Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/4A26191RX9YDk_uNlW2yAnhpxbQ.roa
File: 4A26191RX9YDk_uNlW2yAnhpxbQ.roa (raw, json)
Hash identifier: 1Fjfw5SRl1VD44vqminAyIlN4fKCHtu5Phvz2Ek5l/8=
Subject key identifier: E0:0D:BA:D7:DD:51:5F:D6:03:93:FB:8D:95:6D:B2:02:78:69:C5:B4
Certificate issuer: /CN=1d43a2484569d20e3f53c17be7b9fb29c34ee5be
Certificate serial: 01927DD4359FEC231957911B126FEC387587
Authority key identifier: 1D:43:A2:48:45:69:D2:0E:3F:53:C1:7B:E7:B9:FB:29:C3:4E:E5:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/4A26191RX9YDk_uNlW2yAnhpxbQ.roa
Signing time: Fri 11 Oct 2024 23:05:12 +0000
ROA not before: Fri 11 Oct 2024 23:05:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49418
IP address blocks: 2a01:ecc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 15 Oct 2024 02:14:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7d:d4:35:9f:ec:23:19:57:91:1b:12:6f:ec:38:75:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d43a2484569d20e3f53c17be7b9fb29c34ee5be
Validity
Not Before: Oct 11 23:05:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e00dbad7dd515fd60393fb8d956db2027869c5b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:82:58:66:18:b3:6c:33:a0:93:c8:b6:30:e1:
0a:98:90:fa:c3:d9:76:86:8b:3d:84:ec:52:46:3d:
a0:a5:2a:b2:19:59:31:db:10:00:33:5a:82:92:f1:
30:fe:47:96:a6:2f:bc:d9:f3:da:ec:76:c0:e6:ac:
73:ac:89:76:e9:91:14:55:b4:72:01:07:d3:4d:3b:
99:bc:b1:81:c6:f9:19:b9:4f:0b:5d:cd:0d:af:d2:
91:0c:15:31:21:c5:8d:eb:3f:67:48:0d:b2:b4:0e:
57:81:24:2d:f0:1c:92:59:7e:aa:a2:34:bb:9a:2e:
cd:74:6a:da:93:7b:d5:59:b0:7a:99:ee:f3:78:ef:
c9:2c:54:e1:55:9e:05:98:0a:c7:a0:cf:91:76:17:
d0:20:e9:ad:7a:7d:90:49:68:42:e7:b9:0f:b0:bf:
6a:0c:3c:c6:e0:fa:b3:c0:2e:ec:26:b5:8d:f8:b8:
04:ff:6e:01:6f:f3:39:b1:ac:96:7c:6b:fd:74:12:
d9:8d:db:81:e3:97:98:df:1c:35:96:98:66:b4:14:
1f:e0:84:f6:1d:5e:04:d2:d2:d2:e8:76:f0:0d:55:
fb:fb:30:ac:57:43:57:dc:36:92:f6:62:60:83:c5:
b5:25:00:44:78:5c:26:57:8a:c5:b6:cb:33:11:29:
40:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0D:BA:D7:DD:51:5F:D6:03:93:FB:8D:95:6D:B2:02:78:69:C5:B4
X509v3 Authority Key Identifier:
keyid:1D:43:A2:48:45:69:D2:0E:3F:53:C1:7B:E7:B9:FB:29:C3:4E:E5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HUOiSEVp0g4_U8F757n7KcNO5b4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/4A26191RX9YDk_uNlW2yAnhpxbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/c93d87-32e0-46f1-9fb9-63451548979d/1/HUOiSEVp0g4_U8F757n7KcNO5b4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:ecc0::/29
Signature Algorithm: sha256WithRSAEncryption
12:7e:88:b4:b2:9d:71:d4:79:e3:88:7d:29:21:62:99:ae:73:
4d:aa:49:51:aa:1f:83:57:62:d4:9c:0e:d7:64:e8:84:c8:ee:
30:21:1b:3e:de:9e:c0:bc:5f:c6:00:af:fb:4b:ce:55:91:69:
24:e6:c3:93:0c:95:d7:82:53:75:9a:d3:66:b2:0e:19:40:a8:
13:4c:5a:b0:4f:77:24:58:33:9c:4e:ef:fc:4c:77:e7:73:a5:
54:85:b1:16:df:1f:12:70:31:55:d3:3c:7d:23:aa:b4:dc:57:
5f:d7:21:38:3d:e2:4b:2b:13:35:fa:be:ea:3f:63:94:7c:9b:
13:ab:07:e4:d4:a8:be:68:02:27:5e:9f:2f:5a:7a:ac:cc:9e:
57:cb:84:be:35:d6:05:f5:58:57:da:a2:6a:a6:16:10:6a:96:
9b:d1:15:77:40:96:46:e5:8a:74:21:ed:c9:df:5c:0e:ed:d3:
cc:0c:2a:be:66:5c:d5:58:87:31:44:97:49:79:ce:69:d3:ed:
73:7c:fc:62:09:16:11:7b:d9:9b:c9:4a:f7:5f:0a:69:4e:f5:
c1:48:cf:41:e7:65:2e:99:dc:53:5c:a0:c3:2e:d8:63:63:db:
15:aa:b7:db:3b:60:76:00:7a:16:69:e6:37:46:a1:96:55:e4:
4e:c5:f0:ac
-----BEGIN CERTIFICATE-----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Generated at Tue Oct 15 03:57:05 2024 by rpki-client on console-fra.rpki-client.org