Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/SQyoKUzD-gAoC5dcsClVYVlpeBo.roa
File: SQyoKUzD-gAoC5dcsClVYVlpeBo.roa (raw, json)
Hash identifier: hXMYXVQwAwmUwq6OqQBhp9MMlpTmtFza7VsRqvmV/iM=
Subject key identifier: 49:0C:A8:29:4C:C3:FA:00:28:0B:97:5C:B0:29:55:61:59:69:78:1A
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 019152C3F687F83F233615F53251500B6993
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/SQyoKUzD-gAoC5dcsClVYVlpeBo.roa
Signing time: Wed 14 Aug 2024 21:20:59 +0000
ROA not before: Wed 14 Aug 2024 21:20:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50340
IP address blocks: 2a0e:8086::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:48:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:52:c3:f6:87:f8:3f:23:36:15:f5:32:51:50:0b:69:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Aug 14 21:20:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=490ca8294cc3fa00280b975cb02955615969781a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8a:aa:93:85:54:58:58:73:68:96:ed:f5:03:
ca:a8:ed:33:d7:89:d4:11:05:77:88:c9:15:1c:7c:
e6:12:f4:f2:a9:6a:e2:63:e1:b7:31:23:cd:80:ab:
65:83:a3:23:94:f2:c8:3e:62:f6:82:52:ac:7f:98:
16:0c:fa:b1:26:1b:86:ce:45:a2:7d:45:eb:a7:96:
ca:2a:1e:86:b3:27:c4:59:f8:01:ac:53:19:71:4d:
3d:09:1f:52:d3:43:bf:78:1f:ec:a6:1f:8f:51:25:
82:18:c8:02:ed:84:f9:38:63:23:b3:01:34:c9:cf:
9d:bf:18:10:4c:3e:ad:dc:71:c6:b6:5e:be:34:84:
06:af:2f:ef:c5:ca:6a:f6:c1:d8:e1:1b:f5:dd:2b:
88:bf:07:21:9a:cf:e2:fc:b9:17:b8:89:e8:e4:3b:
12:9e:a7:1a:b9:37:ac:52:5b:82:86:d5:7c:d4:ce:
c8:fb:c2:f0:b7:67:d0:4e:49:0a:32:9a:ca:a7:51:
00:48:35:48:a6:23:f9:28:f6:a6:63:c6:8a:b4:52:
99:c0:7f:24:de:fc:d5:bc:0e:47:72:f6:56:22:15:
cf:a2:20:5d:e6:0b:2f:43:30:69:25:c8:ee:67:6b:
41:d6:a4:b8:a2:d0:05:fd:a1:cb:5c:a6:77:f5:6e:
88:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:0C:A8:29:4C:C3:FA:00:28:0B:97:5C:B0:29:55:61:59:69:78:1A
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/SQyoKUzD-gAoC5dcsClVYVlpeBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8086::/32
Signature Algorithm: sha256WithRSAEncryption
8e:9f:13:d9:1b:ac:6e:1c:c2:11:7a:8d:7a:9f:61:e5:d1:01:
4e:95:dc:a6:81:03:9c:52:56:9c:bd:fd:fd:fa:4f:8b:ba:0d:
d9:2d:9b:4a:76:f0:f9:60:54:ed:8f:f6:2c:21:a5:6d:10:aa:
2e:c2:48:bc:f1:e5:91:13:97:c3:64:d7:68:1c:b6:fb:20:77:
a5:15:19:75:d1:79:1b:4a:5e:ca:a6:18:64:fd:32:a5:5c:7e:
b6:10:4e:c0:57:55:c8:df:e5:e9:b9:a3:3a:9b:f1:67:42:f6:
6b:fd:18:57:ae:e4:8c:08:61:73:8d:38:e7:e4:66:ca:48:19:
a3:1d:28:35:d3:3e:8f:a2:82:06:fb:a5:8d:2a:a8:96:66:27:
fb:d9:16:19:5b:1a:9e:08:23:b7:fd:7e:d3:9d:08:4e:c5:6a:
ae:1a:22:f4:38:c7:00:57:1d:bb:86:ee:b3:59:db:99:35:b4:
f4:7d:f4:3c:7c:d8:a5:a5:fb:74:42:80:37:fa:af:7d:7a:8e:
3d:6a:8a:d3:14:ad:6e:6c:32:0a:f5:87:15:8d:30:f2:39:c3:
18:8f:a8:19:90:e4:1d:f4:1f:9b:17:08:d0:33:70:37:e4:b2:
0f:df:90:98:8b:7e:a9:de:50:69:a8:28:82:8b:41:b2:64:4f:
64:3a:d4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:50:14 2025 by rpki-client