7f:4e:cb:a6:7d:58:3b:79:70:9a:dc:
e9:e1:60:9d:69:e9:a0:32:26:09:8c:7c:ca:f6:46:46:fa:48:
e3:8a:13:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:32:29 2025 by rpki-client