Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/0myk0DFzT699vccPDHFlDGBfHw4.roa
File: 0myk0DFzT699vccPDHFlDGBfHw4.roa (raw, json)
Hash identifier: zEO762UNSnmrbTvrTkY1RRi7RKRflDGF3Q1yRdGq7VA=
Subject key identifier: D2:6C:A4:D0:31:73:4F:AF:7D:BD:C7:0F:0C:71:65:0C:60:5F:1F:0E
Certificate issuer: /CN=af734108705a95796e8577125dd300c751dfd9a8
Certificate serial: 019357DA62DFEABD61ABC89F9B32949AEE65
Authority key identifier: AF:73:41:08:70:5A:95:79:6E:85:77:12:5D:D3:00:C7:51:DF:D9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3NBCHBalXluhXcSXdMAx1Hf2ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/0myk0DFzT699vccPDHFlDGBfHw4.roa
Signing time: Sat 23 Nov 2024 07:09:09 +0000
ROA not before: Sat 23 Nov 2024 07:09:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48944
IP address blocks: 2a05:63c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 23 Nov 2024 17:38:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:da:62:df:ea:bd:61:ab:c8:9f:9b:32:94:9a:ee:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af734108705a95796e8577125dd300c751dfd9a8
Validity
Not Before: Nov 23 07:09:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d26ca4d031734faf7dbdc70f0c71650c605f1f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:93:73:23:4f:b2:a8:f1:16:5d:3b:5f:f2:6b:
e9:df:62:f1:5a:b2:9f:b0:d7:c3:57:83:b1:9f:26:
e3:a2:17:d1:fb:0d:7a:f8:16:b8:3c:b3:44:bb:6a:
72:08:dd:ed:0e:02:26:fb:7c:4e:e1:c8:f3:14:df:
1c:71:b0:ac:21:44:0d:31:a5:95:96:2d:b5:dd:d1:
bc:14:36:49:3e:dd:54:66:54:e0:18:43:07:f0:e2:
ec:84:9a:65:eb:47:bb:44:13:58:55:bf:44:75:0d:
4d:7a:e4:19:69:71:2b:82:3d:26:df:43:b7:d2:3b:
06:b8:1a:e5:ac:6e:c1:cc:f9:86:55:da:33:a5:14:
2d:3e:0b:c8:13:0e:82:2d:99:44:ed:06:0b:88:8f:
0d:0f:e0:78:56:17:65:6c:48:09:c5:15:9e:ce:3b:
4d:06:01:e2:b6:ef:eb:4f:30:98:2c:71:e3:05:73:
64:1b:a3:a5:10:b5:68:41:6c:5e:5f:94:f3:89:98:
c0:14:41:d2:00:74:c4:23:a3:39:c2:85:b3:18:ac:
19:ea:58:2e:77:d2:67:d0:ad:2e:ee:48:05:b4:ef:
a9:20:53:f0:7f:34:db:a5:9a:7d:74:e3:ad:aa:2f:
29:01:6a:88:d6:3d:40:23:2d:10:70:d6:6a:71:1b:
46:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:6C:A4:D0:31:73:4F:AF:7D:BD:C7:0F:0C:71:65:0C:60:5F:1F:0E
X509v3 Authority Key Identifier:
keyid:AF:73:41:08:70:5A:95:79:6E:85:77:12:5D:D3:00:C7:51:DF:D9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3NBCHBalXluhXcSXdMAx1Hf2ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/0myk0DFzT699vccPDHFlDGBfHw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/c93a66-c7c7-4c33-a725-18d1a406aaed/1/r3NBCHBalXluhXcSXdMAx1Hf2ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
13:23:ae:7d:96:dd:72:4a:22:64:22:e8:25:3e:bd:91:ad:f4:
bd:de:8e:e1:3c:55:c7:39:bd:da:71:69:df:03:58:d9:8a:97:
75:7c:3d:23:39:3e:2b:07:84:9d:25:f5:ee:6f:5a:46:a1:12:
ec:16:7c:41:3e:5e:55:f4:ce:77:22:8c:e1:d3:5f:d5:f3:5f:
56:37:0d:d0:1e:66:3f:59:a0:76:1e:cf:fe:07:3d:ea:56:a9:
b7:84:ec:ec:31:57:96:65:3a:c6:9b:94:12:37:5e:20:a1:b0:
16:ef:ff:61:7b:66:72:5c:b3:ff:93:21:da:f2:fa:14:de:ff:
03:a1:de:10:ac:f0:e9:95:31:9f:f6:6d:44:e1:16:98:a4:5f:
55:b4:70:6a:67:00:3b:bb:73:f5:d4:a7:af:ef:b1:9f:0d:ec:
de:40:f9:07:c6:c3:df:d1:12:f9:be:dc:d7:5f:90:5c:5b:a9:
55:06:3c:22:84:8f:fe:c7:1f:ac:49:a5:5b:56:20:cb:4f:2f:
30:18:56:25:c4:65:dc:26:6c:af:a9:ab:42:44:3a:85:92:f2:
c4:67:16:14:9e:8e:91:b3:cf:2a:5f:5c:a3:fe:80:c0:4b:fc:
c4:cd:3b:d9:03:c7:27:bc:59:dc:05:5f:97:8f:62:55:55:37:
4f:6e:86:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:09:22 2025 by rpki-client