Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/de97dd-e721-4192-b8b4-d4b725d0676c/1/vRDqJTgk-P8a6JVMLyQOHvrHZ0o.roa
File: vRDqJTgk-P8a6JVMLyQOHvrHZ0o.roa (raw, json)
Hash identifier: 5VRc0j5iyzGCy7pKzWIX/ObxQzl0tgaMIZlw48Ot+jo=
Subject key identifier: BD:10:EA:25:38:24:F8:FF:1A:E8:95:4C:2F:24:0E:1E:FA:C7:67:4A
Certificate issuer: /CN=1375aa5e37c42f7deb7f3b0e9670bf59a2aca6b5
Certificate serial: 01900341606ED0B1F8F618A883F755ECB542
Authority key identifier: 13:75:AA:5E:37:C4:2F:7D:EB:7F:3B:0E:96:70:BF:59:A2:AC:A6:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E3WqXjfEL33rfzsOlnC_WaKsprU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/de97dd-e721-4192-b8b4-d4b725d0676c/1/vRDqJTgk-P8a6JVMLyQOHvrHZ0o.roa
Signing time: Mon 10 Jun 2024 17:45:34 +0000
ROA not before: Mon 10 Jun 2024 17:45:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214754
IP address blocks: 2a0a:9940::/29 maxlen: 128
Validation: Failed, certificate revoked on Fri 08 Nov 2024 23:13:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:03:41:60:6e:d0:b1:f8:f6:18:a8:83:f7:55:ec:b5:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1375aa5e37c42f7deb7f3b0e9670bf59a2aca6b5
Validity
Not Before: Jun 10 17:45:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd10ea253824f8ff1ae8954c2f240e1efac7674a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:84:65:f5:bf:cc:8b:00:29:4d:27:23:60:77:
b8:9b:51:df:91:ed:8e:3b:29:1d:d3:0f:62:00:fd:
86:4b:e9:4c:47:25:92:a1:a9:cb:12:43:68:d4:ab:
5d:f2:33:1f:03:c9:61:f8:57:49:70:29:7a:73:ea:
25:99:49:41:ca:8b:13:6d:47:6a:9f:ab:e3:c3:3e:
b3:88:c3:14:f7:fe:f9:9e:93:d3:da:bb:fc:8d:fc:
8b:48:4a:a6:5d:61:2f:45:91:b4:2a:84:5f:da:6e:
48:88:e6:87:a0:ef:86:fb:a2:3d:d6:83:bf:35:3b:
10:bf:d5:03:f4:92:1d:21:83:58:ff:af:5e:6c:b1:
3f:aa:26:6f:2e:79:3f:a2:4f:84:ca:cc:b3:b0:c2:
e8:1e:cb:ae:fc:17:a5:eb:64:f9:0a:3f:28:e3:c7:
bc:47:2a:64:36:76:83:08:ca:25:93:20:3d:d3:a2:
92:07:eb:b5:09:ec:90:38:80:bd:6d:d3:fb:62:7d:
a2:07:fd:ab:95:6e:a9:57:03:15:fa:46:8c:fa:0c:
bc:2d:43:ab:fb:0c:93:b3:ee:d1:8f:d1:6b:52:ce:
02:17:2a:cb:38:f6:9e:77:c7:da:60:77:e5:18:d4:
4f:e0:6c:e4:9d:44:4e:cc:f7:79:f6:ec:57:5c:3c:
42:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:10:EA:25:38:24:F8:FF:1A:E8:95:4C:2F:24:0E:1E:FA:C7:67:4A
X509v3 Authority Key Identifier:
keyid:13:75:AA:5E:37:C4:2F:7D:EB:7F:3B:0E:96:70:BF:59:A2:AC:A6:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E3WqXjfEL33rfzsOlnC_WaKsprU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/de97dd-e721-4192-b8b4-d4b725d0676c/1/vRDqJTgk-P8a6JVMLyQOHvrHZ0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/de97dd-e721-4192-b8b4-d4b725d0676c/1/E3WqXjfEL33rfzsOlnC_WaKsprU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:9940::/29
