Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/HnTtQbyltAHQItwSyD_MlSsYY3Y.roa
File: HnTtQbyltAHQItwSyD_MlSsYY3Y.roa (raw, json)
Hash identifier: zWG9vddUWYXAf6DSe3jwrOuBrlX9iuMIkeBSfM8NB6c=
Subject key identifier: 1E:74:ED:41:BC:A5:B4:01:D0:22:DC:12:C8:3F:CC:95:2B:18:63:76
Certificate issuer: /CN=c236e8c216f05a9d9e0327f1222bf12198aba5da
Certificate serial: 019421B244660F0628E0781A410FD5D54B2D
Authority key identifier: C2:36:E8:C2:16:F0:5A:9D:9E:03:27:F1:22:2B:F1:21:98:AB:A5:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjbowhbwWp2eAyfxIivxIZirpdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/HnTtQbyltAHQItwSyD_MlSsYY3Y.roa
Signing time: Wed 01 Jan 2025 11:48:38 +0000
ROA not before: Wed 01 Jan 2025 11:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59449
IP address blocks: 2a07:2486:ef1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:19:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:44:66:0f:06:28:e0:78:1a:41:0f:d5:d5:4b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c236e8c216f05a9d9e0327f1222bf12198aba5da
Validity
Not Before: Jan 1 11:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e74ed41bca5b401d022dc12c83fcc952b186376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d7:0c:08:29:20:29:2a:ba:3f:5b:4c:48:99:
c4:86:33:af:9c:fd:44:dd:be:22:96:5f:ce:87:4f:
51:7f:d8:bf:4d:2e:ca:9a:d2:3a:b4:63:6e:19:dd:
54:41:7c:33:68:a9:4c:0a:73:5e:bc:8e:f6:b2:e3:
3a:34:6d:cd:48:aa:db:6d:60:5a:e1:a8:6e:d5:e7:
8d:52:66:fb:57:b8:45:78:d7:25:25:3f:39:da:c6:
62:2d:48:20:79:4e:9a:d8:be:50:a5:9f:a9:a4:05:
17:9c:42:92:06:ff:9c:d7:e9:63:fd:e1:ce:21:64:
d4:de:77:7e:d5:79:4f:20:38:07:e2:87:5e:0b:83:
3c:2a:ee:28:2f:9e:23:8f:f4:15:79:63:13:16:d1:
75:12:07:33:d3:1d:03:7d:0f:40:91:51:ea:89:2e:
a0:e3:1d:f4:34:27:f6:f3:1e:df:3f:d3:c6:5d:07:
7d:25:41:19:56:41:c5:05:41:f1:08:0e:b6:eb:48:
d1:bd:4c:0d:02:95:9f:87:d3:52:3f:92:e1:41:e4:
94:0e:e4:e6:13:7d:f4:3b:73:9a:a6:5b:f5:60:30:
78:65:b9:4f:5c:d6:01:18:13:b2:eb:08:bb:84:1a:
9b:d6:de:16:f5:22:71:3a:ec:44:58:d3:c7:86:18:
a3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:74:ED:41:BC:A5:B4:01:D0:22:DC:12:C8:3F:CC:95:2B:18:63:76
X509v3 Authority Key Identifier:
keyid:C2:36:E8:C2:16:F0:5A:9D:9E:03:27:F1:22:2B:F1:21:98:AB:A5:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjbowhbwWp2eAyfxIivxIZirpdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/HnTtQbyltAHQItwSyD_MlSsYY3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/wjbowhbwWp2eAyfxIivxIZirpdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:2486:ef1::/48
Signature Algorithm: sha256WithRSAEncryption
23:f4:0f:1e:6e:e4:33:6d:df:7c:1c:64:12:b1:8c:d4:72:81:
d2:47:66:b0:1f:72:2a:c7:92:f2:d3:fa:d8:8d:29:d4:a6:5a:
93:ad:42:59:48:1a:6b:0a:54:de:94:0a:61:07:7f:3d:2b:d5:
f8:c8:67:6b:a7:2c:b5:4b:e1:d7:41:0c:f1:41:46:20:13:bf:
07:73:b9:9d:1f:f2:8a:42:1b:7b:71:50:97:82:10:6a:3d:e7:
7c:7b:52:14:36:e6:e3:4b:80:dd:9f:08:c2:99:f9:83:9a:82:
6c:c3:37:b9:48:a3:e6:e8:61:8e:de:2c:20:c1:e0:f5:3a:22:
03:b8:47:1a:e7:b1:71:a8:67:8c:e0:64:99:88:e8:63:eb:0a:
5e:e8:03:f4:44:a7:c6:d3:3b:5c:ab:5e:6f:d2:b0:78:c8:68:
0c:2b:ed:07:0f:fe:5c:57:d9:9f:ce:45:37:44:0a:19:cf:cc:
3a:ca:4b:c4:81:26:6e:12:3c:57:7f:9f:5d:e5:27:e2:63:07:
01:63:19:a5:cf:7b:82:86:e0:42:4a:e2:cb:4a:4a:cb:bd:23:
0c:0a:ef:3a:d4:88:f9:97:67:8d:75:e3:6d:2f:d5:59:18:52:
a4:11:ce:bf:04:4f:01:49:24:fe:be:a3:e2:77:2d:f4:fb:d6:
8b:5b:4d:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:22:55 2025 by rpki-client