Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/3Upz2zO0OmJo0_de2un-CUN1nRM.roa
File: 3Upz2zO0OmJo0_de2un-CUN1nRM.roa (raw, json)
Hash identifier: V3+RcpvyNr+lPIaagA6lECHn/nMuuL+IMWRmRInZPFI=
Subject key identifier: DD:4A:73:DB:33:B4:3A:62:68:D3:F7:5E:DA:E9:FE:09:43:75:9D:13
Certificate issuer: /CN=a6562d0869480dc11b74a552cd167b6f6339c8ba
Certificate serial: 019178CFB0F35D66F6782615E27F592FAD43
Authority key identifier: A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/3Upz2zO0OmJo0_de2un-CUN1nRM.roa
Signing time: Thu 22 Aug 2024 06:39:22 +0000
ROA not before: Thu 22 Aug 2024 06:39:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2a0f:b104::/30 maxlen: 30
Validation: Failed, certificate revoked on Sat 14 Sep 2024 07:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:78:cf:b0:f3:5d:66:f6:78:26:15:e2:7f:59:2f:ad:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6562d0869480dc11b74a552cd167b6f6339c8ba
Validity
Not Before: Aug 22 06:39:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd4a73db33b43a6268d3f75edae9fe0943759d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ae:21:0d:ed:f6:80:52:41:31:78:ca:2e:85:
1b:54:a7:a5:f6:07:30:79:e1:9f:bc:6e:e6:91:c1:
b8:2f:56:c6:d8:70:f4:63:d6:40:34:a7:c0:a7:e2:
74:92:d7:46:94:42:51:0a:ff:2a:dc:38:2b:dd:14:
97:84:6f:e2:39:d2:bc:45:4d:dd:86:90:36:56:09:
80:82:c4:ea:54:f9:59:ac:d2:0d:b4:f0:70:35:61:
f7:52:3c:17:71:ae:b2:75:58:62:6d:56:ee:93:79:
2f:ac:6e:06:0f:62:70:bd:7c:5a:6f:e0:07:44:ea:
85:e3:fd:e1:aa:83:15:48:62:5c:d7:de:51:3d:da:
c0:99:eb:fd:0f:e4:c4:b9:d5:40:33:02:fb:8c:fb:
a4:07:30:f1:66:2e:ae:da:59:74:d9:87:a5:57:28:
cc:da:63:71:6b:51:53:86:24:5e:48:fd:60:4f:f4:
0f:60:61:fe:98:d0:c9:1d:21:11:41:89:ab:d7:4b:
03:c0:28:61:b7:9c:36:63:e5:0a:f2:4a:1f:31:8f:
88:66:bc:10:4b:5b:47:ba:5b:6c:82:e7:a5:e4:f8:
e4:4c:94:fb:53:43:37:74:da:ef:dd:0e:9e:ec:65:
30:ee:38:e4:9e:60:1c:30:01:69:9a:44:c9:93:09:
e9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:4A:73:DB:33:B4:3A:62:68:D3:F7:5E:DA:E9:FE:09:43:75:9D:13
X509v3 Authority Key Identifier:
keyid:A6:56:2D:08:69:48:0D:C1:1B:74:A5:52:CD:16:7B:6F:63:39:C8:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/plYtCGlIDcEbdKVSzRZ7b2M5yLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/3Upz2zO0OmJo0_de2un-CUN1nRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/212dd2-da8d-4048-916a-45a8fed3a2a5/1/plYtCGlIDcEbdKVSzRZ7b2M5yLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b104::/30
Signature Algorithm: sha256WithRSAEncryption
ba:61:b1:48:17:f2:ec:17:e7:13:8d:c2:4b:4a:d6:4c:b4:50:
ad:2d:4f:78:10:3a:37:c6:e6:75:b2:a8:d7:2e:b3:63:e4:68:
26:e5:fd:e5:d6:74:ac:3a:c9:61:b3:fb:cc:81:f1:9c:94:f6:
2b:11:3d:17:d7:a1:06:fd:1b:5f:da:1f:bb:84:9a:8a:1a:8c:
61:53:2a:07:0d:56:91:76:ce:7e:47:a4:15:66:76:be:6a:2d:
d9:09:85:e0:93:81:ca:e5:d7:50:8e:23:f9:2f:78:2e:bc:89:
5a:f2:15:30:4f:cf:b4:43:e5:84:3e:9e:0d:cc:ad:f7:ae:c6:
a5:59:fb:93:f7:6e:00:7f:ba:d8:57:2c:34:c4:84:97:9f:1d:
8a:e2:e2:f8:bb:aa:50:ac:fa:40:a7:c6:d6:99:33:b3:d8:a0:
35:81:e7:33:49:1c:bc:f0:19:7d:75:01:d8:e4:2d:89:c3:38:
99:c6:a0:60:77:b0:dd:51:1e:d1:c7:9b:53:c9:e8:5a:d4:f6:
d8:63:29:02:79:59:45:06:6e:29:eb:5e:6e:6f:5e:31:46:41:
75:68:30:bd:d5:e5:ed:3f:db:64:0c:15:8f:66:7a:a8:19:5d:
e1:03:9e:cb:f3:9d:f7:fc:da:e9:8b:c9:4a:fa:c4:0d:d2:da:
db:81:6b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:22 2025 by rpki-client