Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/36a9af-0d6a-45e3-9ca5-40858b95fcf5/1/jwqSHeE9FX8e1qYyt_C3JUFrhDg.roa
File: jwqSHeE9FX8e1qYyt_C3JUFrhDg.roa (raw, json)
Hash identifier: nt+YvbjEJSstte7NGlmfx+Td8P4b4Sjw/gX4ZKx7c8s=
Subject key identifier: 8F:0A:92:1D:E1:3D:15:7F:1E:D6:A6:32:B7:F0:B7:25:41:6B:84:38
Certificate issuer: /CN=345b4f7b4a16db9e924f0908cee3da26f22ad481
Certificate serial: 0190B7FF35F712BBB2576B074962B60D6A18
Authority key identifier: 34:5B:4F:7B:4A:16:DB:9E:92:4F:09:08:CE:E3:DA:26:F2:2A:D4:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NFtPe0oW256STwkIzuPaJvIq1IE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/36a9af-0d6a-45e3-9ca5-40858b95fcf5/1/jwqSHeE9FX8e1qYyt_C3JUFrhDg.roa
Signing time: Mon 15 Jul 2024 20:04:34 +0000
ROA not before: Mon 15 Jul 2024 20:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50869
IP address blocks: 2a0b:dd80:3100::/40 maxlen: 48
Validation: Failed, certificate revoked on Wed 17 Jul 2024 16:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b7:ff:35:f7:12:bb:b2:57:6b:07:49:62:b6:0d:6a:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345b4f7b4a16db9e924f0908cee3da26f22ad481
Validity
Not Before: Jul 15 20:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f0a921de13d157f1ed6a632b7f0b725416b8438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e4:2b:07:5f:c8:20:7a:da:c2:11:e1:f3:88:
54:7e:8b:3c:26:fc:ca:31:15:19:94:fd:b4:b9:4a:
ee:98:28:4f:d4:2a:77:d2:03:e6:5f:bc:e0:56:05:
8e:93:48:f3:99:5d:a0:9a:0a:56:f9:ac:23:2f:ee:
82:9a:ed:b0:b9:f3:6a:72:93:9c:9d:16:5d:e4:d2:
46:08:34:9c:34:16:70:46:3a:15:b4:02:ac:b3:cc:
21:75:b0:cc:fe:e9:c9:09:c8:31:64:fd:59:03:f9:
4b:ee:52:00:9d:bf:62:86:3f:be:d8:4d:ce:4f:ad:
a1:ef:2b:73:13:ff:ba:0b:02:75:a4:31:11:fd:f2:
46:3d:93:ef:a5:e1:45:45:19:ac:bf:37:4f:e7:e4:
85:4b:dd:2b:15:b5:7a:21:22:1c:65:e6:86:40:aa:
4a:1d:b4:e9:0f:85:63:02:03:c5:68:14:1b:d1:b8:
06:0b:8a:1a:4d:cd:19:e5:53:74:40:eb:69:6f:e6:
f4:53:c4:65:38:ad:b8:62:41:b0:4a:58:83:b7:4f:
1a:13:b0:61:a2:79:fd:d0:a0:82:01:60:f6:fe:88:
e6:6a:93:f0:cf:b4:83:c2:16:f0:f5:65:7a:21:e6:
1f:96:d7:ec:01:cf:80:38:6d:39:c0:e0:cd:e6:eb:
c6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0A:92:1D:E1:3D:15:7F:1E:D6:A6:32:B7:F0:B7:25:41:6B:84:38
X509v3 Authority Key Identifier:
keyid:34:5B:4F:7B:4A:16:DB:9E:92:4F:09:08:CE:E3:DA:26:F2:2A:D4:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NFtPe0oW256STwkIzuPaJvIq1IE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/36a9af-0d6a-45e3-9ca5-40858b95fcf5/1/jwqSHeE9FX8e1qYyt_C3JUFrhDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/36a9af-0d6a-45e3-9ca5-40858b95fcf5/1/NFtPe0oW256STwkIzuPaJvIq1IE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:dd80:3100::/40
Signature Algorithm: sha256WithRSAEncryption
9f:b4:37:54:96:63:7e:84:86:82:38:a5:4b:da:b1:13:cd:6b:
26:62:3c:40:8f:32:48:91:f6:18:71:a1:d8:a0:c4:35:6f:d6:
c8:66:ae:ad:61:e9:c7:90:12:73:53:e6:84:ad:ab:20:32:26:
d6:03:3e:9c:ea:bb:4b:2c:e7:f3:17:60:de:59:41:f6:20:84:
ad:3c:db:f9:bb:36:e8:4f:47:b8:c1:a5:60:e9:7f:dc:35:e1:
7f:cf:8b:6b:d0:f9:62:b5:4f:c0:aa:8c:3a:d4:73:e6:af:f7:
ed:d1:be:80:1e:1b:c1:24:bc:a2:f1:e8:7b:5c:9d:e9:83:85:
34:51:e2:81:0a:f5:d9:0d:d1:4a:b0:a8:60:17:25:34:a3:1b:
d7:98:91:fd:56:3b:77:39:81:0e:a1:0b:93:ce:94:3c:00:ae:
96:3a:e9:30:df:b7:9d:6f:20:3c:54:36:c0:cb:8d:fb:ee:9c:
3f:37:84:e1:06:db:ca:15:92:59:14:39:0a:83:70:4d:5b:27:
82:cc:2e:e6:16:5f:f4:88:46:b7:7b:2e:e7:a9:ad:8a:0e:9b:
ec:5f:fa:40:84:e1:6a:fc:c6:fe:ab:db:d5:ea:44:ef:df:6f:
b7:80:30:ad:f2:4f:ff:d4:98:22:d1:6e:18:4c:7b:9d:51:da:
7a:78:b6:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:27 2025 by rpki-client