Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/4zIzhHysNz5mMKpUWjOrRS4L9cs.roa
File: 4zIzhHysNz5mMKpUWjOrRS4L9cs.roa (raw, json)
Hash identifier: ATQCxYGnGIlK+vF/BnMaI3UjF73F4erLTGB/dPxml9M=
Subject key identifier: E3:32:33:84:7C:AC:37:3E:66:30:AA:54:5A:33:AB:45:2E:0B:F5:CB
Certificate issuer: /CN=2e1164a9b5013d62f051344f6df91f13bc7ecb0f
Certificate serial: 0193FDB15B9568F6ADA09BB254130E362C1B
Authority key identifier: 2E:11:64:A9:B5:01:3D:62:F0:51:34:4F:6D:F9:1F:13:BC:7E:CB:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LhFkqbUBPWLwUTRPbfkfE7x-yw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/4zIzhHysNz5mMKpUWjOrRS4L9cs.roa
Signing time: Wed 25 Dec 2024 12:01:19 +0000
ROA not before: Wed 25 Dec 2024 12:01:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201814
IP address blocks: 2a0c:c183::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:48:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:fd:b1:5b:95:68:f6:ad:a0:9b:b2:54:13:0e:36:2c:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e1164a9b5013d62f051344f6df91f13bc7ecb0f
Validity
Not Before: Dec 25 12:01:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e33233847cac373e6630aa545a33ab452e0bf5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:35:2b:ab:00:99:52:30:3f:ed:e0:3c:4a:4a:
4b:58:49:e0:c4:19:b9:e1:89:de:56:3e:61:84:a4:
90:98:05:52:08:a1:f1:08:89:a4:c5:dc:65:ca:72:
93:a2:4f:38:3e:40:22:97:2d:15:e9:95:ae:49:8f:
7f:bc:49:56:65:9a:8a:88:e7:9b:9d:91:b8:9f:f0:
37:ea:e1:7d:e8:b4:8e:7f:9d:ab:5c:1b:72:cc:c1:
1e:9c:85:92:f5:cf:34:00:3e:47:b1:bc:8d:67:09:
67:7f:e0:8f:f3:84:83:0f:ff:29:e3:a2:45:da:79:
5f:2e:f8:e5:1a:2e:37:97:e6:15:43:84:7e:b4:55:
e6:3c:a9:d3:da:38:b7:94:f8:1a:ce:0e:a1:74:1f:
67:b6:c7:b2:77:9a:c2:89:9b:32:ac:49:9e:80:4d:
b3:c5:cf:86:e1:6c:e8:c9:04:70:16:b1:76:38:e4:
a2:66:f1:d0:96:c7:66:35:95:1c:08:c2:43:83:e1:
95:c7:96:d7:9b:ff:1e:f6:d5:ce:b8:e3:8a:4c:1b:
30:fa:24:74:63:29:de:db:d7:37:a4:d8:ad:39:ce:
50:46:2b:c2:54:35:20:03:d4:09:fc:ff:16:a7:bc:
a2:f0:7b:3a:f0:ab:0b:8f:6b:31:04:30:ba:ef:fd:
22:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:32:33:84:7C:AC:37:3E:66:30:AA:54:5A:33:AB:45:2E:0B:F5:CB
X509v3 Authority Key Identifier:
keyid:2E:11:64:A9:B5:01:3D:62:F0:51:34:4F:6D:F9:1F:13:BC:7E:CB:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LhFkqbUBPWLwUTRPbfkfE7x-yw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/4zIzhHysNz5mMKpUWjOrRS4L9cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/fb4696-678f-4d45-a091-fd7f17bb1a5c/1/LhFkqbUBPWLwUTRPbfkfE7x-yw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:c183::/32
Signature Algorithm: sha256WithRSAEncryption
66:3e:1f:37:8f:6f:9e:12:ed:47:e8:78:03:fe:c1:31:b4:cd:
e8:26:95:c4:e2:ac:75:27:f3:1d:9a:72:6b:69:2c:fe:7a:46:
ab:d7:55:ed:a2:87:0a:f0:94:9a:5d:04:17:c7:32:a9:ac:2e:
cc:06:5f:c7:55:ce:9b:9f:f6:c9:15:79:19:9f:f8:8d:cf:b6:
28:2c:00:3d:4d:3b:dd:08:c3:62:03:72:89:4d:d5:ce:6c:2d:
ee:1f:59:aa:0f:53:e8:f6:ea:79:ad:72:15:15:07:a0:b0:de:
4e:d4:ca:13:1c:eb:8c:2d:e2:97:4d:36:7b:27:8a:99:55:fb:
4a:b5:7f:f2:5d:7b:c3:89:d9:cb:99:23:87:ec:b8:d6:42:75:
72:e0:c5:0f:b7:05:9d:f6:cc:be:ee:1a:78:b0:16:1f:cc:d3:
ef:ea:7e:c4:8c:f8:4e:24:3c:2d:8a:85:13:b8:ad:9f:9d:d9:
42:71:d5:78:ac:e8:d5:a8:9f:a2:04:7b:d2:97:09:24:ac:2b:
b7:4c:bb:d0:9d:3d:2b:20:e2:a4:d1:60:37:bd:70:15:68:92:
75:ed:a1:db:a1:bc:89:f5:0a:23:f8:b5:f6:d0:cd:e7:87:0e:
5b:bb:a3:a0:c9:e2:3f:63:71:60:e2:03:ee:81:5c:a7:88:43:
4b:60:f1:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:13:36 2025 by rpki-client