Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/3uus8ww2SbPAjnr848O2TNs-D5c.roa
File: 3uus8ww2SbPAjnr848O2TNs-D5c.roa (raw, json)
Hash identifier: NuOBQcI/pUV9EOKxchJS0Hw9uETtAEEHbR59A5A6FJQ=
Subject key identifier: DE:EB:AC:F3:0C:36:49:B3:C0:8E:7A:FC:E3:C3:B6:4C:DB:3E:0F:97
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0193B45AB1F9C8F4588F8ABF8A41C1F09C56
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/3uus8ww2SbPAjnr848O2TNs-D5c.roa
Signing time: Wed 11 Dec 2024 06:14:22 +0000
ROA not before: Wed 11 Dec 2024 06:14:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.180.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Dec 2024 18:25:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b4:5a:b1:f9:c8:f4:58:8f:8a:bf:8a:41:c1:f0:9c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Dec 11 06:14:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=deebacf30c3649b3c08e7afce3c3b64cdb3e0f97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1b:d3:28:61:67:69:74:3d:98:d9:b5:b0:7e:
3e:42:92:b7:5f:eb:1a:1b:e9:50:64:d8:cd:64:2e:
41:2f:80:e4:61:d5:41:34:17:dd:1a:ed:56:5f:17:
4a:0d:f6:9b:ec:53:87:50:e1:28:46:d5:1a:f7:3a:
93:3d:38:ad:c1:48:aa:40:81:40:b1:55:01:1b:e7:
56:5a:04:7a:10:76:68:89:75:8e:af:1d:49:48:54:
b8:56:93:a6:67:fa:75:af:79:60:a0:b9:45:5d:a4:
35:7e:74:b2:63:9c:ea:24:a8:45:8f:6a:5f:bb:20:
6c:f6:6d:d2:09:ef:6f:d4:e7:b2:fe:a0:6d:21:0b:
5c:8d:58:20:16:95:a9:99:7f:e4:7f:3b:59:13:9e:
cd:db:af:22:94:2a:8b:c5:02:c3:e3:07:cf:99:e6:
37:34:e3:93:fd:9b:16:92:f4:c6:ce:fc:32:1f:e5:
e9:a4:c4:f4:03:07:83:2f:98:db:61:e8:a8:c0:53:
83:07:47:7c:1c:64:e8:b4:f9:61:c9:8d:de:35:ae:
55:e8:5c:9a:71:19:33:ab:2a:20:0c:0e:a8:3d:f7:
a4:59:2b:24:ae:81:bc:7e:cb:4a:ee:a3:ab:dd:f3:
59:60:70:54:19:a9:36:11:fa:06:db:93:4d:3d:df:
38:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:EB:AC:F3:0C:36:49:B3:C0:8E:7A:FC:E3:C3:B6:4C:DB:3E:0F:97
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/3uus8ww2SbPAjnr848O2TNs-D5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.82.0/24
Signature Algorithm: sha256WithRSAEncryption
80:f2:2d:d3:46:81:51:60:85:b6:38:b8:24:e8:0e:d8:0b:01:
55:dd:b1:6b:93:32:9c:22:c5:23:ef:be:e8:d7:aa:d0:32:5b:
5a:79:05:8b:e8:6a:08:71:db:f5:77:54:c8:9f:5b:e0:b9:28:
fc:e1:20:9e:87:77:98:c3:6e:4a:7d:5a:07:6d:c8:a4:c9:db:
1b:d2:03:99:8b:71:3a:9a:28:9c:c3:c2:8a:89:bc:a4:3a:03:
6a:d2:09:bc:e0:a5:b6:f8:68:dc:c6:72:19:a7:81:fc:ec:bf:
41:1e:de:c9:d5:66:61:90:0b:e1:67:d1:40:04:7e:62:5d:71:
ff:4c:c3:a7:c5:f3:c5:70:ac:f6:1d:7c:e3:35:7f:17:a8:aa:
ec:03:9c:5f:df:14:56:33:e4:20:e3:e2:a5:cb:da:d6:d5:d8:
4e:37:2c:3b:ae:23:5b:86:0c:99:5b:5a:0d:6f:85:23:f2:4c:
44:db:bc:15:ee:3c:6f:c2:05:2b:c6:0d:4f:d4:57:d4:a0:c3:
b5:aa:05:84:f1:c4:39:1a:46:21:3e:7a:7d:64:16:d3:22:26:
7d:0b:d9:bb:22:af:02:a2:ea:3f:78:43:76:54:99:34:59:c9:
b9:7e:1f:73:a9:8e:4c:95:d6:80:2b:96:e8:e5:9f:b2:e1:3a:
92:30:d8:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:59:17 2025 by rpki-client