Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/muIl-dlPd1YjpAC5MGS_fpNZ1jY.roa
File: muIl-dlPd1YjpAC5MGS_fpNZ1jY.roa (raw, json)
Hash identifier: DbF1NpeCIVkxS5fHT4KDeHDtSEsztDUvhC1RukQysCQ=
Subject key identifier: 9A:E2:25:F9:D9:4F:77:56:23:A4:00:B9:30:64:BF:7E:93:59:D6:36
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 01929C026AC29A3A28C77AED246DCF53CC78
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/muIl-dlPd1YjpAC5MGS_fpNZ1jY.roa
Signing time: Thu 17 Oct 2024 19:44:16 +0000
ROA not before: Thu 17 Oct 2024 19:44:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35196
IP address blocks: 2a0e:4bc7::/32 maxlen: 32
2a0e:5901::/32 maxlen: 32
2a0e:8080::/32 maxlen: 32
2a0e:ccc5::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 13 Nov 2024 10:44:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9c:02:6a:c2:9a:3a:28:c7:7a:ed:24:6d:cf:53:cc:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Oct 17 19:44:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9ae225f9d94f775623a400b93064bf7e9359d636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0f:2e:d1:11:1e:da:04:ef:40:61:73:7f:16:
b7:c5:e3:55:2f:8f:ad:6a:d9:e3:f6:e1:6a:f6:af:
7e:48:3c:a2:2d:6e:0d:64:39:ef:b7:9c:e0:cb:0d:
aa:a1:b3:20:1b:b9:0e:20:f2:d9:3f:43:7c:79:e4:
20:50:9b:f8:f2:d8:a6:07:e2:04:4f:be:91:1d:23:
4b:e8:fe:a7:2d:1a:5e:f6:d6:09:f6:85:81:2c:a5:
24:10:e6:26:3f:19:e7:de:b0:42:00:ef:fb:c5:1a:
00:da:3b:be:b6:af:a6:68:86:3d:21:17:93:d5:92:
3b:23:6e:3c:bb:d8:42:97:a9:f7:be:a6:53:31:18:
0f:b5:e1:49:d9:51:b1:94:09:16:aa:51:89:52:0b:
be:87:90:3b:32:38:80:a6:d4:ab:a8:ce:1e:71:34:
c2:76:b7:70:e8:02:b7:03:69:f3:c4:f4:2a:a8:3e:
e1:37:51:79:ad:7f:5d:b9:2a:a1:fb:d1:da:30:f1:
2c:bb:de:5c:68:c7:99:2d:77:6a:46:52:d4:24:c1:
3b:ed:c9:90:7f:f0:c8:ce:4c:00:4b:e4:0c:19:22:
fc:07:9c:c5:b3:6b:fd:6d:f5:a7:9c:55:aa:46:1a:
d5:d3:db:86:39:61:4e:72:34:9c:75:9c:f4:8e:46:
77:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E2:25:F9:D9:4F:77:56:23:A4:00:B9:30:64:BF:7E:93:59:D6:36
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/muIl-dlPd1YjpAC5MGS_fpNZ1jY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4bc7::/32
2a0e:5901::/32
2a0e:8080::/32
2a0e:ccc5::/32
Signature Algorithm: sha256WithRSAEncryption
95:da:92:d1:84:06:76:f7:0b:99:0f:5e:3b:d0:ad:df:ec:d7:
2e:34:2f:15:4e:55:62:ec:06:3f:bf:d3:2c:ce:e5:66:a9:12:
e7:5c:38:ad:b4:ae:a2:30:df:b2:4f:f9:92:23:17:14:65:01:
ef:90:f0:7c:87:a6:99:43:a8:d8:e3:77:cb:e2:e1:7e:1d:31:
98:9b:e1:38:55:4b:26:20:68:1a:2e:b1:35:20:28:f3:a6:d8:
3d:0f:63:53:07:f0:a9:59:1a:10:60:c2:0d:3b:8f:a9:00:16:
af:b9:6a:b2:97:25:e9:81:93:5f:9b:4e:03:96:36:d1:f9:0b:
a8:c5:6b:e9:6e:f1:60:0f:21:ac:1d:fb:ab:a5:7b:28:26:32:
7e:a4:f3:17:d8:f5:5c:a1:00:cc:4a:85:7b:79:dd:13:fa:26:
8e:7e:ac:4d:24:b1:ee:db:65:48:06:0e:47:de:1a:68:91:e7:
52:cf:e6:bb:ca:7a:1f:6b:ae:0e:00:bc:bb:90:38:db:f4:f1:
99:f1:b9:2f:7b:cc:1c:91:4b:a1:60:a3:f9:91:f8:24:ae:b7:
e8:91:5c:d6:72:d9:b8:f9:da:47:76:a4:51:59:86:12:81:ec:
d3:70:bd:89:58:e9:9e:41:0c:8e:e9:f9:15:a6:a2:e1:f7:d6:
6d:47:20:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 13:01:07 2024 by rpki-client on console-fra.rpki-client.org