Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/cFDtFfyz_U1p3AElWg-T1eav6Ow.roa
File: cFDtFfyz_U1p3AElWg-T1eav6Ow.roa (raw, json)
Hash identifier: Rz1LtNDwhKHJOEeDkTTHfaaLQumTLfKGdvTw6n+oSqY=
Subject key identifier: 70:50:ED:15:FC:B3:FD:4D:69:DC:01:25:5A:0F:93:D5:E6:AF:E8:EC
Certificate issuer: /CN=62d18b312e353e78fa8ee5f80d36f741cdcde3aa
Certificate serial: 0194206873FCE4F501A770F76C8C3E3E71B3
Authority key identifier: 62:D1:8B:31:2E:35:3E:78:FA:8E:E5:F8:0D:36:F7:41:CD:CD:E3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YtGLMS41Pnj6juX4DTb3Qc3N46o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/cFDtFfyz_U1p3AElWg-T1eav6Ow.roa
Signing time: Wed 01 Jan 2025 05:48:23 +0000
ROA not before: Wed 01 Jan 2025 05:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 398465
IP address blocks: 2a01:e100::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 31 Jan 2025 21:56:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:73:fc:e4:f5:01:a7:70:f7:6c:8c:3e:3e:71:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62d18b312e353e78fa8ee5f80d36f741cdcde3aa
Validity
Not Before: Jan 1 05:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7050ed15fcb3fd4d69dc01255a0f93d5e6afe8ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a3:22:27:02:17:5c:ec:31:06:a5:7b:0e:4b:
38:63:0e:a0:b0:90:71:5c:79:1a:74:8f:b5:0f:42:
bb:d9:30:a7:0f:2a:17:90:00:92:34:f5:5e:54:45:
42:5f:ff:49:fb:16:89:b9:0b:8d:35:37:61:04:f2:
dd:8c:4c:02:e1:b2:3c:75:b0:0b:1c:b0:3f:47:26:
bb:c8:a3:35:06:0c:74:c0:fe:e9:2d:05:1c:ea:60:
47:29:fd:7e:45:d0:f0:dd:d3:f4:d9:ac:56:42:7e:
54:62:26:1b:92:32:2e:34:05:26:cf:f2:58:65:95:
23:43:9a:ec:30:99:65:82:2d:72:e2:01:ca:48:6b:
ae:87:fc:39:c7:df:34:20:36:f4:c4:3f:23:f4:25:
e6:43:13:0b:3d:06:ab:6a:25:d4:f3:71:4a:20:2d:
ae:8e:d0:61:eb:ae:ca:cb:ba:64:13:ac:6a:aa:90:
43:c8:28:96:51:50:d4:54:3c:7f:ad:f8:b8:f4:a1:
31:d6:58:bc:aa:f0:1b:8a:5e:80:b0:63:47:2c:b1:
58:f9:eb:ab:1d:05:d5:e7:62:c5:b9:52:4f:30:d2:
21:ed:fa:7f:fa:3b:b0:df:8a:0b:07:32:84:5a:a0:
57:58:8c:a5:24:51:f5:26:ef:55:ea:ab:a7:80:fc:
f9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:50:ED:15:FC:B3:FD:4D:69:DC:01:25:5A:0F:93:D5:E6:AF:E8:EC
X509v3 Authority Key Identifier:
keyid:62:D1:8B:31:2E:35:3E:78:FA:8E:E5:F8:0D:36:F7:41:CD:CD:E3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YtGLMS41Pnj6juX4DTb3Qc3N46o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/cFDtFfyz_U1p3AElWg-T1eav6Ow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/YtGLMS41Pnj6juX4DTb3Qc3N46o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:e100::/29
Signature Algorithm: sha256WithRSAEncryption
24:b8:d6:66:0f:c5:fa:a8:bf:d7:88:22:81:db:40:98:a2:5e:
dc:be:27:74:c0:42:33:06:9b:16:39:a0:03:c2:96:93:1b:ad:
81:dd:b6:31:97:2f:ae:de:dd:e4:1f:55:87:1f:18:a6:8a:16:
01:dc:73:ca:db:4b:0e:d8:57:91:8d:2d:da:c3:69:85:97:34:
4a:01:d1:91:4f:38:d9:3a:59:5e:ee:31:f6:81:92:0f:b5:f9:
08:8a:44:ba:3a:c2:c3:44:cc:84:e4:33:57:d6:06:92:26:fa:
df:9e:db:40:b8:02:8c:8a:d3:70:97:0d:91:f9:b9:d4:a2:a6:
be:6c:79:0a:4f:dd:a2:0b:67:56:b8:d9:45:21:6c:1b:11:e6:
6f:d9:80:31:a5:ea:d6:5f:e9:01:6a:0c:bf:f5:71:51:06:10:
8c:c0:3e:ad:2d:a7:40:c9:4a:38:e1:ae:32:83:b4:04:25:14:
b0:d8:56:71:0c:c8:b7:9d:32:23:0d:8b:a2:07:2d:23:8f:99:
06:85:90:7a:80:5b:de:d7:a7:d4:20:75:8d:d2:f8:62:df:61:
d8:b2:00:8b:be:2d:5b:09:dd:76:47:07:c7:37:35:f1:f8:f5:
e4:4e:65:ff:18:77:21:63:1a:a5:e0:f5:ba:84:ea:26:55:64:
1a:e0:b0:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:23 2025 by rpki-client