Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/26d28f-ff14-446d-99ea-fbadb98d688e/1/LL_e5qKaQx6LuIZpnLBYYZQKkHQ.roa
File: LL_e5qKaQx6LuIZpnLBYYZQKkHQ.roa (raw, json)
Hash identifier: +MRHj37GvikASfH+PHSXNOjUJHsxboRbZU5JoNOIm9k=
Subject key identifier: 2C:BF:DE:E6:A2:9A:43:1E:8B:B8:86:69:9C:B0:58:61:94:0A:90:74
Certificate issuer: /CN=9a980eed42aa546aab9e68cda96e2fbcf382f47a
Certificate serial: 01934F5598A6D4615DB3D7590856D94E3273
Authority key identifier: 9A:98:0E:ED:42:AA:54:6A:AB:9E:68:CD:A9:6E:2F:BC:F3:82:F4:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mpgO7UKqVGqrnmjNqW4vvPOC9Ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/26d28f-ff14-446d-99ea-fbadb98d688e/1/LL_e5qKaQx6LuIZpnLBYYZQKkHQ.roa
Signing time: Thu 21 Nov 2024 15:27:09 +0000
ROA not before: Thu 21 Nov 2024 15:27:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213831
IP address blocks: 2a14:8000::/32 maxlen: 32
2a14:8000:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Nov 2024 11:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4f:55:98:a6:d4:61:5d:b3:d7:59:08:56:d9:4e:32:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a980eed42aa546aab9e68cda96e2fbcf382f47a
Validity
Not Before: Nov 21 15:27:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2cbfdee6a29a431e8bb886699cb05861940a9074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:df:3b:59:a0:03:b2:d7:41:78:3e:5c:a1:13:
10:2b:9a:98:4a:e0:76:ca:c4:8a:be:5f:1d:e2:ce:
b9:64:f3:9c:40:a9:bf:e9:be:36:06:dd:93:03:39:
ac:21:97:b4:20:0e:e7:8c:ab:6c:34:5f:8a:29:4b:
39:95:f5:42:8a:3f:30:f5:8e:79:7c:83:48:e9:86:
6e:99:4e:1b:04:e9:b5:1f:42:35:08:9b:6b:19:d6:
29:58:e6:c1:6c:6c:69:04:9b:6b:aa:24:fc:80:c2:
f5:49:d7:73:5c:79:ef:74:c4:c5:e1:8a:1d:66:70:
1f:16:01:15:af:5a:3a:63:34:0f:d4:18:f5:44:70:
56:ef:dd:4f:44:32:f8:50:76:6e:15:d8:f8:e6:d8:
ea:f9:e2:c3:6f:f6:8c:a0:4d:ad:8e:f5:66:74:71:
61:35:22:10:13:ca:8f:2b:4e:71:b5:34:50:72:69:
40:78:da:6d:d0:85:43:b3:21:33:81:24:cd:60:cf:
f6:7f:69:41:c6:eb:cf:6d:71:92:f5:c4:74:0e:84:
cf:89:ba:79:de:9b:4e:dd:91:0b:67:28:5b:69:fd:
62:7c:ad:45:d9:f3:0b:ec:c9:ec:30:c7:2c:6b:02:
f0:6f:29:60:93:96:c8:96:71:0c:4b:62:a4:36:2c:
a9:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:BF:DE:E6:A2:9A:43:1E:8B:B8:86:69:9C:B0:58:61:94:0A:90:74
X509v3 Authority Key Identifier:
keyid:9A:98:0E:ED:42:AA:54:6A:AB:9E:68:CD:A9:6E:2F:BC:F3:82:F4:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpgO7UKqVGqrnmjNqW4vvPOC9Ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/26d28f-ff14-446d-99ea-fbadb98d688e/1/LL_e5qKaQx6LuIZpnLBYYZQKkHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/26d28f-ff14-446d-99ea-fbadb98d688e/1/mpgO7UKqVGqrnmjNqW4vvPOC9Ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:8000::/32
Signature Algorithm: sha256WithRSAEncryption
1a:00:39:9b:54:01:e4:84:46:ab:fd:b5:23:79:bb:21:f6:6b:
74:1e:11:21:d5:6e:21:ef:cc:8a:3e:21:3a:ef:5f:82:fc:c8:
d3:96:77:64:66:04:5e:96:ac:cb:aa:4e:8c:94:ce:11:5f:f4:
af:9d:72:16:91:19:c9:e6:e4:ce:72:13:9f:d2:d1:7e:41:87:
31:19:eb:24:4d:e7:06:7b:7b:ea:ee:e1:1d:5c:cc:1b:25:bf:
60:e0:e4:61:82:79:b4:1d:d2:94:dc:cf:bb:1e:c5:4d:ed:eb:
90:eb:6e:d3:7e:d1:e5:b8:47:a7:16:e5:60:b4:7c:0d:d1:1f:
6b:a2:ae:22:20:96:4c:7e:ff:5a:81:17:de:0e:99:8d:3d:08:
c8:6c:24:77:14:53:1c:42:1d:e3:d6:d3:38:80:b4:9e:cb:9d:
ea:ca:6f:4f:2c:cd:62:ec:ab:0e:a0:b5:da:bb:93:d1:18:29:
65:57:6d:33:27:3e:27:a1:f4:32:f3:1a:f0:56:ea:16:10:91:
d1:2d:10:4c:30:5b:da:6b:69:93:95:f1:92:0c:74:26:5d:81:
8f:cc:9b:2d:0c:f6:e1:92:c2:7f:57:fe:e8:67:5a:7b:00:09:
17:d9:cc:9b:e8:3d:fe:f1:b2:ab:5d:d6:fd:82:e6:eb:98:d3:
c5:00:b5:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:11 2025 by rpki-client