Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/scT4Grbeh4KVt5Nft2m63IXBV08.roa
File: scT4Grbeh4KVt5Nft2m63IXBV08.roa (raw, json)
Hash identifier: wmMuQPN5sc8iSX9PxDTjr5xe2DcLsRNiSPsUVcSPqpQ=
Subject key identifier: B1:C4:F8:1A:B6:DE:87:82:95:B7:93:5F:B7:69:BA:DC:85:C1:57:4F
Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Certificate serial: 018FA0CEDE6F693639D504CACABA1F585A65
Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/scT4Grbeh4KVt5Nft2m63IXBV08.roa
Signing time: Wed 22 May 2024 14:57:42 +0000
ROA not before: Wed 22 May 2024 14:57:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 195524
IP address blocks: 2a03:90c0:888a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a0:ce:de:6f:69:36:39:d5:04:ca:ca:ba:1f:58:5a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Validity
Not Before: May 22 14:57:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1c4f81ab6de878295b7935fb769badc85c1574f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9f:76:ca:46:1e:54:30:5d:5c:a0:45:f2:31:
81:80:90:46:8a:05:5e:ea:f8:37:d4:6a:60:7c:0d:
7a:bd:e3:55:5f:27:b9:1f:10:5b:c0:8b:8d:b3:27:
e4:d2:17:2b:66:76:92:b2:47:2d:b2:44:25:e7:5e:
99:a7:c8:29:9f:61:32:ff:51:fa:4f:d0:ee:c1:7f:
7d:00:b1:b7:db:d5:cc:70:91:22:f8:c2:84:68:44:
39:f3:c1:20:1b:13:76:0e:96:2a:75:5d:0b:3d:80:
f7:18:a2:50:fb:a4:91:b5:ea:90:50:f7:5f:3c:a1:
81:0e:f9:aa:0c:b1:75:6e:6b:5f:39:c1:52:be:ab:
5d:02:c3:03:9d:58:27:a5:fe:a9:0e:a4:8a:40:52:
4e:09:63:99:06:d0:38:7e:34:ab:8b:76:f2:34:09:
d3:5d:94:94:34:c1:cd:46:99:04:d8:bb:18:4d:82:
b2:34:ce:fa:23:07:f0:b6:4a:20:ab:48:da:19:58:
2a:42:91:aa:36:f6:d8:1b:8b:3e:68:2d:a7:6a:dd:
fd:6a:ab:e1:7a:ab:ba:0f:85:ae:eb:6a:f5:ee:35:
41:53:58:86:79:04:14:52:2f:cc:a4:d6:a1:53:ec:
6a:51:eb:04:e2:1d:15:91:c4:f9:a9:0a:9f:6e:3f:
9f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C4:F8:1A:B6:DE:87:82:95:B7:93:5F:B7:69:BA:DC:85:C1:57:4F
X509v3 Authority Key Identifier:
keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/scT4Grbeh4KVt5Nft2m63IXBV08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:90c0:888a::/48
Signature Algorithm: sha256WithRSAEncryption
72:87:e2:e6:64:df:14:ec:b8:e8:5a:14:19:80:16:3a:e6:bd:
08:53:7f:01:2a:03:19:18:68:c8:44:1e:e7:98:8d:19:6f:bf:
42:5a:2a:93:ae:57:c6:01:a1:5c:da:c7:19:71:c7:db:a0:59:
8d:f8:50:39:91:c5:96:5f:72:10:6f:2c:00:c3:0d:59:47:af:
f6:f8:fd:82:45:48:be:2f:f1:a6:78:f0:b7:9d:8b:88:94:55:
70:fe:e1:b2:2b:2b:a4:64:3a:7b:74:e5:7f:39:dd:33:6c:8b:
30:fc:f3:d5:8e:07:ee:77:ee:04:47:75:a4:e5:ea:8f:0c:be:
fc:32:af:29:81:73:30:c6:70:3a:aa:81:10:ec:31:e8:1d:b8:
20:7c:b8:02:0b:34:03:2a:e6:95:21:4e:af:15:c0:19:ac:51:
a9:1a:4a:72:03:7c:ec:bd:a7:2e:0c:cc:b8:95:18:ba:8b:8c:
b3:3c:b1:3e:a5:b6:09:5b:74:46:b3:75:89:2e:dc:3c:48:bc:
7a:eb:6c:50:a1:08:63:54:81:1a:60:77:7e:2a:1f:09:f0:ff:
5b:58:aa:14:2f:3d:4e:6a:f3:20:cf:15:89:f8:61:40:29:8b:
1c:b1:77:db:de:d0:b8:f5:23:d2:29:4d:00:e6:40:39:a5:e6:
e1:b2:84:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:53:23 2025 by rpki-client