Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/KqHKib3Zs6d1w6kdM7V6gt1Gz1Y.roa
File: KqHKib3Zs6d1w6kdM7V6gt1Gz1Y.roa (raw, json)
Hash identifier: ij5mdf1rk6Mcqx+f9Bf5IKkuVc+NTo3DmT4bA6t5Dok=
Subject key identifier: 2A:A1:CA:89:BD:D9:B3:A7:75:C3:A9:1D:33:B5:7A:82:DD:46:CF:56
Certificate issuer: /CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Certificate serial: 018CC86F5ACC84F2F123AA62BCBC48A75968
Authority key identifier: 73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/KqHKib3Zs6d1w6kdM7V6gt1Gz1Y.roa
Signing time: Tue 02 Jan 2024 04:29:49 +0000
ROA not before: Tue 02 Jan 2024 04:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60404
IP address blocks: 2a0b:b600:1000::/38 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:50:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:5a:cc:84:f2:f1:23:aa:62:bc:bc:48:a7:59:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Validity
Not Before: Jan 2 04:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2aa1ca89bdd9b3a775c3a91d33b57a82dd46cf56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:df:7e:ac:cf:99:5c:f8:19:4a:c3:ee:52:53:
a2:f2:de:ec:59:58:b8:eb:70:8d:88:72:bb:d0:9f:
02:75:84:97:c3:d5:58:ec:f8:fc:33:07:7b:46:af:
5f:3f:9c:cf:33:95:b1:a4:26:68:96:d3:4b:50:29:
b6:67:08:da:98:3c:6f:62:b5:ca:a6:b6:2c:52:d5:
80:35:8b:88:6e:a8:f8:2a:ef:86:44:af:1e:0b:34:
b5:be:b2:c2:c1:1f:e9:cb:6a:a3:e4:83:4f:0d:18:
a7:39:cd:66:b1:3a:25:0b:a2:67:3a:a0:f3:01:34:
32:9f:eb:03:89:03:39:f7:3a:52:1a:69:bd:07:e2:
2c:f9:67:99:f3:ab:b9:89:79:df:5c:22:39:d2:30:
25:03:47:c1:b9:37:09:b6:c5:c5:dc:60:ee:45:2e:
f3:9f:b5:64:04:73:7e:ca:a1:10:39:3e:72:89:f0:
ed:d9:f7:b8:b4:7a:22:44:7d:5a:51:ff:7b:c7:b8:
d9:34:c1:3b:6f:8f:49:8d:ce:ef:5d:d9:68:b0:07:
3d:d4:f4:e9:53:3c:50:a2:f9:95:f7:db:7e:b6:99:
8d:18:c8:88:9d:1b:6f:3b:b2:92:c7:68:f0:b6:6c:
b3:a8:cd:3d:fe:e1:49:33:0d:c0:ab:90:3a:cc:31:
04:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A1:CA:89:BD:D9:B3:A7:75:C3:A9:1D:33:B5:7A:82:DD:46:CF:56
X509v3 Authority Key Identifier:
keyid:73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/KqHKib3Zs6d1w6kdM7V6gt1Gz1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/c_mGx3Bb2AjBsC69dU-_qRgH6bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b600:1000::/38
Signature Algorithm: sha256WithRSAEncryption
c0:7b:5d:3a:25:5c:da:3a:6b:14:97:82:ed:21:a4:dd:ce:c6:
88:96:b6:4e:4b:4b:d6:ed:ee:92:42:93:fa:93:31:e1:84:4f:
ef:87:57:a3:fa:e1:a8:b4:4e:45:81:67:63:84:d2:15:2c:ea:
8a:93:ab:86:06:d5:25:c4:e5:b4:e9:61:5d:2d:7e:1a:1b:0a:
f4:15:36:db:c4:58:d9:c6:cb:30:9f:42:06:18:97:5d:c7:69:
49:29:d4:63:06:60:46:36:ed:e4:48:de:e4:e5:b3:83:7a:e2:
f0:87:a5:b6:65:fa:f9:f0:3f:ee:ee:70:89:57:d5:97:5d:ac:
71:fd:fd:a0:7f:da:8e:0f:30:49:23:73:1f:56:05:b2:e8:da:
29:97:0f:d3:77:15:c5:f4:3c:a5:fd:a4:94:d2:c2:fa:3b:8e:
2c:a7:20:04:bf:ba:7f:54:c2:3c:36:16:fa:20:1b:10:60:8b:
2f:87:1c:e3:7f:a2:d9:c3:4c:bc:61:bf:c5:90:58:43:21:8c:
38:bc:12:30:1c:31:45:d5:4e:75:e2:22:6c:03:62:c9:f1:91:
23:cf:31:3f:5f:5a:4a:63:f4:ac:05:bf:73:f8:a8:b5:0e:4d:
d0:a9:6f:3f:11:ef:9b:18:6a:13:c4:9d:29:d8:12:16:fe:94:
c2:75:6e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:58 2025 by rpki-client