Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/2fe094-373c-44f6-93e0-d0aecd5d7042/1/vpR7qvHftEe0113cLoqEAiFjAZM.roa
File: vpR7qvHftEe0113cLoqEAiFjAZM.roa (raw, json)
Hash identifier: yBQfKUweW4pPjhltGuc+QhfoEaCGVbIXQTQJjjUEGIE=
Subject key identifier: BE:94:7B:AA:F1:DF:B4:47:B4:D7:5D:DC:2E:8A:84:02:21:63:01:93
Certificate issuer: /CN=2e3487da65e85e87bdac4f5f6758dc6c20ef9763
Certificate serial: 0193555899C59343DF01D587A3B632052677
Authority key identifier: 2E:34:87:DA:65:E8:5E:87:BD:AC:4F:5F:67:58:DC:6C:20:EF:97:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LjSH2mXoXoe9rE9fZ1jcbCDvl2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/2fe094-373c-44f6-93e0-d0aecd5d7042/1/vpR7qvHftEe0113cLoqEAiFjAZM.roa
Signing time: Fri 22 Nov 2024 19:28:09 +0000
ROA not before: Fri 22 Nov 2024 19:28:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215568
IP address blocks: 2a01:f2c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:55:58:99:c5:93:43:df:01:d5:87:a3:b6:32:05:26:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e3487da65e85e87bdac4f5f6758dc6c20ef9763
Validity
Not Before: Nov 22 19:28:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be947baaf1dfb447b4d75ddc2e8a840221630193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:23:5f:b3:aa:d0:b2:a7:1e:a7:35:79:e5:10:
c3:e6:e4:b1:7b:eb:8b:84:61:94:9f:b9:08:65:7b:
c3:03:20:3e:c5:01:b4:21:c2:07:e7:f4:5a:d6:74:
eb:ef:52:fd:7c:0e:ca:6f:a5:8b:99:a5:d6:e0:4e:
24:1a:ce:84:91:63:f3:68:c2:16:c0:a4:d9:e3:d3:
ef:4f:cc:6f:79:11:f1:0f:b6:fd:cd:82:9e:c4:cd:
cc:67:ce:8e:f2:4f:9f:d9:4b:1f:00:d1:57:6f:c5:
3e:6f:63:1b:d8:25:8d:a3:89:64:71:1c:d8:de:19:
1a:4b:22:ff:47:95:46:e0:af:75:17:85:a1:a8:03:
76:dd:b4:d3:dd:a4:b4:35:8d:05:d3:b0:bb:26:51:
77:c2:a2:1b:e8:98:94:aa:b8:4e:45:34:b2:92:45:
cb:6c:1e:56:c2:2e:7c:3a:db:dd:44:e2:06:36:9c:
2d:a8:95:65:ef:45:fe:45:83:e5:22:43:93:07:6d:
21:ba:ef:a8:20:60:f5:da:bc:df:b6:05:86:50:08:
24:1b:89:81:36:e9:fc:a3:de:3d:d4:fa:0c:e5:c6:
7d:f4:c9:cd:c5:08:55:d9:37:b3:fa:3a:a5:77:8d:
e8:bc:2c:2b:bb:b2:33:af:75:7a:15:7e:b0:61:7f:
b6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:94:7B:AA:F1:DF:B4:47:B4:D7:5D:DC:2E:8A:84:02:21:63:01:93
X509v3 Authority Key Identifier:
keyid:2E:34:87:DA:65:E8:5E:87:BD:AC:4F:5F:67:58:DC:6C:20:EF:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LjSH2mXoXoe9rE9fZ1jcbCDvl2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/2fe094-373c-44f6-93e0-d0aecd5d7042/1/vpR7qvHftEe0113cLoqEAiFjAZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/2fe094-373c-44f6-93e0-d0aecd5d7042/1/LjSH2mXoXoe9rE9fZ1jcbCDvl2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:f2c0::/29
Signature Algorithm: sha256WithRSAEncryption
1d:66:c1:ae:e0:5d:c1:c8:fd:2d:64:1d:c0:86:d7:29:72:15:
da:46:3e:0c:40:26:eb:4f:6f:39:03:af:51:67:62:a4:9a:70:
0c:be:2f:a9:7a:2f:94:8a:ea:21:f4:2d:8a:6a:56:64:c0:30:
a6:55:12:19:70:43:aa:97:43:2f:f8:f3:be:d5:7a:f3:3a:f4:
3b:26:b7:d7:d0:ae:cb:c8:67:73:00:a5:c0:93:2c:f3:7a:02:
52:ba:12:1b:42:0f:68:d1:05:a1:7e:27:a2:3a:c7:c6:b9:a3:
07:3f:99:41:a3:78:38:32:62:43:b9:d6:6f:69:05:79:f7:86:
77:b1:9d:27:0d:ae:97:ea:27:3f:4c:ed:b4:60:83:b7:dc:81:
27:df:59:8b:2e:21:88:1b:42:58:4a:01:4c:ed:89:66:08:29:
89:a3:65:54:67:88:c4:35:ff:54:2f:83:41:dc:19:a4:cb:7a:
cd:47:85:eb:8e:69:04:a9:d5:92:c5:57:db:be:b8:45:df:bc:
24:da:c9:90:36:27:e9:9f:71:32:75:dc:80:35:29:85:76:0e:
0b:0e:57:97:2e:29:3c:89:98:a4:ec:26:99:fa:71:97:4c:6b:
ba:8e:02:28:d9:53:c3:d3:54:7d:95:92:7e:0d:01:b6:c7:1e:
b4:3c:98:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:51:18 2025 by rpki-client