Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/AYzZzZzXTA1_44McEGGLXPfifx0.roa
File: AYzZzZzXTA1_44McEGGLXPfifx0.roa (raw, json)
Hash identifier: 2SpshLhO3kIIbjheT8Ccb+hGqb0l8dgBw5FlM08oebo=
Subject key identifier: 01:8C:D9:CD:9C:D7:4C:0D:7F:E3:83:1C:10:61:8B:5C:F7:E2:7F:1D
Certificate issuer: /CN=7365ec12014f911f7205eecbc2fc818b9b35723c
Certificate serial: 019302076D285616A02BAA1CFABE7B49C68C
Authority key identifier: 73:65:EC:12:01:4F:91:1F:72:05:EE:CB:C2:FC:81:8B:9B:35:72:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c2XsEgFPkR9yBe7LwvyBi5s1cjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/AYzZzZzXTA1_44McEGGLXPfifx0.roa
Signing time: Wed 06 Nov 2024 15:11:01 +0000
ROA not before: Wed 06 Nov 2024 15:11:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 2001:3300::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Nov 2024 18:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:02:07:6d:28:56:16:a0:2b:aa:1c:fa:be:7b:49:c6:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7365ec12014f911f7205eecbc2fc818b9b35723c
Validity
Not Before: Nov 6 15:11:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=018cd9cd9cd74c0d7fe3831c10618b5cf7e27f1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3b:09:a0:f4:ad:f4:42:2a:3d:7c:73:66:22:
04:7b:21:0f:c1:ce:41:fd:30:9a:99:f5:68:01:00:
90:28:4b:b8:e8:88:70:1a:9e:c1:ab:3d:81:86:9e:
56:9b:78:22:8b:d5:40:68:db:74:48:7f:10:62:5c:
91:32:02:49:de:a4:8c:f7:3b:23:67:e5:79:b9:a5:
bd:0e:0c:fd:80:79:a9:85:14:b9:cf:3f:52:f4:b6:
b7:bc:40:cb:67:e8:18:b1:57:54:82:7f:31:11:3c:
12:86:fc:04:75:bc:4f:a6:03:2c:f8:61:dd:8b:49:
5f:9c:cd:4b:93:36:46:58:13:59:a2:20:7f:be:43:
ab:19:d7:e2:c2:b6:d4:d0:16:4f:df:80:47:d3:ad:
17:31:f8:c9:61:30:25:88:c9:df:be:15:ca:8d:ea:
6a:3f:49:89:2f:a2:b2:9f:97:f1:e4:45:b5:84:29:
32:e2:c7:d9:c8:df:ad:af:50:b3:fe:30:bd:22:56:
65:2f:b6:24:3e:0c:ae:08:b1:19:47:9a:d9:39:d9:
22:3e:94:05:05:a7:52:1d:73:81:26:b2:83:65:d8:
59:91:f7:ae:1a:49:24:e1:68:30:d6:e4:a7:c0:d9:
d2:c9:56:a1:3c:22:d7:70:60:a5:61:75:db:b2:4d:
89:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:8C:D9:CD:9C:D7:4C:0D:7F:E3:83:1C:10:61:8B:5C:F7:E2:7F:1D
X509v3 Authority Key Identifier:
keyid:73:65:EC:12:01:4F:91:1F:72:05:EE:CB:C2:FC:81:8B:9B:35:72:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2XsEgFPkR9yBe7LwvyBi5s1cjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/AYzZzZzXTA1_44McEGGLXPfifx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/c2XsEgFPkR9yBe7LwvyBi5s1cjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3300::/32
Signature Algorithm: sha256WithRSAEncryption
06:11:39:ea:7e:05:c7:c3:bd:96:a6:f7:58:5a:9a:d4:c2:ec:
63:6f:f7:8f:f3:b8:20:f7:14:01:54:e2:0f:86:3b:db:3d:bd:
46:69:16:d4:8e:ff:a4:2e:73:20:d1:af:bd:f0:29:a3:a8:c8:
9f:c4:3a:c5:6e:82:78:6d:85:45:77:fe:9c:70:51:f7:b8:1f:
b9:90:6f:54:23:98:0c:20:21:a4:fe:b4:8f:fb:f5:fc:42:d0:
57:20:98:c0:b6:26:a5:c2:fb:24:76:73:8a:cb:67:c4:5a:62:
a8:9d:75:56:52:36:4c:62:d3:7d:59:a9:a2:db:70:96:12:25:
b0:64:4a:41:af:a1:78:8d:18:2b:47:31:1a:f4:d2:4f:00:13:
fa:a9:f8:6d:16:29:5a:41:1a:ca:ea:f9:57:13:30:d3:db:d6:
37:7f:d2:7f:2b:3a:56:c2:8c:1e:c3:85:ab:aa:df:f6:27:51:
13:98:78:fe:58:a2:51:d7:88:44:ac:3e:c9:fd:c9:ba:3f:9d:
6f:0d:8d:8e:7a:ad:73:3b:f8:5c:25:88:af:e1:5b:27:a6:5e:
e3:c6:c1:7c:89:3b:e3:3d:8d:91:4d:12:ea:cf:66:17:de:e8:
de:87:62:2e:e8:b2:6b:b1:75:ea:5c:88:81:16:29:3f:dc:2c:
ec:87:cf:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:28:55 2025 by rpki-client