Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/4O_IWJfNUzz76K6eISpbTy6Tcy0.roa
File: 4O_IWJfNUzz76K6eISpbTy6Tcy0.roa (raw, json)
Hash identifier: MMQ5kYiMSly0jiYfTsVAaM1AkyFfYrxolYmWX7gSj1E=
Subject key identifier: E0:EF:C8:58:97:CD:53:3C:FB:E8:AE:9E:21:2A:5B:4F:2E:93:73:2D
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 0193F44E3058E6CABA824838DCB24F340087
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/4O_IWJfNUzz76K6eISpbTy6Tcy0.roa
Signing time: Mon 23 Dec 2024 16:16:25 +0000
ROA not before: Mon 23 Dec 2024 16:16:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213861
IP address blocks: 2a0e:8085::/32 maxlen: 32
2a0f:c084::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:48:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f4:4e:30:58:e6:ca:ba:82:48:38:dc:b2:4f:34:00:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Dec 23 16:16:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0efc85897cd533cfbe8ae9e212a5b4f2e93732d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e4:ac:ba:99:13:c9:37:79:36:cc:ed:f2:98:
23:0c:00:a1:47:cb:66:f9:c6:1d:47:2c:11:4f:e1:
64:1c:9e:35:4d:6a:58:e0:55:f5:b6:c0:38:33:8f:
14:b3:00:21:f8:46:ea:fe:de:c0:76:c1:25:3a:41:
69:84:30:5f:34:ed:4b:5b:e4:95:5a:c0:be:84:47:
9a:b0:fa:59:fa:31:fb:5e:da:33:eb:b0:da:6e:9e:
16:d1:eb:a9:59:4a:f6:08:90:65:af:f8:04:a4:9d:
52:64:49:5f:54:62:fd:f1:5e:2c:3d:36:9c:03:01:
db:58:cc:26:35:c4:83:96:36:82:a2:e7:e8:8f:35:
81:03:72:57:22:65:92:81:5e:8c:1e:db:1c:02:a5:
1e:0e:08:59:54:49:a3:34:77:39:fd:30:33:44:8b:
ee:85:9d:13:19:ca:40:66:a6:5b:97:d8:5a:d6:c9:
14:a9:58:19:9f:04:b6:b1:bc:24:8e:4c:39:93:83:
bb:eb:9b:74:6c:fb:9a:bd:59:10:9c:ea:de:d1:00:
ce:b7:50:2b:13:95:0f:b1:d4:24:27:76:ab:85:00:
35:6a:bf:52:72:87:d9:ff:4d:e4:d2:66:d1:7e:79:
35:ac:04:af:81:b0:86:8f:e3:a6:e9:98:ea:7d:31:
08:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:EF:C8:58:97:CD:53:3C:FB:E8:AE:9E:21:2A:5B:4F:2E:93:73:2D
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/4O_IWJfNUzz76K6eISpbTy6Tcy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8085::/32
2a0f:c084::/32
Signature Algorithm: sha256WithRSAEncryption
7d:36:ab:d9:cf:16:db:7b:3b:f9:22:45:d9:a2:e0:65:99:21:
c7:bb:93:a0:5b:60:23:e0:e2:4c:5f:45:02:f8:bd:96:af:72:
b4:cd:69:66:e3:81:4d:27:fc:71:a8:39:48:59:6c:a0:62:4e:
61:f9:87:22:34:6f:12:6a:31:f4:8c:fd:d9:55:53:53:bc:80:
08:68:58:02:ec:91:37:02:b5:1c:cf:e6:d9:83:2b:6f:fa:c2:
af:e9:a6:73:1e:56:36:f7:6f:8d:ff:f1:e6:df:87:06:9d:da:
ef:a8:83:23:93:9e:54:04:e1:44:06:36:d6:bb:5b:f3:c1:a3:
cc:65:db:c0:2a:60:6b:9a:8d:00:e6:dc:13:b1:2d:4f:7e:a2:
10:a1:3a:66:63:91:13:2f:fd:68:a3:44:c4:3e:e2:c5:69:c8:
68:56:c6:71:c1:ad:49:4b:8c:b0:7a:98:aa:7f:18:06:b3:af:
b3:35:a9:56:95:dd:ae:c5:e4:0e:fb:64:10:69:aa:ec:6d:b4:
48:73:be:9e:1c:5e:7c:46:13:2d:b0:e0:de:fc:c6:d1:a1:fc:
92:e2:6a:dc:34:41:02:bc:a9:76:7a:c2:c4:6d:47:e5:dd:c2:
ed:4f:52:d1:6b:b6:d7:57:03:c1:ad:1b:45:cf:19:a9:92:56:
84:06:dc:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:28:31 2025 by rpki-client