Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/YDcOcS4BDijxGUm52MVujMALznU.roa
File: YDcOcS4BDijxGUm52MVujMALznU.roa (raw, json)
Hash identifier: 9fXFjxrddCVHb8/c+T7FN2KMIyg5DTXsaaF2pZMZpG8=
Subject key identifier: 60:37:0E:71:2E:01:0E:28:F1:19:49:B9:D8:C5:6E:8C:C0:0B:CE:75
Certificate issuer: /CN=207799027329f22682764573af2115da95a9f6bf
Certificate serial: 018CCA99D3F0E72180B35D5B3BBA386787A0
Authority key identifier: 20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/YDcOcS4BDijxGUm52MVujMALznU.roa
Signing time: Tue 02 Jan 2024 14:35:28 +0000
ROA not before: Tue 02 Jan 2024 14:35:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210945
IP address blocks: 2001:67c:808::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 05 Aug 2024 12:12:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:d3:f0:e7:21:80:b3:5d:5b:3b:ba:38:67:87:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=207799027329f22682764573af2115da95a9f6bf
Validity
Not Before: Jan 2 14:35:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60370e712e010e28f11949b9d8c56e8cc00bce75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:9a:dc:f3:03:9b:f3:f2:38:09:f6:fa:e8:7a:
93:1d:34:f2:02:7a:9b:89:12:d3:3c:b8:22:af:20:
5f:7a:98:e2:07:d8:1e:5d:a2:73:70:7d:9e:9f:8d:
64:8e:46:8b:c4:07:94:61:d3:e3:f9:06:e5:ce:58:
c9:de:44:47:51:67:b8:6f:ee:70:97:97:c8:83:6c:
8d:ee:17:29:b9:b2:b7:04:e3:4c:96:aa:15:0a:fe:
9b:ed:76:91:73:de:eb:75:da:76:1a:8d:fb:7f:b7:
3e:55:b8:71:ec:8a:3a:22:cb:79:7f:99:d9:47:a6:
05:bf:07:5e:d2:de:14:94:94:ad:80:81:8d:f0:82:
65:b1:22:da:92:08:50:ac:a1:74:56:17:f1:82:0a:
5e:1a:17:ff:03:85:f8:3e:46:58:32:20:e7:ac:b1:
78:1a:fb:0b:e6:73:6d:2e:b5:46:a5:ac:a3:d6:21:
dc:6d:8d:b4:b1:39:ca:f1:6b:8d:17:dc:f3:91:5e:
aa:94:d8:29:08:2f:99:6d:30:9c:19:08:cc:c7:23:
ac:d1:b9:64:62:27:ac:47:2d:23:2c:47:5c:10:4a:
5e:8f:8c:2d:fe:57:c4:49:9c:31:d7:8c:83:4a:b4:
b1:33:7f:1b:8e:8a:ea:72:19:b0:90:0c:8b:39:59:
d8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:37:0E:71:2E:01:0E:28:F1:19:49:B9:D8:C5:6E:8C:C0:0B:CE:75
X509v3 Authority Key Identifier:
keyid:20:77:99:02:73:29:F2:26:82:76:45:73:AF:21:15:DA:95:A9:F6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IHeZAnMp8iaCdkVzryEV2pWp9r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/YDcOcS4BDijxGUm52MVujMALznU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/fc9f2b-7f2f-4238-aa19-98cba8ff2ca3/1/IHeZAnMp8iaCdkVzryEV2pWp9r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:808::/48
Signature Algorithm: sha256WithRSAEncryption
15:1b:4d:50:e2:92:e2:94:b5:6a:0a:23:69:06:72:6f:d1:aa:
51:db:b3:37:91:96:1e:d2:cb:2c:db:83:85:f7:54:eb:56:ba:
7b:7c:46:41:a4:17:ad:f1:5a:3e:e9:3f:c4:79:a1:f5:ed:ad:
5b:08:5b:46:9a:a2:e8:12:37:ed:20:8a:e1:55:77:c2:cb:6a:
38:aa:d7:d6:c1:20:7c:d3:d6:35:f2:d2:11:d2:fe:92:a0:2b:
69:1f:de:20:b4:13:53:ba:ce:b3:35:ed:cb:36:90:c6:d8:35:
9e:bd:b9:c2:e0:19:55:5b:35:90:d8:4a:c4:bc:7c:80:97:e3:
0c:c3:0c:f4:a0:f7:f0:29:b8:dc:63:8c:f5:5e:46:79:4e:0b:
50:4d:9b:04:80:e3:42:b4:15:cf:ac:da:fc:28:83:3b:2d:87:
99:c4:8a:2e:00:a4:25:16:22:45:96:b0:2b:99:cc:38:07:a2:
07:a4:52:55:16:a9:d1:84:d3:06:e1:3e:43:d0:6b:0a:ee:9c:
80:25:ad:4f:41:f8:a1:bc:82:16:7f:f0:d4:74:c6:02:b1:e6:
2c:d5:28:26:0d:c7:87:08:db:f5:bd:24:54:d7:12:be:71:c1:
a7:51:75:76:e6:47:5d:6e:99:a1:d1:8b:f3:5f:b2:8f:9c:44:
05:65:29:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:01:40 2025 by rpki-client