Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/49bbd2-fe36-45d7-8def-81fa874ee2ed/1/0LCFfGG1tH6xZimRFSAtm0z8xE0.roa
File: 0LCFfGG1tH6xZimRFSAtm0z8xE0.roa (raw, json)
Hash identifier: nMmijq5YWlX3vEL2W7JXnjbF6fsMTJis+c0uxCqpRjY=
Subject key identifier: D0:B0:85:7C:61:B5:B4:7E:B1:66:29:91:15:20:2D:9B:4C:FC:C4:4D
Certificate issuer: /CN=e1257eaabbf604d4570055c2cd8ac249bb29c106
Certificate serial: 018FBE2E17B62549ADEC22A2E5D3030F1FFF
Authority key identifier: E1:25:7E:AA:BB:F6:04:D4:57:00:55:C2:CD:8A:C2:49:BB:29:C1:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4SV-qrv2BNRXAFXCzYrCSbspwQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/49bbd2-fe36-45d7-8def-81fa874ee2ed/1/0LCFfGG1tH6xZimRFSAtm0z8xE0.roa
Signing time: Tue 28 May 2024 07:50:42 +0000
ROA not before: Tue 28 May 2024 07:50:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2a14:4c41::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 09 Jun 2024 06:19:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:be:2e:17:b6:25:49:ad:ec:22:a2:e5:d3:03:0f:1f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1257eaabbf604d4570055c2cd8ac249bb29c106
Validity
Not Before: May 28 07:50:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0b0857c61b5b47eb166299115202d9b4cfcc44d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1e:87:fe:5a:8e:96:82:d6:ab:73:f7:00:c7:
21:3c:56:8e:69:dc:8f:b1:03:8a:d2:f0:c3:59:79:
13:e9:7a:87:13:60:c9:0a:d2:7e:43:25:97:34:64:
71:94:31:1e:27:9d:3b:31:a6:36:b4:de:14:b1:03:
7a:d1:8a:e2:66:86:62:48:85:9d:6b:2e:c3:c6:9c:
e1:db:f8:02:09:5e:3e:40:f8:03:30:ca:ad:b5:12:
3e:fe:1a:54:bb:7b:61:13:b6:d8:65:62:0c:5c:6f:
5b:2c:0c:7a:ab:af:41:48:21:32:e0:52:a0:eb:a1:
12:b3:b0:74:a5:a6:9e:f8:67:f9:ba:62:cd:45:35:
da:df:3e:46:6a:ad:df:78:0a:20:37:73:85:6b:33:
66:57:6f:02:a4:08:2d:28:bb:65:10:12:43:10:f3:
c6:ef:eb:5b:a7:ce:61:90:22:e7:d7:13:47:3a:0f:
d6:55:5b:72:89:8b:40:3d:96:7d:92:7b:79:ee:ef:
e4:05:0e:2a:2d:06:1c:c5:b8:48:84:72:70:cb:af:
78:52:ea:76:3d:df:1c:3d:33:0b:6e:0e:af:88:2b:
7f:f9:c8:28:ba:3e:4c:40:11:68:52:ab:3e:d6:65:
9f:7f:0a:aa:be:46:8d:d6:49:d7:8b:57:33:63:87:
b8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:B0:85:7C:61:B5:B4:7E:B1:66:29:91:15:20:2D:9B:4C:FC:C4:4D
X509v3 Authority Key Identifier:
keyid:E1:25:7E:AA:BB:F6:04:D4:57:00:55:C2:CD:8A:C2:49:BB:29:C1:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4SV-qrv2BNRXAFXCzYrCSbspwQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/49bbd2-fe36-45d7-8def-81fa874ee2ed/1/0LCFfGG1tH6xZimRFSAtm0z8xE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/49bbd2-fe36-45d7-8def-81fa874ee2ed/1/4SV-qrv2BNRXAFXCzYrCSbspwQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:4c41::/32
Signature Algorithm: sha256WithRSAEncryption
8f:bd:ab:9a:48:3c:d9:21:ca:33:63:d4:06:8d:f6:8e:ae:99:
c8:f1:e1:a6:f1:09:4e:6e:f8:5c:b0:8b:c7:ae:b3:95:73:1d:
e2:4b:b2:27:76:b8:cc:a7:17:98:d5:23:87:26:26:6a:1f:57:
4b:fd:48:ac:ad:00:c5:84:65:d2:dc:74:00:88:cc:1a:2f:8e:
97:a0:50:7d:a7:6b:08:ae:e6:3d:c6:88:a8:bc:eb:3a:b1:1a:
8a:d1:9f:c3:01:e2:e3:7b:86:01:e3:2a:5c:d6:cf:fc:4f:24:
13:65:6b:d4:ee:63:dd:1a:d0:13:82:c3:0f:6b:36:44:80:5e:
b1:31:89:b7:21:dd:0d:e5:40:18:48:83:99:77:b9:47:e4:94:
ac:b0:ae:d9:55:2e:db:94:71:88:c2:4c:4b:8b:d2:23:84:19:
93:dd:4c:ad:0d:ea:eb:71:58:61:f1:14:b0:2b:a5:50:c4:52:
c5:42:e2:45:1e:e8:45:c8:a7:b0:a1:b6:39:a5:78:3d:c2:74:
79:0b:cc:e7:09:eb:06:4f:a2:9a:13:3f:17:7c:4e:ac:a2:6a:
93:4c:56:eb:43:06:73:34:d0:99:b8:c0:d9:72:ea:ad:a2:49:
1c:3e:23:2e:44:13:8d:52:f4:52:20:cb:34:28:39:f3:34:c3:
7b:27:e4:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:38:17 2025 by rpki-client