Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/m3IsXBHbkk-TfV_J4_kVCXT_4Eo.roa
File: m3IsXBHbkk-TfV_J4_kVCXT_4Eo.roa (raw, json)
Hash identifier: oHvsfNIzxWdFxurLH5HkH516mokuYABUbDEE9psKME0=
Subject key identifier: 9B:72:2C:5C:11:DB:92:4F:93:7D:5F:C9:E3:F9:15:09:74:FF:E0:4A
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 019310D3E1724CEB58470451A547AC315DB5
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/m3IsXBHbkk-TfV_J4_kVCXT_4Eo.roa
Signing time: Sat 09 Nov 2024 12:09:01 +0000
ROA not before: Sat 09 Nov 2024 12:09:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213891
IP address blocks: 2a0e:aa07:e150::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:48:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:10:d3:e1:72:4c:eb:58:47:04:51:a5:47:ac:31:5d:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Nov 9 12:09:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b722c5c11db924f937d5fc9e3f9150974ffe04a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:23:70:2f:06:d0:b4:dc:cb:c8:18:94:e7:
d8:11:28:e4:e8:6f:69:12:7d:c5:24:81:85:f3:3e:
59:76:c8:81:4c:c9:48:40:ce:7a:7c:ec:b5:03:79:
3b:13:dd:9d:b0:9b:5a:ca:9d:7e:97:59:4b:d0:e9:
d1:21:4a:c2:df:d0:07:0c:b2:9e:4f:3a:1e:36:fc:
d9:af:00:4a:3d:d7:62:52:3c:19:14:1d:b8:24:2c:
50:82:b3:d6:df:30:50:6e:b9:14:0a:d5:a2:27:3a:
b8:5b:e2:50:e6:7f:18:eb:c7:b3:1d:69:6e:6f:cf:
5f:f5:56:1c:f6:17:07:c4:67:6c:9d:67:87:a9:52:
e3:44:04:4e:7d:31:7b:79:25:90:79:47:49:5b:13:
13:72:39:39:26:33:40:9c:2b:ef:26:ca:1e:5c:c6:
ef:d6:f8:d6:67:16:d5:f4:84:80:5a:98:93:08:31:
9e:1d:46:f9:fd:02:26:18:6f:08:d6:ca:17:a2:94:
d3:fa:42:9b:b7:07:51:ba:d1:5a:09:0d:58:80:5e:
78:a7:68:a2:97:a6:7e:4d:ba:e5:ab:3e:e8:4d:8a:
03:c0:9e:1a:78:64:c4:9a:55:6e:a2:d7:5a:52:68:
f8:e4:c3:aa:e7:77:fb:9f:a7:96:98:68:8d:4b:95:
4a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:72:2C:5C:11:DB:92:4F:93:7D:5F:C9:E3:F9:15:09:74:FF:E0:4A
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/m3IsXBHbkk-TfV_J4_kVCXT_4Eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e150::/44
Signature Algorithm: sha256WithRSAEncryption
4b:dd:d5:dc:8b:12:fb:a5:f4:a7:07:69:e8:e1:e5:4e:55:d3:
0b:4a:0c:70:38:d1:cf:cc:ae:ba:71:2c:e9:04:48:bf:a2:1d:
80:e9:9d:82:73:01:b7:21:6a:09:04:79:79:f2:99:f4:f8:6a:
ce:41:43:06:52:d2:b8:11:d1:31:12:5d:4e:ea:29:ae:1e:5a:
b5:26:1e:c8:15:a8:cf:7e:f2:54:bc:e4:a0:50:ab:31:d3:ea:
86:2d:67:5b:ce:d8:45:00:47:01:62:be:4b:0e:62:e9:7f:45:
12:cc:4a:05:8c:d2:5e:5b:06:a2:28:67:c0:38:36:74:1a:a6:
06:2b:ad:d5:43:d6:25:02:ec:a8:64:d3:ca:2e:49:db:28:64:
cb:7b:08:c3:cb:88:e8:59:53:be:6d:c0:f5:6c:0d:6c:2d:5f:
fa:70:15:93:62:ab:dd:e8:77:24:9e:aa:5d:36:99:3a:db:32:
a9:2f:44:ee:9e:c5:ed:2c:52:2b:c6:15:43:53:94:6b:c3:e1:
13:eb:b5:04:39:a1:8b:11:89:2b:2f:7a:43:8f:ee:ea:28:42:
ea:03:a8:20:63:92:f4:c7:a6:da:f0:d4:23:78:4d:ac:4e:e2:
be:30:83:6f:05:3b:e7:e3:91:9b:da:2d:a9:86:27:e7:20:4b:
43:66:e3:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:49 2025 by rpki-client