Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/2vUxuIMJhQXwtYF3KvatYLHYHR4.roa
File: 2vUxuIMJhQXwtYF3KvatYLHYHR4.roa (raw, json)
Hash identifier: 7m7ZGMO89OoievqFMTNKCI450e/DXHfX4fydxjFN6Aw=
Subject key identifier: DA:F5:31:B8:83:09:85:05:F0:B5:81:77:2A:F6:AD:60:B1:D8:1D:1E
Certificate issuer: /CN=1b68656126198373d07886bf4ab8fb06b9006780
Certificate serial: 018CC3B6CD83D9EE198C0AEDEE39F0B2369A
Authority key identifier: 1B:68:65:61:26:19:83:73:D0:78:86:BF:4A:B8:FB:06:B9:00:67:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/2vUxuIMJhQXwtYF3KvatYLHYHR4.roa
Signing time: Mon 01 Jan 2024 06:29:46 +0000
ROA not before: Mon 01 Jan 2024 06:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59566
IP address blocks: 2a0e:1bc1:2000::/35 maxlen: 35
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:cd:83:d9:ee:19:8c:0a:ed:ee:39:f0:b2:36:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b68656126198373d07886bf4ab8fb06b9006780
Validity
Not Before: Jan 1 06:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=daf531b883098505f0b581772af6ad60b1d81d1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:01:f6:d5:b8:33:63:3c:a8:66:69:a2:3d:00:
cd:53:3c:50:fc:69:98:ae:ff:e9:e2:e5:37:73:b2:
77:42:40:a2:fd:04:7a:ae:cf:71:ec:63:38:92:48:
6d:ae:e0:29:d2:ed:4d:19:b0:4e:8c:3f:bf:f7:11:
91:1b:ed:37:1c:f4:17:fe:0f:ca:6d:cf:7f:4e:a8:
77:12:13:04:5c:56:cb:9c:63:b5:91:83:56:c3:7c:
8d:c4:46:ce:39:4a:8e:91:7e:21:63:d0:8e:30:b3:
bd:81:d6:3a:0e:88:15:52:5a:5f:03:05:23:23:26:
d0:fa:36:d8:d8:f9:60:37:9c:49:ff:8e:7a:e2:37:
bc:90:c5:57:7f:db:86:7c:35:24:b4:01:df:af:ef:
39:28:31:8c:f4:30:ec:aa:da:ee:86:25:57:f0:3a:
06:2f:1e:cd:a2:94:65:d3:30:ac:bf:da:68:7c:fe:
fe:2d:c8:15:09:55:93:49:2f:c5:33:60:a9:3e:b0:
e9:02:69:d6:dd:3b:74:55:c3:3a:77:86:19:60:fe:
41:21:23:33:0b:bc:f2:7f:8a:a4:a0:90:15:dc:18:
8c:c2:1f:78:f7:59:94:32:32:d7:8d:c6:a7:b8:91:
02:47:d2:48:66:24:a5:8b:78:5c:29:82:7e:73:11:
02:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:F5:31:B8:83:09:85:05:F0:B5:81:77:2A:F6:AD:60:B1:D8:1D:1E
X509v3 Authority Key Identifier:
keyid:1B:68:65:61:26:19:83:73:D0:78:86:BF:4A:B8:FB:06:B9:00:67:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/2vUxuIMJhQXwtYF3KvatYLHYHR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1bc1:2000::/35
Signature Algorithm: sha256WithRSAEncryption
35:6c:f7:1e:31:25:d7:35:c2:58:95:ff:c9:78:c0:5d:fd:c7:
b5:4a:e1:f9:35:f9:aa:17:fd:d4:ed:95:76:e4:1d:6a:c4:27:
ee:4d:00:d1:8b:ed:93:bc:14:b0:0d:80:5e:63:20:86:2a:0d:
74:a7:62:e1:b5:c3:94:39:52:74:3c:79:f1:91:bb:7f:e2:5e:
98:2f:9c:f6:f6:51:b4:5e:bf:04:35:41:12:10:6c:ca:86:4b:
e5:62:d9:b4:81:36:22:0f:56:17:a0:07:68:3a:00:c0:1b:ca:
1d:36:4b:6d:1a:d2:20:e6:f3:a5:8f:3b:37:be:30:0c:e5:5f:
8e:ef:f7:eb:e0:97:92:80:56:9c:15:a4:3f:78:f1:93:90:85:
1f:be:6c:5b:43:e5:86:8e:49:c6:78:93:1f:a9:0e:84:ba:ad:
cf:08:8e:c2:fb:9b:23:37:9e:30:9b:15:2c:64:a7:2d:cd:4f:
7a:f8:ba:d3:90:ff:27:b5:8c:51:d2:4c:c5:47:d0:c1:2e:fc:
c0:23:cc:f1:c8:e6:d8:4a:04:47:29:dc:30:12:17:c7:d8:1e:
10:00:dc:73:52:b6:ec:40:83:ec:27:f6:80:5e:40:8e:00:fe:
e0:77:93:75:77:f1:40:14:e9:d7:00:9f:ff:c5:01:82:b2:2d:
44:a9:03:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 08:36:55 2025 by rpki-client