Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/i82tJrc4XXuXMbOpTI7GHIp28tg.roa
File: i82tJrc4XXuXMbOpTI7GHIp28tg.roa (raw, json)
Hash identifier: 8Fb1btOcUKgbZKrbKKrqxInbFOSQq1f3YcPZLO56AZc=
Subject key identifier: 8B:CD:AD:26:B7:38:5D:7B:97:31:B3:A9:4C:8E:C6:1C:8A:76:F2:D8
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 0194F65265CBC80FCC9668BF07E2DCCFC416
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/i82tJrc4XXuXMbOpTI7GHIp28tg.roa
Signing time: Tue 11 Feb 2025 18:43:02 +0000
ROA not before: Tue 11 Feb 2025 18:43:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29182
IP address blocks: 2a09:2987::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 24 Feb 2025 11:50:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f6:52:65:cb:c8:0f:cc:96:68:bf:07:e2:dc:cf:c4:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Feb 11 18:43:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8bcdad26b7385d7b9731b3a94c8ec61c8a76f2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:36:f5:b0:89:25:d8:cb:46:d6:45:0b:2c:89:
17:ae:bc:d7:cd:a7:66:40:4c:52:59:6c:55:ad:5e:
ac:73:58:d5:06:dc:3c:1d:13:15:a2:a3:82:ea:8a:
27:28:50:d7:c0:6a:d9:91:69:48:55:62:1b:76:ab:
00:66:d2:ba:12:dd:e9:9a:03:ea:fe:3a:25:14:0a:
d3:e7:44:d7:cc:d5:22:cc:42:2e:e0:28:62:01:e9:
b3:b5:22:17:9f:8b:56:0e:a9:42:92:76:f1:2a:c6:
15:94:cc:1a:af:b7:ef:35:8e:65:90:61:b6:26:1b:
f4:69:5c:a0:67:d1:f6:28:2a:9c:3a:97:77:a1:6e:
6d:aa:51:69:8f:45:a9:e9:d3:35:86:40:3c:28:f9:
5e:1b:6c:87:fe:03:d0:b8:c4:c8:db:89:af:d5:f3:
f9:10:b9:52:04:2d:42:e0:c5:ae:f7:53:6f:13:d7:
93:f3:16:3d:d2:43:2d:8d:c1:4d:97:b9:1a:ff:62:
40:55:59:92:24:1e:4a:4d:a0:51:bb:3f:7f:e5:5c:
d3:0f:3b:7f:be:55:b3:d1:5a:c8:36:5e:d4:2e:05:
36:46:90:ac:08:95:23:a5:85:55:7f:d5:05:17:8e:
0b:58:e4:43:d5:27:6d:d5:20:a3:7c:8e:db:ea:0c:
0d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:CD:AD:26:B7:38:5D:7B:97:31:B3:A9:4C:8E:C6:1C:8A:76:F2:D8
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/i82tJrc4XXuXMbOpTI7GHIp28tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2987::/32
Signature Algorithm: sha256WithRSAEncryption
b5:21:3d:60:81:0c:ac:71:d7:4e:c7:ef:6b:21:5c:d9:6b:c7:
93:e1:76:19:17:80:64:dc:9c:c3:e1:e8:38:29:ae:c1:ed:87:
97:4a:fa:d8:f9:0d:b9:b7:cf:7a:79:7f:47:2c:f5:fb:8c:6a:
99:8b:c9:82:37:1d:e4:2f:41:2c:e2:e1:43:05:f3:d2:22:88:
14:c4:59:d4:96:8c:00:ce:0e:83:66:0a:ec:1c:8c:8a:9b:5b:
81:7f:53:86:d0:82:7e:9f:7c:1e:ca:f5:f8:18:13:c2:b2:01:
08:a2:f0:3b:c1:bd:35:42:fa:17:70:59:fc:46:10:2c:c6:31:
1d:70:8d:3e:af:0e:f3:ef:2e:7a:dd:eb:95:81:2a:20:24:ac:
56:29:5a:95:53:57:75:0a:46:ec:28:83:e6:26:07:5d:61:51:
40:87:ee:b0:da:39:5c:89:27:57:ec:6b:0f:fa:21:0d:de:56:
31:38:30:0a:fa:96:0d:98:31:56:c5:ec:ab:ed:80:a8:89:8c:
3d:a9:20:71:68:3f:3f:76:6c:d7:e4:6e:33:c3:aa:e7:1c:6f:
13:41:6b:69:6b:bd:bc:c2:e5:18:62:63:09:34:ad:13:3e:3f:
51:d1:62:c0:3d:87:73:e5:fc:32:76:8d:04:64:44:37:e6:24:
a8:61:ab:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:31:05 2025 by rpki-client