Signature Algorithm: sha256WithRSAEncryption
ac:44:a2:c2:be:fd:ac:b1:e2:b2:c6:bb:93:2e:30:9d:23:4b:
59:bc:4d:97:a3:94:57:ab:4d:cd:94:51:61:cf:d6:9f:77:55:
f0:0c:65:77:a2:21:c9:9e:d4:e2:a8:89:03:94:b8:2f:3a:b3:
51:81:e7:b8:82:04:62:54:7b:60:b8:44:5c:3c:df:65:5e:4e:
dd:54:2b:b2:03:ed:d4:44:2b:39:f0:fc:58:4f:01:67:6d:0d:
22:d1:2f:69:af:58:45:e0:c5:74:9b:6b:6e:04:88:b4:74:b5:
c0:59:65:18:bb:8f:60:16:a4:a9:b4:7c:45:8b:32:2a:36:78:
01:d6:25:fa:ac:25:18:1f:fe:36:b9:84:9d:d0:49:96:2b:92:
d6:da:32:88:b1:c9:00:d3:c9:16:83:10:43:7e:fc:d6:c5:5f:
2c:af:b7:5c:29:7b:ca:48:86:1d:98:97:a8:eb:31:04:8b:89:
cb:25:b3:48:3f:f5:b4:a1:b1:6f:bd:d0:7a:f4:a1:e1:2b:7a:
65:08:62:d8:95:56:a4:e3:94:19:1f:37:a2:30:61:c4:66:63:
b4:a6:2f:92:08:b1:b0:e1:60:28:af:1a:38:cb:94:20:8c:29:
6d:d5:19:ae:b2:de:e9:bf:83:72:09:c0:1a:9d:e4:cc:ed:ae:
b8:e3:90:2c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZADQWBu0LH49hiog/dV7LVCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzNzVhYTVlMzdjNDJmN2RlYjdmM2IwZTk2NzBiZjU5YTJh
Y2E2YjUwHhcNMjQwNjEwMTc0NTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDEwZWEyNTM4MjRmOGZmMWFlODk1NGMyZjI0MGUxZWZhYzc2NzRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroRl9b/MiwApTScjYHe4m1Hfke2O
Oykd0w9iAP2GS+lMRyWSoanLEkNo1Ktd8jMfA8lh+FdJcCl6c+olmUlByosTbUdq
n6vjwz6ziMMU9/75npPT2rv8jfyLSEqmXWEvRZG0KoRf2m5IiOaHoO+G+6I91oO/
NTsQv9UD9JIdIYNY/69ebLE/qiZvLnk/ok+EysyzsMLoHsuu/Bel62T5Cj8o48e8
RypkNnaDCMolkyA906KSB+u1CeyQOIC9bdP7Yn2iB/2rlW6pVwMV+kaM+gy8LUOr
+wyTs+7Rj9FrUs4CFyrLOPaed8faYHflGNRP4GzknUROzPd59uxXXDxCvwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFL0Q6iU4JPj/GuiVTC8kDh76x2dKMB8GA1UdIwQY
MBaAFBN1ql43xC996387DpZwv1mirKa1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRTNXcVhqZkVMMzNyZnpzT2xuQ19XYUtzcHJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9kZTk3ZGQtZTcyMS00MTkyLWI4YjQt
ZDRiNzI1ZDA2NzZjLzEvdlJEcUpUZ2stUDhhNkpWTUx5UU9IdnJIWjBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi9kZTk3ZGQtZTcyMS00MTkyLWI4YjQtZDRiNzI1ZDA2NzZj
LzEvRTNXcVhqZkVMMzNyZnpzT2xuQ19XYUtzcHJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgqZQDAN
BgkqhkiG9w0BAQsFAAOCAQEArESiwr79rLHissa7ky4wnSNLWbxNl6OUV6tNzZRR
Yc/Wn3dV8Axld6IhyZ7U4qiJA5S4LzqzUYHnuIIEYlR7YLhEXDzfZV5O3VQrsgPt
1EQrOfD8WE8BZ20NItEvaa9YReDFdJtrbgSItHS1wFllGLuPYBakqbR8RYsyKjZ4
AdYl+qwlGB/+NrmEndBJliuS1toyiLHJANPJFoMQQ3781sVfLK+3XCl7ykiGHZiX
qOsxBIuJyyWzSD/1tKGxb73QevSh4St6ZQhi2JVWpOOUGR83ojBhxGZjtKYvkgix
sOFgKK8aOMuUIIwpbdUZrrLe6b+DcgnAGp3kzO2uuOOQLA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:20 2025 by rpki-client