Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/r75SUvDECDbiISBv9mIu0ZYN1wo.roa
File: r75SUvDECDbiISBv9mIu0ZYN1wo.roa (raw, json)
Hash identifier: vC42H+rfCKjO80phOC1pZXx3mSXHy7+f3dywAM7OuFU=
Subject key identifier: AF:BE:52:52:F0:C4:08:36:E2:21:20:6F:F6:62:2E:D1:96:0D:D7:0A
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 0192709A965EC48DD1CB0AD0B89696ED7C8B
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/r75SUvDECDbiISBv9mIu0ZYN1wo.roa
Signing time: Wed 09 Oct 2024 09:27:12 +0000
ROA not before: Wed 09 Oct 2024 09:27:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a09:ef01::/32 maxlen: 32
2a0d:afc2::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 11 Oct 2024 20:35:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:70:9a:96:5e:c4:8d:d1:cb:0a:d0:b8:96:96:ed:7c:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Oct 9 09:27:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=afbe5252f0c40836e221206ff6622ed1960dd70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:5b:22:57:95:f3:7c:90:67:2b:82:39:cb:6d:
8c:58:74:17:80:bb:85:11:09:f1:4c:53:cf:94:d0:
27:15:ed:08:1c:a5:48:9a:12:c2:46:a2:f4:b5:af:
f6:ff:a0:88:ef:ec:30:8f:97:42:90:9d:16:6b:f0:
aa:0a:d6:26:13:25:7b:66:93:9c:2f:03:74:34:91:
74:f5:6a:ce:c1:b2:4c:44:ce:50:81:43:ff:92:22:
52:c1:89:e2:02:9e:a8:f1:61:bc:62:69:d4:48:1f:
ce:77:ec:88:d3:e5:d2:10:bd:53:92:a6:d2:00:61:
8a:01:07:51:c7:a9:48:f1:f8:09:6d:ce:dd:f2:fd:
4c:23:0e:30:54:39:8c:4f:3a:31:f4:82:94:3d:6c:
8d:b7:76:a3:d6:85:6b:1b:0b:5e:30:48:0b:20:af:
57:0a:8a:90:36:2b:14:9f:d8:bc:88:4c:e0:92:5d:
bd:42:bd:f6:bd:98:6e:65:eb:70:55:7e:94:77:12:
6c:68:98:2a:86:ec:64:12:eb:74:3a:ef:94:55:92:
17:10:c9:1f:80:24:24:b1:6f:fa:ee:cc:af:8c:63:
b1:47:48:55:52:89:38:5d:41:47:c7:f7:6f:4f:82:
c2:ec:5a:bb:6f:6b:28:8f:5c:4e:6f:87:6a:f0:ef:
69:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:BE:52:52:F0:C4:08:36:E2:21:20:6F:F6:62:2E:D1:96:0D:D7:0A
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/r75SUvDECDbiISBv9mIu0ZYN1wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:ef01::/32
2a0d:afc2::/32
Signature Algorithm: sha256WithRSAEncryption
6f:35:64:4c:24:f5:e9:b5:79:ad:0d:e6:2c:4e:85:3c:6f:b6:
58:cb:6a:f4:89:fe:04:34:4f:19:ac:49:cb:bb:81:89:d7:65:
d4:6c:d2:e2:b0:2c:bf:39:36:7d:ff:20:30:2a:b1:b6:b1:70:
12:97:01:07:a8:e4:12:c3:5d:3b:59:b5:e7:01:b4:84:e3:85:
c7:94:0e:86:69:8f:7a:43:75:14:a3:21:8b:52:24:ed:98:db:
9a:33:f6:15:15:9d:83:b2:6c:0c:7b:78:b6:5f:d8:59:97:9f:
ff:be:23:11:5d:06:52:fe:08:48:d8:42:62:87:01:00:8a:3e:
a2:d4:e7:36:1b:29:81:f2:e3:8d:db:94:c0:d6:fe:2e:13:3b:
fa:dd:d0:dc:9b:87:a4:17:c1:d9:f9:ee:68:b5:5e:72:da:bf:
1a:77:04:0a:83:0d:93:09:ed:7e:67:1f:09:9b:f3:ad:56:37:
1a:f4:d5:61:da:6f:9c:72:bd:b3:32:20:68:67:12:f2:8a:c4:
3f:95:2a:70:8a:bb:47:04:55:0c:9a:42:a1:44:a9:90:53:61:
4e:96:6e:bf:9c:76:51:5b:a8:f5:1a:d1:24:65:ca:53:df:b7:
1a:28:3c:86:b9:7b:3f:5c:7a:23:cb:20:92:89:c1:c9:0b:28:
93:15:52:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 21:51:49 2024 by rpki-client on console-ams.rpki-client.org