Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/E5dLY7dlEMxRq2l_L-yv-6CrFYg.roa
File: E5dLY7dlEMxRq2l_L-yv-6CrFYg.roa (raw, json)
Hash identifier: nUdBv6iuy3zOMtcf4EMTfw2mTuJ5Q1gfBQQS4iaHBvM=
Subject key identifier: 13:97:4B:63:B7:65:10:CC:51:AB:69:7F:2F:EC:AF:FB:A0:AB:15:88
Certificate issuer: /CN=4da3711dc5de45f2f5b47901659e956d938272fe
Certificate serial: 018CC86F477B81C052E94F8EBC263026A441
Authority key identifier: 4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/E5dLY7dlEMxRq2l_L-yv-6CrFYg.roa
Signing time: Tue 02 Jan 2024 04:29:45 +0000
ROA not before: Tue 02 Jan 2024 04:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204896
IP address blocks: 2001:67c:1384::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:48:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:47:7b:81:c0:52:e9:4f:8e:bc:26:30:26:a4:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da3711dc5de45f2f5b47901659e956d938272fe
Validity
Not Before: Jan 2 04:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13974b63b76510cc51ab697f2fecaffba0ab1588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e2:d4:4b:12:ff:12:d4:1e:10:66:61:8c:20:
57:33:88:d2:3d:3f:55:00:36:e1:df:1b:9c:79:07:
a2:89:3c:87:ea:f0:d4:f4:a2:32:e6:db:41:0e:78:
0f:75:fc:09:ed:ec:a7:f0:cd:f9:60:f8:06:5a:6b:
b7:01:6c:e8:37:03:5f:d0:f7:44:8b:44:ea:e5:75:
04:ad:af:3d:4c:a4:06:36:0d:35:78:26:be:0b:d3:
3c:9e:6f:48:34:46:7b:73:67:7d:63:64:cd:be:9e:
ca:17:98:84:3a:57:43:6e:41:5a:4a:2e:a3:bb:6d:
29:1c:81:31:d5:52:f2:87:fa:50:f2:1a:38:4a:19:
5c:ac:04:d6:f4:79:8e:fc:3a:3d:a0:e7:5c:fc:12:
a1:1c:16:a6:d1:66:ad:39:c1:df:b8:ae:21:44:e7:
41:c2:29:61:f8:5a:3f:33:15:f5:5b:15:87:ae:3a:
a4:39:56:a0:db:8a:6e:4f:d3:1a:b9:b1:c6:18:6c:
cf:5a:69:2c:84:cf:42:e2:b2:14:c5:3e:64:29:b6:
54:d1:30:a9:2e:c2:7d:f8:a0:23:29:f9:7f:18:56:
4b:af:ad:8b:20:e0:62:2b:36:87:f6:41:da:43:3b:
d2:4b:ed:1f:b4:58:ea:7f:dd:e5:1d:9d:5c:91:c6:
92:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:97:4B:63:B7:65:10:CC:51:AB:69:7F:2F:EC:AF:FB:A0:AB:15:88
X509v3 Authority Key Identifier:
keyid:4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/E5dLY7dlEMxRq2l_L-yv-6CrFYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1384::/48
Signature Algorithm: sha256WithRSAEncryption
9a:46:44:30:c5:4b:8f:b2:e5:4e:7c:49:37:2d:f1:12:ed:85:
eb:64:78:cd:b0:e8:36:bc:5e:c3:a4:34:a4:6a:6b:5b:e9:90:
35:31:af:b3:bb:36:11:16:9f:8a:9d:4f:c3:28:1e:22:51:6b:
e5:93:a0:5d:3a:64:5c:df:bf:93:2c:15:0b:03:1b:d8:2b:74:
d5:79:b7:b2:56:a6:b3:7f:b0:a9:c3:90:05:82:a1:72:18:cb:
32:99:29:25:6f:eb:9b:49:4e:e0:33:7b:48:2d:3b:3a:34:6b:
c8:36:fb:75:1f:20:6a:42:53:e2:f5:42:07:d4:22:43:a0:99:
b6:1e:25:17:12:63:ec:1b:8d:9b:16:a8:5f:55:8d:ef:13:49:
de:16:eb:cb:dc:27:c3:be:dd:39:14:2a:b6:9f:e7:2a:09:1d:
12:09:b9:23:1b:b1:7c:00:81:ca:e7:01:16:30:d7:90:cb:06:
3b:1f:cc:89:d4:d6:40:58:f9:ab:ab:5e:85:3c:17:fa:e2:13:
5b:4f:cf:27:26:a6:0b:ae:4c:7d:de:34:44:af:34:72:e6:b0:
86:98:e3:0b:35:9b:55:52:39:3e:f9:66:e6:4c:62:70:9a:41:
15:3f:e9:2c:fd:18:47:52:4d:c6:74:81:97:89:a5:a4:8d:ae:
92:66:1d:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 18:46:53 2025 by rpki-client