Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/29fb04-e07b-4e30-b8f5-54204ddd2ca6/1/bov4_5bLR08OoXahFgmXw5MGdw0.roa
File: bov4_5bLR08OoXahFgmXw5MGdw0.roa (raw, json)
Hash identifier: Axyy0RSbz/7p0JBc45z8/gMTL8o25JDEsw70VXGHbpg=
Subject key identifier: 6E:8B:F8:FF:96:CB:47:4F:0E:A1:76:A1:16:09:97:C3:93:06:77:0D
Certificate issuer: /CN=5ec1769d3ff042124698e31c472b63bbf1bbb5ad
Certificate serial: 0190BB3F6C489C23F9A30CDA5318F55E9162
Authority key identifier: 5E:C1:76:9D:3F:F0:42:12:46:98:E3:1C:47:2B:63:BB:F1:BB:B5:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XsF2nT_wQhJGmOMcRytju_G7ta0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/29fb04-e07b-4e30-b8f5-54204ddd2ca6/1/bov4_5bLR08OoXahFgmXw5MGdw0.roa
Signing time: Tue 16 Jul 2024 11:13:34 +0000
ROA not before: Tue 16 Jul 2024 11:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 2a14:1040::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 24 Jul 2024 22:25:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bb:3f:6c:48:9c:23:f9:a3:0c:da:53:18:f5:5e:91:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ec1769d3ff042124698e31c472b63bbf1bbb5ad
Validity
Not Before: Jul 16 11:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e8bf8ff96cb474f0ea176a1160997c39306770d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ce:fc:dc:7f:ed:19:8d:f6:56:bf:00:66:1f:
0b:88:fe:ed:5a:4e:a4:5c:59:2f:10:64:2d:7b:77:
a6:63:4d:4f:1e:95:44:23:01:12:32:d8:19:e9:4b:
94:cc:85:64:25:71:33:73:7e:9f:15:2b:ba:43:6d:
f3:a1:bb:68:a0:23:20:e3:85:6e:f7:bd:f8:6b:0b:
ec:f1:fe:dd:26:c1:40:0b:ca:0d:f3:82:08:f4:4c:
a8:6a:58:07:d4:d8:91:8d:8a:1f:8b:07:73:1d:28:
89:e4:2d:38:6a:23:24:24:3d:13:cb:e7:56:a3:a1:
c2:ef:7b:f2:68:a8:bf:00:a8:dd:9e:89:c3:3e:95:
c2:b4:21:49:2d:ed:79:f7:ad:5e:55:9f:e2:f6:06:
75:f1:2e:a4:a4:ad:0d:b9:4d:6b:fd:bf:7e:7e:7c:
2f:f3:80:7b:7b:93:3c:3e:e3:ca:ef:f6:1d:13:5a:
34:de:3a:bb:8c:ee:6b:b4:68:3f:bd:8f:98:a8:c2:
e9:bb:e8:2b:e4:15:5e:29:60:80:c8:84:7d:fd:c8:
b5:1c:24:bc:90:37:00:bf:bf:7c:72:d8:45:56:4a:
6d:33:c7:6c:a6:cd:88:01:d9:ed:e1:87:81:11:e0:
25:f0:48:66:d6:8f:61:b2:78:14:8d:cb:7b:3e:fc:
f7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:8B:F8:FF:96:CB:47:4F:0E:A1:76:A1:16:09:97:C3:93:06:77:0D
X509v3 Authority Key Identifier:
keyid:5E:C1:76:9D:3F:F0:42:12:46:98:E3:1C:47:2B:63:BB:F1:BB:B5:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XsF2nT_wQhJGmOMcRytju_G7ta0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29fb04-e07b-4e30-b8f5-54204ddd2ca6/1/bov4_5bLR08OoXahFgmXw5MGdw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/29fb04-e07b-4e30-b8f5-54204ddd2ca6/1/XsF2nT_wQhJGmOMcRytju_G7ta0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:1040::/29
Signature Algorithm: sha256WithRSAEncryption
1d:61:de:58:0c:1c:db:b9:11:51:5b:50:4c:40:c7:48:1d:9e:
11:aa:1d:8f:ff:c1:9f:c2:02:b8:19:4f:47:31:18:08:4c:1f:
fd:ce:0b:db:0b:f5:af:a9:51:48:de:a8:10:37:ff:3b:61:8e:
59:9d:8d:73:4a:a8:4f:85:51:7a:65:fe:ca:87:e5:54:d6:b3:
3d:92:5c:53:5a:cc:6a:3c:c9:5a:af:79:17:82:d0:ca:78:c3:
73:2a:5a:0a:5c:69:4a:38:9d:0e:8c:e3:fc:68:15:fb:9b:eb:
f6:0f:5f:fb:ab:c7:c9:35:d1:0d:37:c0:42:dc:b6:4a:c4:1c:
8d:1e:dd:2d:4e:02:1f:32:55:ef:00:4b:7b:dc:c4:62:9c:4d:
cf:30:6c:25:d9:5c:52:02:9f:87:f6:09:39:9c:47:e3:7f:33:
02:29:09:1a:4c:14:49:df:ef:33:8b:63:01:29:06:af:9c:cc:
d9:90:86:65:61:57:b1:eb:fd:fa:2c:be:1e:46:2c:dd:e3:1d:
e8:8b:ab:6d:ef:9f:e0:f9:90:fe:2f:5a:d5:24:8d:6b:b7:85:
7a:f0:25:f6:c8:93:a3:bf:0b:5f:e6:2b:9a:d2:c0:bc:00:96:
a8:67:16:3b:d4:b4:0e:71:10:c5:41:3c:fe:ff:d9:85:51:43:
01:56:0e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:18 2025 by rpki-client