Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/_APGHjuHXTtjhiK5ALwXHiXO_tI.roa
File: _APGHjuHXTtjhiK5ALwXHiXO_tI.roa (raw, json)
Hash identifier: FiGhaLy+cGYuZ/KGOwZTmr+el5y/gwjdRRdRONySuqg=
Subject key identifier: FC:03:C6:1E:3B:87:5D:3B:63:86:22:B9:00:BC:17:1E:25:CE:FE:D2
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 019426D9850FD99B510C6AF5EE907AA91A45
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/_APGHjuHXTtjhiK5ALwXHiXO_tI.roa
Signing time: Thu 02 Jan 2025 11:49:37 +0000
ROA not before: Thu 02 Jan 2025 11:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199897
IP address blocks: 2a03:5840:f2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Jan 2025 16:52:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:85:0f:d9:9b:51:0c:6a:f5:ee:90:7a:a9:1a:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 2 11:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fc03c61e3b875d3b638622b900bc171e25cefed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:bd:c9:11:41:86:2c:7a:1b:96:c3:77:18:d8:
7f:36:23:ad:f2:f9:46:af:a8:10:de:57:45:1e:58:
9d:ee:bc:46:80:84:b0:4e:e9:2c:ad:af:2c:24:d3:
44:e1:72:e5:94:90:96:7d:b3:ff:81:b6:61:6d:4b:
52:53:f8:1b:aa:43:20:c5:24:49:01:82:a4:35:9d:
ef:cc:d8:d6:48:da:32:38:e7:ab:bf:99:a7:68:5e:
8a:a5:d2:b0:79:80:91:0b:89:e1:cc:89:10:44:ea:
44:22:ca:42:2b:de:4c:8a:ab:08:15:51:31:7a:fb:
54:f1:bd:e6:e8:8d:3c:7b:ed:e4:eb:d9:35:e4:8d:
c1:55:6d:96:ff:77:02:a2:ef:bb:a2:10:34:56:c8:
48:aa:82:3c:7f:8d:e4:05:7c:98:9e:e5:5f:9f:e8:
2b:b1:05:8c:87:4d:cf:c6:34:e1:dd:ba:a7:6f:24:
e2:66:f8:51:65:32:c4:89:9f:ac:3e:10:da:1c:ae:
12:04:8f:69:69:f4:f0:dd:53:bc:2f:fb:2d:1f:3f:
ce:0c:c9:a5:63:05:01:aa:52:6e:88:a0:03:00:1f:
9a:49:13:d3:7b:49:60:53:10:08:20:3f:c4:1f:dc:
3b:5f:61:bd:76:f7:42:e2:f6:3d:4c:9a:fc:d6:aa:
b3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:03:C6:1E:3B:87:5D:3B:63:86:22:B9:00:BC:17:1E:25:CE:FE:D2
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/_APGHjuHXTtjhiK5ALwXHiXO_tI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:f2::/48
Signature Algorithm: sha256WithRSAEncryption
17:a9:64:f0:e0:56:6e:03:f8:96:f2:58:26:20:d6:f4:46:37:
ea:81:c7:83:b2:f8:07:26:c3:95:5f:28:ed:ee:e5:ee:5c:fe:
0d:67:d1:76:b7:d8:cd:ae:b1:48:01:cb:33:a9:d4:71:9d:8f:
6d:50:b9:c8:5d:49:07:73:32:8a:a7:55:81:08:32:40:73:4f:
95:ac:1b:7b:9d:21:57:48:bb:22:e9:9c:43:38:4c:da:be:0a:
c9:3c:24:70:ec:50:a4:aa:5f:74:76:3a:54:bb:2e:5b:a3:c5:
5d:9f:3e:6b:c8:5f:48:55:6d:d6:4a:6f:99:7e:7a:e8:39:34:
b2:55:84:93:33:3e:ba:ee:ac:27:7a:f5:30:87:51:fe:bc:f0:
30:ee:81:d6:dd:1c:29:8b:d9:d6:e1:8c:dc:fe:51:a5:49:a3:
80:f8:d4:b8:32:f9:41:d1:ce:ac:d8:ea:d3:fa:f8:50:c0:5a:
97:49:6f:99:8d:a4:c4:a6:82:b4:aa:be:de:59:51:ad:0b:5b:
9f:09:a4:54:93:f0:ef:e2:fa:b4:aa:34:04:a6:da:91:8e:5c:
88:1e:4f:db:2d:68:b2:b5:3e:04:f9:37:db:fb:57:5c:1c:00:
e5:1f:de:83:61:3d:21:63:8b:80:e1:e9:06:b4:70:23:cd:8b:
89:bc:33:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 15:09:44 2025 by rpki-client