Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/NpJduvUxXAAZvRW-eCdfxZtCix0.roa
File: NpJduvUxXAAZvRW-eCdfxZtCix0.roa (raw, json)
Hash identifier: yqywAxAj/Nxu2PsrT1nEVRuOAvw7Du8Dwwo9cBC0Jns=
Subject key identifier: 36:92:5D:BA:F5:31:5C:00:19:BD:15:BE:78:27:5F:C5:9B:42:8B:1D
Certificate issuer: /CN=e1d362e48acbe0048e9d125a62b8d9b140cbfdd4
Certificate serial: 01925230967D5217027DD120425B6835CFDC
Authority key identifier: E1:D3:62:E4:8A:CB:E0:04:8E:9D:12:5A:62:B8:D9:B1:40:CB:FD:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/NpJduvUxXAAZvRW-eCdfxZtCix0.roa
Signing time: Thu 03 Oct 2024 11:42:48 +0000
ROA not before: Thu 03 Oct 2024 11:42:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47304
IP address blocks: 2a07:91c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 07 Oct 2024 06:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:52:30:96:7d:52:17:02:7d:d1:20:42:5b:68:35:cf:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1d362e48acbe0048e9d125a62b8d9b140cbfdd4
Validity
Not Before: Oct 3 11:42:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36925dbaf5315c0019bd15be78275fc59b428b1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:15:2e:65:11:0c:a9:f9:c9:6a:22:16:95:eb:
b9:44:fa:5a:1a:83:11:39:96:a5:b8:99:73:22:6f:
56:8b:13:55:4e:96:8c:3c:20:c7:7e:74:4a:5e:0d:
1a:4c:90:3d:19:14:35:b9:04:1a:38:0f:b5:f2:12:
7e:60:3e:df:3a:69:32:c8:8c:74:c5:e8:f1:8c:a3:
0b:3f:9f:eb:fe:e4:c2:b0:4f:5c:0e:67:ba:65:8f:
56:30:e8:e0:33:8d:19:23:9c:3e:c8:ab:6c:73:43:
d0:22:41:eb:4b:ff:57:c5:53:f6:54:b9:f7:ea:f9:
4f:32:2e:ae:21:c9:01:86:f2:f3:4a:29:a7:b2:a6:
75:4f:6d:5a:86:57:77:27:b3:e3:23:9e:bf:8f:92:
d3:9a:26:b2:16:b3:df:54:33:f0:0d:92:41:64:36:
04:9c:c0:09:72:b0:c1:f7:cb:4d:02:e1:82:7d:69:
14:4a:f6:60:00:fc:5a:87:59:ee:c9:95:17:e6:35:
29:b3:ba:d0:0f:de:7a:86:35:ee:f9:70:c9:68:ad:
f4:e1:f1:95:c7:bf:b5:c2:c0:f7:51:a1:4a:55:fe:
96:ea:ff:f4:ce:0f:72:e5:fd:7c:04:d7:59:4d:69:
6d:96:e3:e7:d5:e2:5b:31:84:d8:0d:13:40:b8:07:
b4:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:92:5D:BA:F5:31:5C:00:19:BD:15:BE:78:27:5F:C5:9B:42:8B:1D
X509v3 Authority Key Identifier:
keyid:E1:D3:62:E4:8A:CB:E0:04:8E:9D:12:5A:62:B8:D9:B1:40:CB:FD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/NpJduvUxXAAZvRW-eCdfxZtCix0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:91c0::/29
Signature Algorithm: sha256WithRSAEncryption
35:a6:0b:df:88:3d:66:be:25:b5:fd:20:8d:4d:ca:b6:64:f8:
eb:b3:88:92:cf:b7:f4:87:0f:70:bb:37:dd:f5:88:c8:cb:07:
14:5e:da:ec:d8:72:92:19:ab:bd:8f:0a:a2:8a:eb:2c:5a:6b:
e5:7d:87:4c:65:ac:08:3a:bb:9b:ae:b9:de:db:a5:34:b4:d5:
a8:df:8d:c8:48:bd:a3:30:04:a3:56:6e:cf:8b:6b:75:63:d8:
25:36:fe:ff:0e:09:4b:04:f4:37:c7:9f:81:d8:e3:22:af:f9:
e8:57:a9:93:de:35:7e:04:f6:f4:11:7e:15:7d:c6:f7:79:13:
9f:b3:e1:25:77:0c:85:b6:aa:6d:6b:72:f6:35:ea:cd:8e:98:
fa:f6:7a:f8:ab:a4:ae:53:82:d6:c9:7a:5f:73:37:a5:76:4a:
01:68:ca:32:29:1d:47:b1:70:12:00:0e:c6:f4:fd:83:30:72:
88:21:e8:d7:3d:71:74:ca:7e:eb:4f:88:ce:00:c3:44:41:d3:
68:8e:0f:f2:25:8b:d5:72:ad:20:ee:61:7f:18:d4:a8:82:37:
68:85:cd:6d:4d:13:f5:00:8d:78:af:22:a0:5f:73:d9:0b:e2:
23:2e:ca:cf:d0:13:f1:0a:ff:e2:f9:da:39:3a:73:94:68:2d:
6b:cf:72:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:21 2025 by rpki-client