Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/flpsSH3_jvLskpMsvwyZ5iC_D0U.roa
File: flpsSH3_jvLskpMsvwyZ5iC_D0U.roa (raw, json)
Hash identifier: TALV4fF8kGj39lz6uphNxZRulDTfeHC+Rq/QovlpVuw=
Subject key identifier: 7E:5A:6C:48:7D:FF:8E:F2:EC:92:93:2C:BF:0C:99:E6:20:BF:0F:45
Certificate issuer: /CN=fc3ab55d57509cbfae798bd71aaa23b3444d8e5a
Certificate serial: 018FC4427C63030A2D01DB71E0CF95E128AD
Authority key identifier: FC:3A:B5:5D:57:50:9C:BF:AE:79:8B:D7:1A:AA:23:B3:44:4D:8E:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Dq1XVdQnL-ueYvXGqojs0RNjlo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/flpsSH3_jvLskpMsvwyZ5iC_D0U.roa
Signing time: Wed 29 May 2024 12:10:42 +0000
ROA not before: Wed 29 May 2024 12:10:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 2a14:b80::/29 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c4:42:7c:63:03:0a:2d:01:db:71:e0:cf:95:e1:28:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc3ab55d57509cbfae798bd71aaa23b3444d8e5a
Validity
Not Before: May 29 12:10:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e5a6c487dff8ef2ec92932cbf0c99e620bf0f45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e7:f6:ef:af:e5:31:e6:a6:0d:d9:e6:1d:9b:
00:dc:ce:ad:b2:02:12:ab:bc:12:fa:cb:36:e1:0d:
43:4c:38:1d:fa:10:b7:32:1e:aa:49:5a:34:7b:ff:
ce:c0:9c:17:27:d0:39:ee:48:54:3e:fe:9b:b5:a9:
ab:54:c7:3a:85:32:78:49:64:dc:38:d6:ed:e4:ae:
2e:eb:f7:d3:08:49:dd:c5:0e:2c:fc:92:7a:e8:1a:
3a:a9:a0:59:6e:52:72:82:72:38:00:d7:4a:0f:f2:
45:b0:de:70:e9:91:d7:7d:5f:89:3a:ea:71:3d:43:
9d:c5:57:7c:e2:7e:31:12:96:2a:4c:a0:55:8c:58:
d7:ec:19:ca:6c:30:91:35:aa:7a:e5:00:78:eb:b8:
cd:ac:41:94:78:07:76:8b:86:4b:d8:58:d6:3b:60:
43:dc:15:60:fd:71:9c:62:80:32:51:98:8d:6b:c6:
06:f1:54:96:e9:13:ce:de:d5:c6:f3:c9:91:2b:a8:
9a:4b:76:d5:f0:46:7a:55:88:81:f2:ec:65:e2:42:
83:44:18:d6:7f:21:fc:8d:43:73:7f:7f:f3:40:97:
91:60:21:2d:a0:ab:9c:82:79:2e:f7:f1:c5:64:21:
f7:67:87:c5:24:8a:84:64:77:e2:00:b7:ec:6a:f8:
18:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5A:6C:48:7D:FF:8E:F2:EC:92:93:2C:BF:0C:99:E6:20:BF:0F:45
X509v3 Authority Key Identifier:
keyid:FC:3A:B5:5D:57:50:9C:BF:AE:79:8B:D7:1A:AA:23:B3:44:4D:8E:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Dq1XVdQnL-ueYvXGqojs0RNjlo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/flpsSH3_jvLskpMsvwyZ5iC_D0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/729da9-eb03-451b-bfef-0c45218e7981/1/_Dq1XVdQnL-ueYvXGqojs0RNjlo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:b80::/29
Signature Algorithm: sha256WithRSAEncryption
47:2d:eb:68:5a:ea:a1:e1:da:12:d1:18:ce:5a:5b:88:98:ff:
61:b2:8a:7f:f9:45:8f:aa:90:d8:d7:30:0a:a1:b7:50:54:7c:
ef:54:32:10:ee:22:f9:52:60:26:63:a7:4b:cc:3c:5b:1a:b1:
51:aa:b0:19:d1:23:04:71:9d:40:6a:ef:ee:f9:d6:16:02:6e:
51:2f:74:53:7f:f8:bd:bc:c6:b3:b6:fe:aa:6c:ef:82:c5:46:
8a:21:14:8d:db:84:50:12:3b:be:c9:d0:e7:d0:6e:75:e3:98:
42:57:28:03:1e:2a:66:03:08:65:3c:3b:d9:9e:58:df:fb:f6:
11:38:0a:af:46:00:81:77:7b:36:23:6d:7e:b6:c0:21:75:b6:
51:b9:8a:4c:5c:70:67:b5:9f:ba:8d:20:56:1c:19:e0:e9:bc:
d8:de:82:6b:a3:f1:c3:47:c7:18:09:aa:71:be:8a:fc:8d:ef:
3b:ba:01:a9:3b:8f:d5:50:71:5d:4a:c2:74:5f:d4:36:ca:14:
0a:8b:8b:12:7a:c7:dd:a0:db:68:37:77:f9:b7:fb:a9:ef:e5:
99:e2:79:53:0a:95:3e:93:c2:09:20:86:ed:3c:a4:d8:c6:84:
05:fd:01:11:bc:d5:13:7c:44:07:b2:18:3e:38:84:98:90:e8:
41:2d:c5:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:07:37 2025 by rpki-client