Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/exoLQ9Y5g1DlqN6yPnYK6mb4hKU.roa
File: exoLQ9Y5g1DlqN6yPnYK6mb4hKU.roa (raw, json)
Hash identifier: 6DYXGXv0KofQmqqI3KfGju6beA9e8YzxqXX8aMNL/XE=
Subject key identifier: 7B:1A:0B:43:D6:39:83:50:E5:A8:DE:B2:3E:76:0A:EA:66:F8:84:A5
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 019408CFF0DCF39409A44F08589D9ED0D432
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/exoLQ9Y5g1DlqN6yPnYK6mb4hKU.roa
Signing time: Fri 27 Dec 2024 15:50:32 +0000
ROA not before: Fri 27 Dec 2024 15:50:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207913
IP address blocks: 128.0.58.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:08:cf:f0:dc:f3:94:09:a4:4f:08:58:9d:9e:d0:d4:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Dec 27 15:50:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b1a0b43d6398350e5a8deb23e760aea66f884a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b9:44:78:d6:7f:4d:9c:96:83:b8:87:f4:02:
a7:e9:2a:4f:24:1c:a6:75:23:d0:26:3a:0e:ef:7e:
ad:04:55:6f:4f:db:36:cb:0c:5f:42:5c:6b:ef:22:
67:8b:5c:b7:2b:74:93:e0:42:60:27:3c:c4:80:2d:
5e:67:c0:d6:39:d0:c9:31:93:95:15:4d:04:99:93:
d5:2e:dc:7b:7f:f9:5a:a8:02:3c:d5:3c:2c:0b:73:
7e:9e:f4:6f:ab:10:97:ac:6f:ea:9a:b7:50:42:ec:
67:ab:78:99:20:43:4b:c2:14:2a:ff:27:cc:7d:e8:
69:51:33:43:92:42:ea:b8:95:8b:a0:15:5f:78:04:
27:86:f3:d3:3c:f3:4d:10:72:a0:8c:47:d9:79:5a:
a4:de:1d:34:b5:3c:69:13:54:e1:16:8e:20:9e:8a:
e0:ff:97:93:36:d1:9f:b5:05:57:08:d9:8f:34:11:
4c:e1:e5:c8:d1:8a:6f:95:ec:87:31:26:6d:25:a0:
c7:41:5f:f5:f0:63:9f:81:3a:0e:01:4b:a8:50:0f:
e4:6c:7d:70:ea:d4:73:1a:87:d5:40:57:68:6b:fa:
f6:f0:80:2f:04:e7:51:43:ac:70:62:58:07:89:72:
dc:2e:46:86:7e:1a:93:b0:72:3f:ff:44:f7:b8:34:
36:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:1A:0B:43:D6:39:83:50:E5:A8:DE:B2:3E:76:0A:EA:66:F8:84:A5
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/exoLQ9Y5g1DlqN6yPnYK6mb4hKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.0.58.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:18:b1:5c:08:a3:7a:06:8b:d9:c8:e9:9f:0b:22:d2:17:f0:
34:f1:f1:a5:73:6e:5d:3b:6e:d5:2b:c1:b7:c2:f7:ad:d1:31:
20:2e:d8:0d:cc:8d:e3:7e:de:97:2a:01:e3:a3:36:46:36:17:
0c:bb:4e:3b:57:e8:91:a3:9f:46:7d:81:c6:9f:2d:30:76:9b:
ce:cb:d3:a0:98:3b:f2:d3:00:98:8f:5e:3b:ea:0c:c4:ed:41:
df:aa:80:8d:ad:dc:d5:8c:40:52:4c:45:48:74:02:86:ae:9b:
38:ab:af:d8:5f:29:0e:7e:de:32:10:42:9e:51:9e:75:ba:f7:
f4:56:1c:6a:db:5e:07:3b:55:98:03:48:22:9a:c1:29:58:c4:
32:60:2c:ac:ba:ec:95:8d:63:79:9e:48:6e:aa:08:2b:e3:04:
8c:9d:11:73:b7:6e:97:16:62:ba:61:b2:be:02:bc:59:1a:11:
51:a5:6a:e1:2c:fd:f3:68:07:13:b0:d1:62:1f:ad:12:64:12:
ac:45:a5:33:98:d6:57:41:bb:a9:9d:9b:cd:45:61:4b:bc:3a:
60:31:5f:68:5e:41:da:de:34:fe:d2:2d:bc:4c:14:5a:e5:73:
bf:e8:fc:a7:87:fd:e3:d7:a7:57:47:2b:34:93:39:5d:17:13:
81:7a:43:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:35 2025 by rpki-client