Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/_ju3kjAyOzVZRIbjwnoMmIWizL0.roa
File: _ju3kjAyOzVZRIbjwnoMmIWizL0.roa (raw, json)
Hash identifier: p1yWVhrV9jYQ3/5HWPx76Hlid68r/ncn91TUsVX8rI4=
Subject key identifier: FE:3B:B7:92:30:32:3B:35:59:44:86:E3:C2:7A:0C:98:85:A2:CC:BD
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 019426D98659ADDB61EB930632127B83DC1C
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/_ju3kjAyOzVZRIbjwnoMmIWizL0.roa
Signing time: Thu 02 Jan 2025 11:49:37 +0000
ROA not before: Thu 02 Jan 2025 11:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204826
IP address blocks: 2a03:5840:fb::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Jan 2025 16:52:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:86:59:ad:db:61:eb:93:06:32:12:7b:83:dc:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 2 11:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fe3bb79230323b35594486e3c27a0c9885a2ccbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:93:6d:db:ab:f7:a4:c5:a1:c2:92:44:5e:b9:
96:af:ae:ae:a3:a8:5b:47:31:41:87:5c:b8:eb:2a:
66:01:9b:67:5f:0a:15:a1:e9:a1:bf:3c:2d:ad:c2:
00:56:05:bc:51:b2:7d:a9:b5:3a:07:e2:73:02:09:
09:86:13:83:10:02:cb:1a:49:95:61:4d:ba:09:e7:
61:4e:d6:50:c2:6f:5d:0b:70:2b:49:67:a7:6f:7e:
31:12:6e:bd:7b:5b:8b:91:7d:be:fd:ec:4b:9f:40:
a1:29:90:14:c8:c9:53:23:57:be:3e:c2:37:2a:39:
ba:77:e2:18:4c:7c:a9:81:ad:db:e1:b0:59:a6:4b:
8d:43:fb:9f:24:ce:f9:c2:8c:0b:7d:1e:ee:5b:11:
41:c4:d1:fc:dd:bb:b0:ad:86:86:5c:de:5d:16:48:
c6:df:29:d3:b8:03:83:e2:74:c0:ba:ca:df:15:03:
9c:2e:99:fa:ae:6d:79:e8:90:c4:9b:63:8c:a2:21:
1a:95:d6:81:4e:db:94:13:77:5d:ca:20:e0:17:ca:
9e:13:5f:10:c1:88:6d:7b:9d:b6:a2:a6:c7:5a:a5:
8c:19:f0:54:33:9f:30:55:5c:83:7e:5d:b5:e2:e2:
e6:80:8b:70:09:43:e3:b7:cc:ae:01:28:62:b6:af:
35:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:3B:B7:92:30:32:3B:35:59:44:86:E3:C2:7A:0C:98:85:A2:CC:BD
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/_ju3kjAyOzVZRIbjwnoMmIWizL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:fb::/48
Signature Algorithm: sha256WithRSAEncryption
70:34:3b:a8:6a:38:ad:0d:d0:df:24:4e:af:68:87:9e:b5:99:
06:c1:46:cb:55:2d:ac:79:2d:53:b1:2c:a3:6b:ee:09:68:d9:
98:cc:34:6c:f2:92:7e:50:1f:c4:bf:b4:56:1f:b1:74:81:0f:
82:99:a0:7b:44:ea:c8:20:e2:2a:5f:d5:0b:28:f6:98:90:1b:
23:64:dd:1c:ea:4b:b8:42:a6:5f:bb:c5:75:a4:a2:11:52:af:
86:38:ff:84:ee:24:d1:3e:8d:13:85:4d:d5:f9:62:55:87:b8:
2b:ac:56:a9:af:88:9a:43:0b:10:1d:3e:06:cb:46:a9:b4:fb:
20:c8:ef:8c:b0:ac:db:9f:54:32:49:24:c2:11:cd:e9:06:0e:
9a:d1:bb:ec:1b:87:f4:c3:24:1d:a1:45:2a:ce:4d:2f:d9:33:
4c:61:ca:96:62:6f:61:e0:92:4e:ae:ea:f1:36:76:d4:ea:af:
1d:dc:81:29:b1:0a:61:a6:c7:56:06:f6:9c:86:22:a0:7b:05:
d2:91:b7:3e:87:ae:f1:7d:be:72:86:03:03:97:05:8d:21:bb:
18:f8:e0:f3:8a:b0:27:7b:55:6a:7a:24:4b:37:61:10:35:8c:
64:08:48:d7:43:b9:95:77:fd:f1:e3:09:7a:9a:f5:00:95:b1:
8f:47:1a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:57:52 2025 by rpki-client