Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/j5-62EAAwrcrMqAXiO17BAksN3s.roa
File: j5-62EAAwrcrMqAXiO17BAksN3s.roa (raw, json)
Hash identifier: qnJTCGflO3yzYwBHYlr8mJ7+nKaR23/eV8Wl9BAWXvU=
Subject key identifier: 8F:9F:BA:D8:40:00:C2:B7:2B:32:A0:17:88:ED:7B:04:09:2C:37:7B
Certificate issuer: /CN=66dfc89c07ae1331bfb37138568ea79a87fecf3b
Certificate serial: 0190F3FBCFF695913F68EC6A7F68DD894D8D
Authority key identifier: 66:DF:C8:9C:07:AE:13:31:BF:B3:71:38:56:8E:A7:9A:87:FE:CF:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt_InAeuEzG_s3E4Vo6nmof-zzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/j5-62EAAwrcrMqAXiO17BAksN3s.roa
Signing time: Sat 27 Jul 2024 11:38:04 +0000
ROA not before: Sat 27 Jul 2024 11:38:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48662
IP address blocks: 2a0a:4a00::/29 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f3:fb:cf:f6:95:91:3f:68:ec:6a:7f:68:dd:89:4d:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66dfc89c07ae1331bfb37138568ea79a87fecf3b
Validity
Not Before: Jul 27 11:38:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f9fbad84000c2b72b32a01788ed7b04092c377b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8d:56:30:44:02:d3:f4:b8:31:33:00:65:4e:
eb:f1:4b:73:09:56:16:a4:9f:23:44:10:68:9c:6d:
54:20:3f:e2:58:90:63:6d:a1:6d:2c:74:ab:ba:c2:
87:2e:79:88:39:38:ed:d3:91:67:2c:85:b3:98:00:
f5:bb:48:d0:8d:e7:a2:2e:6b:ab:67:de:ad:4b:92:
57:28:88:5f:88:40:2d:39:c1:bd:8a:e5:ef:7d:2c:
8d:7e:37:f1:03:a0:f7:98:8c:4e:c4:0f:d6:a0:92:
56:ef:fa:f1:ee:2f:59:12:f5:bf:a0:6b:db:4a:84:
e4:70:53:46:0c:0b:db:18:20:f5:27:48:e9:c8:49:
6d:2d:8a:d3:85:81:ab:f1:f4:78:3c:94:bb:65:55:
50:d6:31:d9:32:48:a1:2d:50:d3:d8:5e:98:15:27:
d6:78:52:1b:31:d8:ef:b5:1b:78:7b:c3:01:48:2b:
4d:37:96:91:63:27:ed:af:34:98:70:00:2d:9f:c3:
a6:db:7e:c8:e5:59:e3:35:de:b6:ff:7a:e6:65:bb:
a4:0a:d1:98:13:75:d1:e3:1e:bd:ff:61:7a:e1:c5:
88:88:7e:6d:39:79:24:d2:7a:02:e4:eb:8f:f9:8b:
ce:68:40:6c:1b:4e:12:df:d1:87:fd:97:27:83:b2:
2f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:9F:BA:D8:40:00:C2:B7:2B:32:A0:17:88:ED:7B:04:09:2C:37:7B
X509v3 Authority Key Identifier:
keyid:66:DF:C8:9C:07:AE:13:31:BF:B3:71:38:56:8E:A7:9A:87:FE:CF:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt_InAeuEzG_s3E4Vo6nmof-zzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/j5-62EAAwrcrMqAXiO17BAksN3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/Zt_InAeuEzG_s3E4Vo6nmof-zzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4a00::/29
Signature Algorithm: sha256WithRSAEncryption
58:a0:0a:f4:83:07:8d:90:66:60:50:3c:18:5d:0a:c6:51:5a:
b2:fc:4a:c2:a1:01:92:9f:52:fc:16:45:86:1a:e7:c3:90:ca:
41:60:a8:f8:da:42:52:8a:12:7b:b3:2d:58:6c:88:b8:8c:60:
ed:b7:78:cf:2e:b9:b4:98:74:30:92:3e:29:9f:eb:ea:e5:e3:
38:37:a4:43:b6:0a:8f:d3:e1:ed:5d:2a:a2:1b:59:91:8b:b2:
88:7f:1e:3d:1e:c8:ad:60:27:3a:04:f2:d3:97:36:4e:c2:84:
28:58:ac:91:f7:91:be:51:d4:21:8f:fd:99:ac:9c:e6:87:5c:
78:ee:3a:35:e2:18:75:1c:4b:48:17:40:a2:14:98:b1:13:ae:
d2:19:e3:e8:a6:44:4b:1f:c0:f2:90:2a:ce:9e:60:34:46:c0:
24:77:c0:d5:76:06:39:f2:4c:14:74:b4:37:86:0f:6a:8b:8f:
0f:bb:94:34:22:85:4c:fb:5e:3a:ae:6d:f5:11:28:ef:c3:05:
ee:98:5b:3e:60:df:da:ce:a5:b5:ff:25:96:ae:67:06:ad:03:
cc:39:93:70:61:20:e4:51:e0:c3:9b:5c:ce:fb:49:d7:14:64:
39:fe:bc:59:3b:7d:f8:38:fd:73:42:27:d3:d7:88:5e:e9:8c:
c3:11:2d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:46 2025 by rpki-client