Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/RqHTNwjbCv7vR8OQN277_rVuQG0.roa
File: RqHTNwjbCv7vR8OQN277_rVuQG0.roa (raw, json)
Hash identifier: 1qKb9mSMn6C17/tfteUlx6iOikqD0krYsAlsuKLHmBw=
Subject key identifier: 46:A1:D3:37:08:DB:0A:FE:EF:47:C3:90:37:6E:FB:FE:B5:6E:40:6D
Certificate issuer: /CN=b0b56d10ccad9d69c01856be0afaa17ec682acbf
Certificate serial: 0191794E07E684D5631732C7B6F353E64468
Authority key identifier: B0:B5:6D:10:CC:AD:9D:69:C0:18:56:BE:0A:FA:A1:7E:C6:82:AC:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLVtEMytnWnAGFa-CvqhfsaCrL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/RqHTNwjbCv7vR8OQN277_rVuQG0.roa
Signing time: Thu 22 Aug 2024 08:57:22 +0000
ROA not before: Thu 22 Aug 2024 08:57:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216394
IP address blocks: 2a01:f900:f900::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 05 Oct 2024 01:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:79:4e:07:e6:84:d5:63:17:32:c7:b6:f3:53:e6:44:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b56d10ccad9d69c01856be0afaa17ec682acbf
Validity
Not Before: Aug 22 08:57:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46a1d33708db0afeef47c390376efbfeb56e406d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:92:40:87:b7:88:eb:10:60:8d:95:05:00:88:
dc:61:06:9f:43:c1:1c:b1:fd:91:c1:81:e6:df:78:
b1:3a:97:0a:67:06:bf:6b:6c:0b:29:76:88:2b:46:
a1:8a:d8:1d:95:52:4f:7d:d1:c0:fb:92:72:85:a9:
4d:82:39:43:7c:2f:81:bb:33:2b:6f:14:ba:46:79:
5f:54:92:70:e7:4e:1d:91:1c:3c:1f:1c:57:da:4a:
28:00:36:86:85:fb:43:8a:55:6c:c3:e1:39:50:72:
d0:09:c2:24:97:63:3d:99:f2:52:06:45:24:fa:f2:
8a:2c:10:71:e0:57:92:3d:27:7e:76:70:76:95:2f:
7e:d7:83:9d:b5:fc:d0:17:ba:f2:38:16:08:38:56:
d8:fc:57:89:5b:9f:fb:b1:1b:08:0f:42:6e:7a:0e:
0c:79:c8:1d:3c:3e:01:9d:49:cd:56:a3:6a:78:39:
95:58:84:f4:72:95:e0:51:cb:92:bd:a6:29:51:bc:
7c:cd:55:53:24:ac:4c:1d:03:4c:70:89:7b:39:b0:
81:c6:39:34:41:b1:33:9f:7e:cd:b0:0e:c4:f0:88:
96:6c:3c:11:dc:f9:4f:0f:a2:af:77:35:32:e3:10:
f7:d7:61:37:e0:33:5e:89:9c:5d:f0:64:46:98:31:
94:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A1:D3:37:08:DB:0A:FE:EF:47:C3:90:37:6E:FB:FE:B5:6E:40:6D
X509v3 Authority Key Identifier:
keyid:B0:B5:6D:10:CC:AD:9D:69:C0:18:56:BE:0A:FA:A1:7E:C6:82:AC:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLVtEMytnWnAGFa-CvqhfsaCrL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/RqHTNwjbCv7vR8OQN277_rVuQG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/69409e-1ec4-489d-b61f-a19cc8a76d04/1/sLVtEMytnWnAGFa-CvqhfsaCrL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:f900:f900::/48
Signature Algorithm: sha256WithRSAEncryption
6c:fe:c2:fb:02:63:93:e0:1a:8a:e5:51:63:79:12:af:6e:f1:
26:19:66:0f:e3:d5:f0:43:75:28:25:2d:be:1d:1e:27:79:9f:
e5:18:49:34:c0:b8:0a:2a:0b:72:5e:e5:49:e3:34:5e:79:64:
91:a2:bc:4c:33:50:c6:9a:86:4c:d0:78:47:1c:1a:67:62:5b:
93:af:58:c2:a7:83:96:2e:cb:a4:a5:86:b9:32:5c:05:95:01:
66:e1:29:c0:93:4a:e8:fb:4d:38:7d:48:b7:77:0f:b5:85:4b:
21:89:8d:25:be:2f:33:d1:7a:e5:78:13:cd:5c:0b:ce:68:46:
bc:7a:25:25:ce:41:ef:ac:68:0d:44:f2:2e:be:50:e6:2a:18:
f2:e4:0f:ca:d8:d8:75:93:1f:41:59:f1:1c:ee:60:c7:66:b2:
78:67:5e:ff:23:ec:57:c0:05:20:42:d5:95:6a:51:f4:20:bb:
da:6e:83:12:8b:63:55:e6:d6:ce:49:0c:a9:61:4b:21:f5:39:
1e:34:f5:98:51:b8:87:cd:17:9e:19:75:bf:c8:c1:e9:a8:f9:
ec:1c:3a:8b:d1:1a:f1:dd:3a:9e:12:6e:9e:68:ed:02:47:e0:
ec:2f:c3:bf:d5:0a:8d:ea:49:c4:4e:ca:7e:e2:7b:d1:2c:4c:
65:30:49:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:57 2025 by rpki-client