Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8d46bf-5444-43aa-8cd4-e7b0ee0f498c/1/BPVxnI9fVRjAuKbfWcRlyIeQBQk.roa
File: BPVxnI9fVRjAuKbfWcRlyIeQBQk.roa (raw, json)
Hash identifier: b50vAXTw1L4a4D4rtS+PKmuHGA7y26SLpbgVNDbMamo=
Subject key identifier: 04:F5:71:9C:8F:5F:55:18:C0:B8:A6:DF:59:C4:65:C8:87:90:05:09
Certificate issuer: /CN=26862926a857491554bee94951bb5fa670207d9e
Certificate serial: 018CC56E51522744792CFE5BD72FFB00146C
Authority key identifier: 26:86:29:26:A8:57:49:15:54:BE:E9:49:51:BB:5F:A6:70:20:7D:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JoYpJqhXSRVUvulJUbtfpnAgfZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8d46bf-5444-43aa-8cd4-e7b0ee0f498c/1/BPVxnI9fVRjAuKbfWcRlyIeQBQk.roa
Signing time: Mon 01 Jan 2024 14:29:50 +0000
ROA not before: Mon 01 Jan 2024 14:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205255
IP address blocks: 2a0c:ec00::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:51:52:27:44:79:2c:fe:5b:d7:2f:fb:00:14:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26862926a857491554bee94951bb5fa670207d9e
Validity
Not Before: Jan 1 14:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04f5719c8f5f5518c0b8a6df59c465c887900509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cc:d2:cc:ec:ce:1a:7f:da:52:c2:7a:e1:04:
1a:0d:82:30:ed:45:ff:13:95:88:23:09:e9:f9:8f:
fa:92:70:5d:92:c9:2e:73:39:84:2d:ff:24:39:a8:
10:af:61:57:a6:d8:4b:52:42:1d:1d:db:f9:be:e1:
e0:7b:b4:77:1d:64:33:ab:84:e0:2f:53:44:08:72:
70:2e:91:b9:53:58:df:fb:b3:f9:b9:36:ad:a7:e4:
06:51:16:e8:56:65:86:29:ff:1a:8f:f7:cc:f3:c8:
1f:67:f3:a3:ea:5e:29:84:1e:1d:79:97:0c:54:7d:
04:1c:3a:1b:36:05:1b:11:70:50:79:e5:1f:46:ee:
39:c9:df:7a:d0:18:3f:46:71:2b:22:68:99:eb:56:
2d:fb:86:6b:46:cf:8a:02:1e:8c:20:f8:1a:4d:10:
7e:7c:94:69:0f:93:3b:0c:85:b3:fe:00:8b:af:7c:
8b:d7:8a:e6:20:0f:ef:e6:dd:35:67:58:bd:f7:4e:
e2:4e:64:04:31:d1:db:05:6e:79:1c:43:dc:f3:c4:
f9:4e:a0:21:a7:ee:52:87:86:d5:6d:03:39:32:65:
03:2a:8f:84:6e:5c:88:4c:4e:df:fc:bb:30:43:53:
01:b8:a3:1c:34:35:90:50:b9:bc:a2:2e:7c:3b:82:
60:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F5:71:9C:8F:5F:55:18:C0:B8:A6:DF:59:C4:65:C8:87:90:05:09
X509v3 Authority Key Identifier:
keyid:26:86:29:26:A8:57:49:15:54:BE:E9:49:51:BB:5F:A6:70:20:7D:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JoYpJqhXSRVUvulJUbtfpnAgfZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8d46bf-5444-43aa-8cd4-e7b0ee0f498c/1/BPVxnI9fVRjAuKbfWcRlyIeQBQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8d46bf-5444-43aa-8cd4-e7b0ee0f498c/1/JoYpJqhXSRVUvulJUbtfpnAgfZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:ec00::/29
Signature Algorithm: sha256WithRSAEncryption
ac:7c:a6:fb:dd:70:32:a1:51:cb:8d:04:d6:95:16:9d:df:4a:
8d:6f:e3:8f:56:fd:c5:ed:cc:8d:36:72:86:f3:a2:24:d2:93:
8f:29:66:a7:db:a9:ea:da:3f:b5:3f:05:d9:25:0c:e4:b1:5c:
7f:9a:b1:3b:21:51:ce:04:de:dd:a3:5e:06:7e:51:b3:09:d5:
c9:12:07:fc:c0:00:98:a0:fd:fa:d1:1d:54:c8:a4:13:61:bf:
89:69:36:d7:f5:53:10:2d:fb:48:3d:89:2e:07:58:f7:bf:97:
e8:f9:da:b0:30:a8:01:83:ac:30:08:44:1a:df:92:68:c6:be:
58:b4:e1:e7:1e:15:50:75:0b:69:66:bc:5f:a6:91:c0:6c:a5:
25:c1:5e:82:51:7b:ac:34:4e:cc:b0:0a:9f:c5:a9:42:53:42:
7c:67:f8:a7:be:26:74:53:2e:61:2b:66:65:b9:14:39:67:8b:
48:40:fc:1e:da:a2:a0:8a:01:7c:5d:17:ed:db:18:97:2e:15:
02:93:d7:98:ff:77:e2:3f:28:e6:24:e9:f3:d2:d3:f1:7c:56:
33:2e:c1:51:63:cc:01:e5:6f:bd:2d:14:63:3e:47:28:d5:67:
d6:22:e2:7d:96:c1:4e:76:7e:e6:e9:cb:e8:57:fa:50:b5:88:
1b:57:1e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:27 2025 by rpki-client