Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/RpbQVuuO9CMlaCJLp3LVXr6MQh8.roa
File: RpbQVuuO9CMlaCJLp3LVXr6MQh8.roa (raw, json)
Hash identifier: emiOYUJ7EL9MIN3c7s12ptXrlcKQMpCWrxcrjrPMXbQ=
Subject key identifier: 46:96:D0:56:EB:8E:F4:23:25:68:22:4B:A7:72:D5:5E:BE:8C:42:1F
Certificate issuer: /CN=ccc478dd9ccd6162f82488ac6fc50c21d369f2a0
Certificate serial: 019425FDA88EE8F9B976BAEE51E8010E9855
Authority key identifier: CC:C4:78:DD:9C:CD:61:62:F8:24:88:AC:6F:C5:0C:21:D3:69:F2:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zMR43ZzNYWL4JIisb8UMIdNp8qA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/RpbQVuuO9CMlaCJLp3LVXr6MQh8.roa
Signing time: Thu 02 Jan 2025 07:49:28 +0000
ROA not before: Thu 02 Jan 2025 07:49:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202044
IP address blocks: 2a0d:db00::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 06 Mar 2025 14:38:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:a8:8e:e8:f9:b9:76:ba:ee:51:e8:01:0e:98:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccc478dd9ccd6162f82488ac6fc50c21d369f2a0
Validity
Not Before: Jan 2 07:49:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4696d056eb8ef4232568224ba772d55ebe8c421f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:96:36:79:f9:e0:8e:15:5b:0f:bd:d9:03:44:
08:00:d9:1b:7c:21:8a:13:3a:25:63:ee:ca:f0:e9:
b7:c0:aa:24:50:00:99:9d:18:6c:dd:2a:6a:db:15:
67:e7:c1:3c:b8:04:99:a7:7b:25:50:a9:9b:26:cf:
91:5d:6a:14:b5:ee:9b:3a:57:47:11:14:ee:e0:c8:
9b:9f:73:0b:05:61:b1:6e:3e:40:07:bb:6c:fb:29:
c3:46:2b:1b:ba:26:96:37:cb:c9:b4:f3:61:df:de:
03:cd:57:34:e4:cf:bb:51:52:bd:05:bf:d3:dc:69:
a7:c7:fd:c7:38:f5:4f:e4:92:aa:11:82:3d:02:13:
12:5a:7c:c5:fa:b1:68:fb:44:2d:be:8a:f8:ae:1b:
5f:33:94:2e:03:da:b1:cd:9b:33:fb:24:9f:82:47:
3a:1d:c7:1e:a3:56:70:99:c7:82:16:c7:8a:57:95:
4c:0e:76:94:c1:44:7a:20:a8:08:dc:f8:74:2d:51:
a2:7e:98:f8:c4:e2:bc:28:c7:09:05:53:0b:c6:47:
53:f5:80:c8:0d:3a:e9:36:dc:47:b1:82:e3:9f:f3:
d3:48:21:d6:41:9f:97:cb:fa:89:e9:89:59:f9:7b:
d6:d3:5e:fd:2f:05:85:0a:35:31:42:7b:ae:7c:8e:
9f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:96:D0:56:EB:8E:F4:23:25:68:22:4B:A7:72:D5:5E:BE:8C:42:1F
X509v3 Authority Key Identifier:
keyid:CC:C4:78:DD:9C:CD:61:62:F8:24:88:AC:6F:C5:0C:21:D3:69:F2:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zMR43ZzNYWL4JIisb8UMIdNp8qA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/RpbQVuuO9CMlaCJLp3LVXr6MQh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ee3e3f-3a45-43eb-a5de-4285998392d3/1/zMR43ZzNYWL4JIisb8UMIdNp8qA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:db00::/29
Signature Algorithm: sha256WithRSAEncryption
1a:b6:d5:ac:f1:a9:6d:09:6c:53:21:c4:a7:e3:9f:4e:89:d9:
ce:c9:f2:59:53:c9:c6:c6:21:e3:d3:04:d4:a4:78:57:f3:a2:
a5:d0:b9:87:f8:23:68:51:b1:ee:7f:8d:55:7c:72:db:50:5a:
a0:70:dc:aa:51:77:85:64:ed:b3:4e:9d:7f:38:02:d2:34:b5:
7b:44:00:5c:b6:45:f3:ff:c1:86:ae:45:7c:da:9a:4a:af:54:
ab:01:ba:fa:b5:dd:ea:c5:c5:47:65:33:33:e6:7d:2d:c0:3b:
a0:61:5d:e9:56:8b:60:bf:76:03:17:ef:12:5f:35:32:ed:38:
9e:76:62:35:f7:2e:57:25:a6:01:b9:93:e3:5f:dd:fd:dd:31:
1f:66:0b:23:e2:d3:25:f7:df:6d:e1:ef:68:6b:8d:66:4c:ce:
96:31:ee:da:d1:77:f0:28:1d:6b:81:29:38:69:8b:b6:1a:65:
a9:6f:0e:75:c3:d8:a3:8f:61:22:e3:e1:80:dc:e5:f8:56:d3:
98:26:3b:87:18:e1:b2:53:de:03:00:ee:a3:5c:ce:3b:8d:59:
b7:48:5d:a3:dd:e7:af:1d:90:22:65:f7:a8:6c:f2:3a:fc:f2:
18:35:7b:89:94:5a:89:2a:0f:30:05:bd:b2:35:fa:94:78:38:
09:f5:2e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 19:58:58 2025 by rpki-client