Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/xKcpIEpkGMcko48LG0qR5ax2k_Y.roa
File: xKcpIEpkGMcko48LG0qR5ax2k_Y.roa (raw, json)
Hash identifier: VGLIM93CuDJJXckcVaX59B9dJPvG7Mf8EIEQ8hnrr6E=
Subject key identifier: C4:A7:29:20:4A:64:18:C7:24:A3:8F:0B:1B:4A:91:E5:AC:76:93:F6
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0193F4D9595A0BD837E797E81D0C066544E2
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/xKcpIEpkGMcko48LG0qR5ax2k_Y.roa
Signing time: Mon 23 Dec 2024 18:48:25 +0000
ROA not before: Mon 23 Dec 2024 18:48:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29574
IP address blocks: 2a01:5c40:7::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f4:d9:59:5a:0b:d8:37:e7:97:e8:1d:0c:06:65:44:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Dec 23 18:48:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4a729204a6418c724a38f0b1b4a91e5ac7693f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9a:6a:03:2e:66:47:15:d2:0d:c1:18:72:7d:
cd:a5:0e:3f:46:ea:88:51:c7:08:14:84:41:9b:7c:
75:c6:02:3a:78:2a:e4:9d:eb:cb:70:43:52:f1:e8:
94:11:d5:96:0a:3a:ba:3e:52:a9:5b:94:7f:b7:0a:
84:8b:0d:eb:65:8c:76:22:35:8e:32:52:83:96:60:
52:14:e5:47:3d:80:98:cf:51:a6:b9:b1:ad:a5:2a:
5f:82:50:7c:f4:f2:0e:9a:c2:64:0b:b1:ad:cb:61:
4c:d2:19:f8:02:d0:90:1a:f7:be:2e:0e:65:52:f2:
3d:21:4f:8b:0a:7e:5a:a2:a0:ae:c9:72:cb:a3:b0:
20:c4:25:3f:98:c1:c3:fc:be:31:93:3d:cb:7f:ee:
d8:73:2e:d3:d2:98:22:cd:2f:1a:34:47:f8:43:01:
ae:f6:17:00:bc:ca:1f:01:5b:d5:78:4f:99:53:17:
b0:1d:ab:e5:38:a1:e0:7d:2c:8d:2c:43:45:38:74:
69:0c:fa:32:19:b2:c4:6d:4c:3c:9f:66:d8:a6:80:
2d:3b:61:4c:c2:db:99:b6:8a:d1:75:5b:ac:86:3c:
6a:0b:af:bf:bb:b7:af:10:5a:80:02:da:60:46:51:
4a:25:84:68:cc:00:20:2d:13:d1:68:44:97:de:14:
d7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:A7:29:20:4A:64:18:C7:24:A3:8F:0B:1B:4A:91:E5:AC:76:93:F6
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/xKcpIEpkGMcko48LG0qR5ax2k_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:5c40:7::/48
Signature Algorithm: sha256WithRSAEncryption
39:77:2c:7f:d7:cd:ac:78:f6:a6:51:a5:4d:2c:97:28:16:5e:
07:6f:2b:93:34:aa:e3:1b:f5:bd:13:86:d6:0e:0f:88:62:ff:
ad:1d:7b:a3:57:57:02:29:80:52:d3:0d:85:d6:03:13:f1:28:
88:29:ce:71:64:63:d1:02:cb:71:e6:7b:f4:9d:67:4b:68:cc:
5c:0f:d4:6d:d8:48:39:65:82:27:61:93:cc:87:3c:3d:a9:ed:
61:f7:80:b3:c3:65:af:13:48:41:5b:4b:7b:68:47:01:dd:27:
b0:69:25:4e:70:d8:a8:8c:03:24:d3:2b:98:0d:f3:f5:3d:40:
ca:70:f9:02:3b:13:e2:87:82:07:1e:a0:af:9b:d1:67:41:f2:
a6:b4:44:ec:db:9c:e8:9d:e9:9c:b4:e7:e9:1b:6c:cb:4b:24:
ec:b0:39:c4:4f:f8:d6:14:61:f4:e4:54:e5:23:2a:22:82:87:
77:75:56:9a:fb:24:97:74:03:6d:c7:5f:c5:d5:f0:48:22:49:
1c:c2:61:b6:a6:8c:a1:5a:61:69:94:f9:e5:08:5d:48:26:4b:
04:4d:31:72:3c:60:00:5b:26:af:7e:a7:87:0f:81:51:7a:21:
3d:7a:94:68:19:37:3a:26:34:a5:6d:b8:45:4e:8a:c4:c5:1c:
28:01:1e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:23:24 2025 by rpki-client