Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/7Hv5p8AFN558oS1rBrVzsRWewKI.roa
File: 7Hv5p8AFN558oS1rBrVzsRWewKI.roa (raw, json)
Hash identifier: i0mUE7oXG8ynF2c//hXeSZCxSZoIVXwsMH1c+r/hG6s=
Subject key identifier: EC:7B:F9:A7:C0:05:37:9E:7C:A1:2D:6B:06:B5:73:B1:15:9E:C0:A2
Certificate issuer: /CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Certificate serial: 01927D4BCB0545E32A52F4A958B56F79B340
Authority key identifier: 78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/7Hv5p8AFN558oS1rBrVzsRWewKI.roa
Signing time: Fri 11 Oct 2024 20:36:11 +0000
ROA not before: Fri 11 Oct 2024 20:36:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35196
IP address blocks: 2a0d:cdc5::/32 maxlen: 32
2a0e:eec3::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 12 Oct 2024 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7d:4b:cb:05:45:e3:2a:52:f4:a9:58:b5:6f:79:b3:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Validity
Not Before: Oct 11 20:36:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec7bf9a7c005379e7ca12d6b06b573b1159ec0a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bd:fc:a0:1d:89:b0:13:9e:77:6b:6f:11:c3:
10:d6:f0:0d:ea:d1:c3:6d:6f:93:30:21:0a:df:aa:
b7:11:c2:61:5a:0c:a0:f6:81:0d:85:13:88:64:a4:
b3:e0:b6:6b:62:80:e2:fd:09:b5:4f:66:a9:95:7f:
e7:5a:e0:21:eb:d5:7c:a1:18:70:76:1d:1d:d9:c6:
ca:1f:f5:20:7b:cb:9d:ce:9c:68:3b:a2:fa:4f:4c:
d5:a3:6e:4d:67:1d:6a:8c:70:00:6a:6e:06:c1:04:
8b:69:aa:f0:19:47:c2:ec:6b:27:96:a2:a9:75:c9:
35:42:b9:84:4d:ba:80:12:91:8f:0c:27:34:b3:31:
b7:c0:15:5e:a1:89:6c:3b:06:21:73:67:e3:bd:22:
6a:c1:f8:a6:c4:28:e6:a4:87:e4:3d:cb:9a:23:94:
1c:4e:fc:36:e5:c1:90:68:e2:42:84:3c:b9:7a:ed:
a5:bc:ca:98:26:d3:7b:32:cc:26:62:b4:86:b0:a4:
7e:cc:9b:90:88:65:d9:d1:d9:95:76:27:3d:1a:78:
ac:fc:83:a0:a2:29:0f:f6:e8:a8:c0:64:f2:5b:b3:
ab:72:e2:05:a2:93:23:26:5d:62:6c:a9:8b:9a:c5:
69:2c:b3:24:a4:5d:c7:1b:26:b1:48:c5:c1:60:f6:
88:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:7B:F9:A7:C0:05:37:9E:7C:A1:2D:6B:06:B5:73:B1:15:9E:C0:A2
X509v3 Authority Key Identifier:
keyid:78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/7Hv5p8AFN558oS1rBrVzsRWewKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/eANVjqblFls4dgl691vx6SoULPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:cdc5::/32
2a0e:eec3::/32
Signature Algorithm: sha256WithRSAEncryption
04:59:84:d2:d6:f9:a3:25:02:22:40:13:cf:c6:ea:71:12:7d:
4e:5a:2c:66:db:3b:c6:cb:e9:d1:1c:7e:af:6f:ea:38:ca:e9:
63:1c:a3:46:3c:16:8d:b7:3b:a3:0f:77:ad:52:b3:04:60:c9:
7d:7c:45:04:a4:05:81:d5:24:37:97:f5:ce:82:8c:a3:b2:08:
40:36:42:69:52:14:80:c4:a9:47:5e:02:cb:68:a1:a0:73:84:
00:18:13:46:e0:c8:d7:da:85:e9:f2:72:69:b6:8b:ba:ac:8b:
9a:31:5d:a9:8d:4a:d5:09:55:3d:a1:54:27:5b:2c:ca:9d:e7:
2c:27:18:33:f0:98:c4:03:34:7b:6d:0e:56:95:c8:7e:a0:10:
09:4c:55:d4:42:93:b1:94:d3:9c:34:65:08:90:59:88:ae:fd:
e3:3e:13:43:fc:83:16:2e:21:ee:6c:5d:fb:89:72:38:cf:dc:
84:48:0c:bb:78:76:20:a2:ab:d3:e5:04:9b:ef:3e:f8:f9:b7:
ff:5c:23:7c:0b:c8:ab:e7:94:2c:e7:be:2a:4f:81:50:43:35:
be:53:e6:6f:f7:4c:d9:cf:80:77:1f:a5:2f:e4:ba:1f:81:45:
da:36:05:85:fd:ff:96:3d:24:7d:21:43:a0:86:0b:7b:0a:5c:
8e:fe:17:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 22:40:42 2024 by rpki-client on console-ams.rpki-client.org