Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/49bbd2-fe36-45d7-8def-81fa874ee2ed/1/UjVNgA8xCNllZ6QYSRLW4LiudE8.roa
File: UjVNgA8xCNllZ6QYSRLW4LiudE8.roa (raw, json)
Hash identifier: DjKEGH8kYerRac6CkUZCsIpxhaiRBxiSrozG6+hdYZU=
Subject key identifier: 52:35:4D:80:0F:31:08:D9:65:67:A4:18:49:12:D6:E0:B8:AE:74:4F
Certificate issuer: /CN=e1257eaabbf604d4570055c2cd8ac249bb29c106
Certificate serial: 018FCC9944EF5E640B8421876CBD468B78E7
Authority key identifier: E1:25:7E:AA:BB:F6:04:D4:57:00:55:C2:CD:8A:C2:49:BB:29:C1:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4SV-qrv2BNRXAFXCzYrCSbspwQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/49bbd2-fe36-45d7-8def-81fa874ee2ed/1/UjVNgA8xCNllZ6QYSRLW4LiudE8.roa
Signing time: Fri 31 May 2024 03:02:27 +0000
ROA not before: Fri 31 May 2024 03:02:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197730
IP address blocks: 2a14:4c41::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 09 Jun 2024 06:19:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:cc:99:44:ef:5e:64:0b:84:21:87:6c:bd:46:8b:78:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1257eaabbf604d4570055c2cd8ac249bb29c106
Validity
Not Before: May 31 03:02:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52354d800f3108d96567a4184912d6e0b8ae744f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:02:51:ed:5b:3d:64:d8:10:35:79:6d:57:1f:
ee:2b:9e:62:4a:d3:53:d4:94:57:7a:1f:b6:7e:76:
6a:73:46:bd:54:ea:c6:ee:6c:a7:61:dd:44:cc:17:
60:8f:90:10:9d:ea:a3:4f:20:e1:06:36:a2:f6:7c:
6e:e8:a1:e5:f0:ee:5c:e2:b9:69:d1:98:d5:f3:50:
95:ad:f6:b1:53:74:26:de:22:a7:e6:76:17:90:ad:
89:bf:1f:57:b9:a4:86:dd:6a:d5:4b:f3:23:fd:36:
80:ed:82:96:f3:e5:fd:fd:ac:36:dd:56:f1:13:9c:
54:f9:c5:55:5c:f1:fc:cc:79:25:b3:1e:3c:1c:9e:
22:eb:0d:c5:21:e8:8f:b5:8b:0d:63:4c:ee:8c:79:
1b:6f:f1:39:4b:b2:d3:78:e6:b5:e8:6f:ea:97:b8:
8c:02:40:49:5b:6a:3a:81:8d:70:53:d1:c9:57:75:
4f:7d:34:50:e3:9e:df:e4:69:b4:6c:cb:02:45:1d:
b4:e1:3a:64:f4:2b:6a:ff:86:b5:80:4f:9c:4f:ab:
bb:6d:a6:aa:90:ce:79:a2:17:22:1f:5d:bb:71:68:
0a:60:34:b8:8c:46:73:8b:f6:6c:0e:35:09:fe:8d:
05:43:88:13:3b:61:a2:f2:31:e1:09:f2:fb:89:10:
1b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:35:4D:80:0F:31:08:D9:65:67:A4:18:49:12:D6:E0:B8:AE:74:4F
X509v3 Authority Key Identifier:
keyid:E1:25:7E:AA:BB:F6:04:D4:57:00:55:C2:CD:8A:C2:49:BB:29:C1:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4SV-qrv2BNRXAFXCzYrCSbspwQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/49bbd2-fe36-45d7-8def-81fa874ee2ed/1/UjVNgA8xCNllZ6QYSRLW4LiudE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/49bbd2-fe36-45d7-8def-81fa874ee2ed/1/4SV-qrv2BNRXAFXCzYrCSbspwQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:4c41::/32
Signature Algorithm: sha256WithRSAEncryption
27:15:ab:2d:b5:fb:59:30:b1:71:7b:34:f1:c1:cc:91:6b:3e:
0c:ef:30:60:d0:49:7a:32:6f:0f:11:55:42:29:96:49:2a:bb:
28:0b:5a:e7:e2:9b:8c:9d:5f:08:63:db:44:2d:5d:69:3b:c5:
52:c3:b0:5a:ab:7c:3f:3d:8b:96:97:38:0d:c0:f1:74:15:c1:
20:0f:9e:5e:6b:2d:65:9e:36:26:56:10:6d:a3:2c:b1:8e:32:
6c:9e:07:4c:72:47:b8:94:09:0b:5f:1b:4a:00:5b:11:25:d1:
6b:c6:2c:a5:16:fa:cb:17:39:50:18:3b:f4:0c:95:58:cb:43:
3b:81:b1:a9:62:0f:b2:ff:ab:e8:4d:00:a4:b1:06:b7:d5:7a:
e9:40:ba:f6:01:11:b1:e0:88:14:58:7a:ec:cb:82:02:8c:79:
7a:73:75:ef:bf:61:15:6b:01:de:d1:f2:92:72:b9:21:b2:65:
f0:46:0d:51:2e:c0:93:e6:67:f2:27:39:3c:95:bc:c2:f5:76:
01:1e:c7:a8:18:e3:f0:d4:5c:a6:b7:b2:22:96:ba:d1:51:13:
ba:87:8e:98:a4:c2:08:4e:4e:80:71:f7:11:e2:96:cc:fc:0e:
23:70:39:36:e0:b0:ed:b4:9c:cb:b8:e4:c3:22:dd:e2:cb:d5:
b4:f2:10:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:07:39 2025 by rpki-client