Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/5eCgTXZL9hYTu5h2WvP_fFTwKXo.roa
File: 5eCgTXZL9hYTu5h2WvP_fFTwKXo.roa (raw, json)
Hash identifier: lF0RjbH6QWCKMbEBwpsdFDcqm1bUr8lDSiWjBsejhWo=
Subject key identifier: E5:E0:A0:4D:76:4B:F6:16:13:BB:98:76:5A:F3:FF:7C:54:F0:29:7A
Certificate issuer: /CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Certificate serial: 0192C33BEC8BEC3000B9C5856FC086D25E31
Authority key identifier: CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/5eCgTXZL9hYTu5h2WvP_fFTwKXo.roa
Signing time: Fri 25 Oct 2024 10:32:17 +0000
ROA not before: Fri 25 Oct 2024 10:32:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57271
IP address blocks: 2a0e:7f42::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 13 Nov 2024 10:44:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c3:3b:ec:8b:ec:30:00:b9:c5:85:6f:c0:86:d2:5e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Validity
Not Before: Oct 25 10:32:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e5e0a04d764bf61613bb98765af3ff7c54f0297a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:20:ff:18:a9:a7:4d:9e:72:7c:e9:22:c9:ee:
ed:d1:71:76:20:3d:29:41:39:ac:cd:bc:54:51:37:
e2:68:64:5f:08:01:fb:ef:ab:91:ce:46:f6:12:76:
16:16:68:5d:ed:bf:4a:39:05:8f:d1:ad:30:71:12:
50:83:16:0d:f6:a1:49:0d:3f:09:ff:86:9c:87:63:
22:bf:0b:00:16:5a:67:00:39:40:9e:7a:de:47:71:
ad:8c:e2:59:43:21:5b:14:2e:74:0c:16:6d:d8:d9:
49:0a:3e:74:12:e1:5a:1f:48:66:bc:f3:d0:da:ec:
ba:11:a6:b9:60:c5:28:aa:a0:41:6f:0e:e9:c6:cb:
3f:9f:e5:39:85:8a:10:23:75:bb:55:e9:86:9d:c7:
15:b0:66:8c:25:76:46:d2:1c:f2:39:54:0f:39:f0:
79:ff:81:b2:9c:34:89:8a:4c:36:52:ae:43:56:56:
06:79:71:da:ec:31:97:c5:e0:3b:47:cd:b3:4b:3d:
04:45:04:dc:96:7a:fe:37:2b:92:bf:9c:42:6c:78:
f4:8c:03:e3:92:88:64:ce:bb:9b:6a:f2:6e:2a:6d:
cc:9c:f6:2a:94:65:4f:0e:e5:ba:40:03:59:b7:02:
63:2e:71:11:f2:6c:5b:ad:8a:bb:da:37:c2:58:f3:
34:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E0:A0:4D:76:4B:F6:16:13:BB:98:76:5A:F3:FF:7C:54:F0:29:7A
X509v3 Authority Key Identifier:
keyid:CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/5eCgTXZL9hYTu5h2WvP_fFTwKXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:7f42::/32
Signature Algorithm: sha256WithRSAEncryption
7a:ab:47:f0:4a:f9:fc:43:ab:64:2c:20:c4:6d:53:d2:c9:97:
94:41:12:18:83:ea:c9:ee:12:5c:d0:a3:de:bb:11:c2:15:b8:
b6:3b:86:04:c9:96:ad:76:e9:f8:bb:f7:9f:86:a9:70:1a:36:
8d:f4:ee:a9:d5:16:d1:2a:e9:b7:fd:e9:2f:ea:27:4f:61:30:
06:76:ef:f0:2c:0f:bb:1d:cb:a1:1c:13:94:c8:cd:23:5e:fe:
89:0a:cc:14:6d:b9:84:ae:35:3e:36:07:ad:e3:a6:9a:1a:be:
c0:14:8e:e0:31:0c:9d:62:67:45:93:99:a9:fd:9d:6f:37:4d:
7e:9b:a6:98:1b:62:39:8b:92:df:a0:d2:4e:1b:54:c6:4d:13:
5b:65:6f:86:1e:2d:c9:95:40:1a:e5:5f:72:91:f8:0d:31:bf:
08:b2:57:84:fc:9d:d5:1a:db:1e:84:c9:e5:11:0d:2a:dd:08:
2c:83:0f:d1:26:eb:1c:fb:47:93:0a:a0:e5:cd:14:67:ff:c6:
f1:24:f5:f1:01:9d:f5:e0:4f:5b:3b:d2:99:81:db:6f:52:62:
98:ad:87:a3:9c:39:8c:1d:fa:63:c4:39:02:7d:cb:09:ec:33:
03:e7:69:4e:8e:24:df:dc:d1:0d:37:9e:cb:71:25:13:f1:4f:
ab:f2:ab:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 13:01:07 2024 by rpki-client on console-fra.rpki-client.org