Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/5de7fb-9488-4e84-83ca-14600d57808a/1/5lKfGQGjoqUCwCWZhYfe2R2HHJA.roa
File: 5lKfGQGjoqUCwCWZhYfe2R2HHJA.roa (raw, json)
Hash identifier: 4fzXKRHiwMXvev6MHFJ6XzDA6JTioTGRja4G9hmclhw=
Subject key identifier: E6:52:9F:19:01:A3:A2:A5:02:C0:25:99:85:87:DE:D9:1D:87:1C:90
Certificate issuer: /CN=0db49122d9e9bbafa577f6447f21b8bec76c05f0
Certificate serial: 0193C06545388ECA58F81C6363D457AE5307
Authority key identifier: 0D:B4:91:22:D9:E9:BB:AF:A5:77:F6:44:7F:21:B8:BE:C7:6C:05:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbSRItnpu6-ld_ZEfyG4vsdsBfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/5de7fb-9488-4e84-83ca-14600d57808a/1/5lKfGQGjoqUCwCWZhYfe2R2HHJA.roa
Signing time: Fri 13 Dec 2024 14:21:22 +0000
ROA not before: Fri 13 Dec 2024 14:21:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13128
IP address blocks: 141.15.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:48:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c0:65:45:38:8e:ca:58:f8:1c:63:63:d4:57:ae:53:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db49122d9e9bbafa577f6447f21b8bec76c05f0
Validity
Not Before: Dec 13 14:21:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6529f1901a3a2a502c025998587ded91d871c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8d:7e:df:d2:26:0f:a7:12:44:3a:3b:ba:b7:
81:d2:bd:01:2b:c7:57:c2:5e:fa:85:45:48:ba:ae:
92:60:e2:f1:eb:bc:d2:8f:2e:a1:5a:f5:c6:74:88:
c1:44:ec:4b:5c:dd:4f:3e:5a:18:96:52:31:66:67:
c9:55:61:53:42:6b:9d:09:11:e4:d7:df:9c:4c:13:
9a:07:7a:f6:8a:13:b4:cc:8f:3e:54:74:b3:f8:47:
53:06:5d:d0:69:45:83:0c:51:18:72:20:72:74:25:
84:2a:f9:92:bd:7a:78:83:d2:9d:8b:6e:4d:b4:92:
57:99:f0:40:c8:ed:42:11:10:f3:67:7c:64:8f:7b:
1e:73:21:59:67:64:3a:17:e5:a7:81:4f:e4:5b:e4:
a5:8f:4c:b4:e1:b3:22:c3:5a:cd:e9:5e:06:57:d6:
c9:4b:b7:9c:3f:be:b3:53:20:61:67:92:1f:28:22:
b1:b2:f3:ec:2e:80:81:fe:6a:ed:a9:21:6b:ea:64:
77:16:55:01:7d:59:bd:4b:a2:73:e6:9c:76:97:5b:
36:a2:04:16:44:dc:44:a8:22:1f:0a:5c:42:f2:41:
be:84:e5:9f:0c:3d:c1:14:76:ff:fa:ff:2e:60:9d:
9d:bf:72:eb:5d:1e:52:7c:06:48:65:3a:7b:14:2a:
ae:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:52:9F:19:01:A3:A2:A5:02:C0:25:99:85:87:DE:D9:1D:87:1C:90
X509v3 Authority Key Identifier:
keyid:0D:B4:91:22:D9:E9:BB:AF:A5:77:F6:44:7F:21:B8:BE:C7:6C:05:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbSRItnpu6-ld_ZEfyG4vsdsBfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/5de7fb-9488-4e84-83ca-14600d57808a/1/5lKfGQGjoqUCwCWZhYfe2R2HHJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/5de7fb-9488-4e84-83ca-14600d57808a/1/DbSRItnpu6-ld_ZEfyG4vsdsBfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.15.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8e:ee:52:65:f6:ad:ec:c6:87:a3:5e:d5:27:d7:d1:f6:e8:dc:
ef:53:09:e4:0e:5d:77:20:d8:3f:ac:30:88:b2:12:a4:2c:45:
7b:00:91:a4:71:92:d6:8e:da:3c:e6:83:d0:17:35:38:89:bc:
b3:f6:92:13:cf:93:33:21:ae:5f:ed:09:2f:99:47:80:96:87:
ca:71:f4:f0:9d:b1:54:c3:4c:92:a6:f7:52:a6:8d:9d:78:61:
a7:38:7e:10:3d:6d:6d:d3:83:b4:45:61:5b:b5:86:f8:64:2a:
e0:8b:54:e8:a4:08:46:57:b5:7c:e0:ff:bf:47:22:38:fd:7c:
f7:00:97:02:ce:2e:20:d2:cd:3c:29:9b:7a:f6:a6:e7:fa:56:
f2:86:0f:1b:e0:c4:1b:aa:2f:4f:e5:f8:90:73:ed:dc:da:7b:
41:c6:ed:aa:56:5b:ae:a6:3e:39:7f:14:c5:91:52:8b:0c:bc:
b0:e1:2e:3d:ff:46:a7:04:5f:38:0d:c5:d6:5d:e8:a6:de:0c:
2b:1f:7d:34:53:e1:a2:41:12:92:06:aa:63:eb:f2:a8:7c:34:
85:68:3a:c0:a3:bb:7b:07:0f:71:b5:ed:c9:2c:a9:6c:f9:3f:
18:5f:0d:8f:6f:57:8b:d8:ea:29:93:bc:68:9f:7d:7e:e5:22:
7a:34:aa:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:38:11 2025 by rpki-client