Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/4f7bb9-4d69-49de-9a49-a4d9dc76c2b8/1/w0hOb4_RuGda2fGj8tj2eHNjxDY.roa
File: w0hOb4_RuGda2fGj8tj2eHNjxDY.roa (raw, json)
Hash identifier: P0w902jx4YM1IzVaK4WnCBXX9Td4Yux/nu/WzfDug4o=
Subject key identifier: C3:48:4E:6F:8F:D1:B8:67:5A:D9:F1:A3:F2:D8:F6:78:73:63:C4:36
Certificate issuer: /CN=6da0ee9ff09c7cfc7ee9761f1a3c8f30efac5848
Certificate serial: 018CC7950FE401877C3058C7BCA1AD8A6B46
Authority key identifier: 6D:A0:EE:9F:F0:9C:7C:FC:7E:E9:76:1F:1A:3C:8F:30:EF:AC:58:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/baDun_CcfPx-6XYfGjyPMO-sWEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/4f7bb9-4d69-49de-9a49-a4d9dc76c2b8/1/w0hOb4_RuGda2fGj8tj2eHNjxDY.roa
Signing time: Tue 02 Jan 2024 00:31:24 +0000
ROA not before: Tue 02 Jan 2024 00:31:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 2a13:55c2::/32 maxlen: 32
2a13:55c0::/32 maxlen: 32
2a13:55c5::/32 maxlen: 32
2a13:55c6::/32 maxlen: 32
2a13:55c1::/32 maxlen: 32
2a13:55c3::/32 maxlen: 32
2a13:55c7::/32 maxlen: 32
2a13:55c4::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 11 Feb 2024 12:44:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:0f:e4:01:87:7c:30:58:c7:bc:a1:ad:8a:6b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6da0ee9ff09c7cfc7ee9761f1a3c8f30efac5848
Validity
Not Before: Jan 2 00:31:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3484e6f8fd1b8675ad9f1a3f2d8f6787363c436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:be:30:d0:7b:b5:b4:f7:ee:7e:df:52:23:10:
e0:6a:45:33:92:7c:b1:9e:fa:c9:8e:1e:84:75:80:
e9:cf:9b:a9:92:50:10:d4:95:d3:12:25:df:a0:ef:
8e:e4:d2:45:a0:b4:f9:56:3e:af:b1:0c:58:bc:ac:
df:87:08:9f:ba:70:f7:3f:7d:62:e9:6b:9a:45:50:
f2:63:6b:57:7b:0d:49:47:b0:5b:7f:58:f5:1a:90:
c7:4a:df:0b:b5:70:76:50:98:1a:04:04:5b:73:40:
23:cb:b8:94:4c:35:a2:39:7d:ce:af:63:80:0e:82:
bb:95:ec:c3:14:70:20:81:80:18:ef:b5:29:32:ba:
7c:bc:36:b0:65:90:b8:6c:b6:c9:16:9f:b6:13:4f:
bc:42:34:b4:6b:77:4d:56:5b:78:30:8a:02:a3:d7:
66:0f:ae:e8:52:fc:fd:ec:33:66:73:00:16:a2:34:
4f:d7:31:1e:d6:8a:23:56:72:7b:30:8e:97:69:9b:
3f:64:bc:d8:8a:2d:53:a7:be:30:9a:45:c1:8e:e3:
db:e8:61:f4:af:ab:18:84:19:7c:68:18:dd:6a:85:
66:f1:80:a9:f2:77:7b:ea:24:0a:8a:4c:b2:f5:be:
da:15:4f:94:a5:1f:4f:b6:83:68:46:e7:08:47:27:
52:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:48:4E:6F:8F:D1:B8:67:5A:D9:F1:A3:F2:D8:F6:78:73:63:C4:36
X509v3 Authority Key Identifier:
keyid:6D:A0:EE:9F:F0:9C:7C:FC:7E:E9:76:1F:1A:3C:8F:30:EF:AC:58:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/baDun_CcfPx-6XYfGjyPMO-sWEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4f7bb9-4d69-49de-9a49-a4d9dc76c2b8/1/w0hOb4_RuGda2fGj8tj2eHNjxDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/4f7bb9-4d69-49de-9a49-a4d9dc76c2b8/1/baDun_CcfPx-6XYfGjyPMO-sWEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:55c0::/29
Signature Algorithm: sha256WithRSAEncryption
09:a3:e7:09:29:34:28:6f:ff:9d:9a:09:3d:eb:dc:27:67:3e:
03:17:52:de:3f:7e:5c:2c:17:e9:9c:f6:2e:36:ad:3f:83:29:
cf:65:5c:2c:31:ef:02:fa:b5:1b:f7:ff:bc:79:d1:e1:c3:72:
67:98:5a:8b:c9:6e:1c:4f:bb:b1:ee:78:e5:91:38:44:be:06:
cf:7a:a4:41:86:a7:22:ce:36:a0:9e:c3:88:63:72:94:14:c8:
44:b2:a8:c5:81:97:0a:37:cd:c1:dc:22:e3:4b:08:a4:74:5f:
1d:a4:24:7d:71:08:77:e4:02:0d:fe:e5:ba:6f:cf:40:ee:a3:
d0:09:8e:76:1a:4e:08:a4:4a:25:2d:94:ad:e2:5d:36:b5:51:
4d:ca:f9:e6:f6:fa:f3:ee:ed:80:43:96:a8:aa:c6:1f:8f:20:
96:9e:7c:c4:fc:08:c9:0d:22:8c:74:33:1a:a9:47:a0:a8:30:
1c:f7:54:26:18:cd:b9:95:ef:53:aa:4c:ef:eb:0c:22:1e:1a:
66:13:86:b6:5e:4d:21:2f:0e:50:be:8d:db:05:9a:43:8a:cf:
6b:c7:3b:9e:c8:b8:b3:94:a1:e4:8b:b5:ec:0f:eb:ad:6b:c5:
cb:0d:21:92:44:22:66:45:b4:3f:06:20:d0:39:ed:b2:2f:ad:
bf:11:fa:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:00 2025 by rpki-client