Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/6QxV4ZeNXwjsHQTajz7n4QTUVAU.roa
File: 6QxV4ZeNXwjsHQTajz7n4QTUVAU.roa (raw, json)
Hash identifier: mBgGdjyd2/yc+zjfaUJ5y+aPZjru7/0q+36KKXGXZNc=
Subject key identifier: E9:0C:55:E1:97:8D:5F:08:EC:1D:04:DA:8F:3E:E7:E1:04:D4:54:05
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 018CC9BC70DC7044CB025CC02EA8363D2538
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/6QxV4ZeNXwjsHQTajz7n4QTUVAU.roa
Signing time: Tue 02 Jan 2024 10:33:39 +0000
ROA not before: Tue 02 Jan 2024 10:33:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209334
IP address blocks: 2a0d:f407:1001::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 07:48:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:70:dc:70:44:cb:02:5c:c0:2e:a8:36:3d:25:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:33:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e90c55e1978d5f08ec1d04da8f3ee7e104d45405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:db:00:4b:c1:7c:4a:c6:2c:4a:c0:b1:5b:4e:
84:1f:0c:73:c0:7b:4d:51:f7:12:dc:61:fc:82:3d:
78:3f:38:e7:a1:be:c7:7e:aa:1d:3a:22:54:ff:86:
4c:6e:42:6b:67:b5:80:ec:62:25:77:17:4f:47:66:
12:9c:9e:b4:ad:68:ca:df:05:33:56:a2:0d:1f:2a:
38:48:3f:89:61:84:30:32:42:d6:5b:39:d5:d4:fb:
f5:bf:b9:79:9a:05:93:b6:a4:16:0d:5e:a3:01:69:
a3:eb:98:92:5c:e4:da:90:6c:96:6c:81:7a:2d:2f:
e5:58:9e:9b:99:76:3a:c0:6d:66:c7:34:1f:a4:df:
a5:94:c0:67:f2:ff:d2:6c:e9:7d:28:dd:6a:04:15:
86:5f:b8:54:e2:48:93:03:29:a1:6e:dc:8d:cd:0a:
9d:ff:1e:61:f5:79:05:54:e3:b1:61:ab:73:66:cd:
04:f5:ac:c9:1d:34:3b:a2:38:cd:ac:ae:e1:56:df:
c5:45:b3:88:02:9d:2e:57:cf:7c:c7:80:65:73:48:
ec:be:9c:3d:6b:29:2c:4a:ee:19:7a:18:da:5d:b7:
1f:85:ad:30:93:81:c1:d1:2f:4f:9b:2c:a4:38:5d:
26:b5:e5:d8:b6:03:51:7c:08:19:2b:6c:f5:b4:18:
9f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0C:55:E1:97:8D:5F:08:EC:1D:04:DA:8F:3E:E7:E1:04:D4:54:05
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/6QxV4ZeNXwjsHQTajz7n4QTUVAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f407:1001::/48
Signature Algorithm: sha256WithRSAEncryption
68:13:ca:aa:85:d2:a8:37:38:91:16:42:02:13:3d:0c:97:d7:
30:b2:7f:32:e3:0e:6c:d6:d7:84:f2:4f:27:2a:c0:1e:ec:f7:
9b:2c:b4:0d:bd:33:f2:73:73:01:9d:50:19:d8:8c:04:79:a4:
6d:47:38:b0:1c:c4:21:5d:54:72:13:53:fd:26:19:38:79:78:
9d:54:c2:eb:f1:08:4e:98:3a:d2:34:68:ea:3a:58:31:c0:6f:
1d:2d:a5:9c:d6:73:51:f0:bd:80:c7:c0:9a:ac:a3:be:8f:13:
94:1b:b5:39:b8:2b:8e:af:98:3f:64:ce:ae:ac:0a:33:2a:7e:
20:ec:00:ff:83:4c:bd:1c:c2:38:c8:a7:ea:9a:6a:d8:b0:8a:
e6:1a:80:a4:a2:b3:87:da:ac:cb:24:6a:de:28:3d:15:ca:df:
cf:07:98:27:1b:99:f4:f7:25:7d:a6:83:a6:54:ed:6e:80:81:
09:c7:e4:fc:82:68:64:3a:68:fd:2c:66:a2:c0:71:7d:22:e6:
96:97:6f:ab:d7:d4:86:ee:00:54:07:60:07:78:3c:50:d7:f8:
82:51:e2:1e:aa:bc:ff:78:b4:8f:3f:7e:00:c8:37:a3:2e:1a:
e9:c5:e3:35:80:20:38:b2:e5:4f:4a:ff:5c:04:bc:bd:8f:c5:
40:26:26:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:39:32 2025 by rpki-client