Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/6cc297-105b-425c-b983-956330170670/1/hwU8rRDgWdwDS5YN_9MQCXISUH4.roa
File: hwU8rRDgWdwDS5YN_9MQCXISUH4.roa (raw, json)
Hash identifier: 7UfUEEUuUKdSr558wZ3Mb0Eq57FztVPHAFBekUngcWw=
Subject key identifier: 87:05:3C:AD:10:E0:59:DC:03:4B:96:0D:FF:D3:10:09:72:12:50:7E
Certificate issuer: /CN=75579b3dd8b092be90da9f7480ea761e9cd26486
Certificate serial: 018CC8023472627A2214D6E8294CD7B00147
Authority key identifier: 75:57:9B:3D:D8:B0:92:BE:90:DA:9F:74:80:EA:76:1E:9C:D2:64:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dVebPdiwkr6Q2p90gOp2HpzSZIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/6cc297-105b-425c-b983-956330170670/1/hwU8rRDgWdwDS5YN_9MQCXISUH4.roa
Signing time: Tue 02 Jan 2024 02:30:36 +0000
ROA not before: Tue 02 Jan 2024 02:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208713
IP address blocks: 2001:678:a84::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:34:72:62:7a:22:14:d6:e8:29:4c:d7:b0:01:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75579b3dd8b092be90da9f7480ea761e9cd26486
Validity
Not Before: Jan 2 02:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87053cad10e059dc034b960dffd310097212507e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:39:4e:af:47:4f:c0:b5:fa:49:eb:03:25:fd:
05:99:bf:0b:1a:f5:8c:0f:52:16:54:71:f9:00:4c:
d6:78:1f:60:c3:67:20:6c:bd:26:76:54:71:34:7c:
b2:a6:a7:02:8f:56:fd:23:7f:a9:a5:81:96:e0:63:
da:9e:40:fb:74:b5:33:ba:f4:c8:ac:4d:5a:90:03:
59:90:f2:7c:f2:cf:55:60:16:e9:c9:ba:55:04:8f:
bc:60:7f:62:82:5d:45:75:84:3b:2d:8d:2c:69:a2:
2e:d3:f0:c9:55:d7:95:a8:91:a3:de:62:fb:7b:63:
dd:5e:0c:fe:3b:ce:11:c9:bf:b9:f4:f6:ec:b9:c9:
38:62:96:e1:f4:a3:60:e0:e8:31:42:e3:a1:20:dc:
6a:54:72:7c:1b:74:92:ba:d6:96:1a:65:f7:82:2c:
9a:3f:f2:22:98:1b:09:97:87:93:1a:e9:89:a4:ac:
55:01:ba:d6:52:ff:a9:7c:d3:fc:a4:ae:bb:4d:fe:
ce:53:d8:03:12:0a:8f:16:a5:e8:fe:cd:3a:4d:b7:
d0:dc:a8:42:58:c9:e6:e4:cd:d1:a5:ff:06:5f:33:
10:b1:13:0b:90:eb:fe:8e:04:8a:b1:72:15:88:65:
ab:89:c8:13:91:fd:b1:27:ef:aa:1f:06:df:4b:74:
48:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:05:3C:AD:10:E0:59:DC:03:4B:96:0D:FF:D3:10:09:72:12:50:7E
X509v3 Authority Key Identifier:
keyid:75:57:9B:3D:D8:B0:92:BE:90:DA:9F:74:80:EA:76:1E:9C:D2:64:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dVebPdiwkr6Q2p90gOp2HpzSZIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6cc297-105b-425c-b983-956330170670/1/hwU8rRDgWdwDS5YN_9MQCXISUH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6cc297-105b-425c-b983-956330170670/1/dVebPdiwkr6Q2p90gOp2HpzSZIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a84::/48
Signature Algorithm: sha256WithRSAEncryption
c1:86:0e:55:32:16:c2:fe:bc:b8:82:6e:b6:58:b3:9d:05:06:
21:3d:c8:3b:ae:bd:1d:a1:18:b7:97:34:93:a1:d3:5e:74:e5:
e0:cf:a0:3a:c7:cc:20:11:3d:ca:7a:9a:d9:7f:a0:42:15:f9:
4a:23:66:57:9f:a1:44:ee:8e:e1:59:e7:42:d6:69:40:16:5c:
61:e2:57:1f:ef:c8:b8:b4:e4:1d:4a:4f:ff:e8:fa:73:d2:b2:
7c:79:f6:56:06:fd:8d:79:35:fe:dd:4b:6f:ff:df:42:cb:f3:
d5:7a:08:5b:8c:cb:aa:5e:c6:b1:78:3c:a6:d9:28:53:34:a2:
39:fb:fb:06:ed:91:82:7d:ad:c9:90:64:69:e3:e2:c3:45:53:
cc:7f:94:27:c9:9b:7d:8d:b8:58:bc:c6:1d:a9:b6:29:8b:22:
5c:ab:1d:9f:0b:42:d6:b6:98:a8:01:78:41:42:a0:0e:b9:70:
dd:04:b9:ca:aa:33:36:35:bb:ef:1c:d1:31:02:24:d7:11:5d:
d5:62:62:65:dd:ed:40:77:01:8e:a1:49:96:08:07:0b:7d:94:
02:dd:6f:39:90:fe:2d:6d:8b:20:c1:00:22:fb:b1:94:05:3c:
a6:ee:49:e7:36:16:84:06:1a:bd:8d:25:1b:f7:cc:53:6c:13:
0d:5c:e2:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:11:01 2025 by rpki-client