Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/UxuEoVse3QyHUZm7zFbT_jYllc4.roa
File: UxuEoVse3QyHUZm7zFbT_jYllc4.roa (raw, json)
Hash identifier: 3O4x510aG3lc7azJtCylCCibEnt9OzHJ8McI7jo2e9E=
Subject key identifier: 53:1B:84:A1:5B:1E:DD:0C:87:51:99:BB:CC:56:D3:FE:36:25:95:CE
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018F8134AF3CF56CE48BE1304257945EA6D5
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/UxuEoVse3QyHUZm7zFbT_jYllc4.roa
Signing time: Thu 16 May 2024 11:41:04 +0000
ROA not before: Thu 16 May 2024 11:41:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215158
IP address blocks: 2a0d:7340::/29 maxlen: 29
2a0d:be40::/29 maxlen: 29
2a0d:e080::/29 maxlen: 29
2a11:c0c0::/29 maxlen: 29
2a11:d900::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 16 May 2024 19:16:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:81:34:af:3c:f5:6c:e4:8b:e1:30:42:57:94:5e:a6:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: May 16 11:41:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=531b84a15b1edd0c875199bbcc56d3fe362595ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4d:33:1e:f3:ab:cc:43:0f:3d:28:06:16:68:
2b:75:9b:ce:bb:3b:45:b9:81:78:0f:f6:da:b2:bf:
cd:f1:e8:83:1e:c8:8e:57:76:a3:c1:9e:9f:06:9a:
aa:77:1d:85:7d:df:b3:d3:5a:6a:3d:a8:ac:db:bd:
8f:35:2f:38:1b:fb:77:51:cc:11:83:75:e0:a1:07:
42:05:cf:40:d1:d4:30:ce:76:d5:ee:b9:f3:1c:59:
42:1d:7e:58:9d:2b:e8:be:1d:61:ea:59:21:94:19:
d6:f3:05:e7:a1:e5:af:71:20:0a:e8:c1:c9:77:90:
17:98:23:a4:c9:3c:cb:77:6b:ba:3e:9a:43:d4:73:
a3:1a:84:60:ef:9f:c7:2a:a8:89:36:f1:d9:23:4e:
31:0d:34:c5:21:6f:38:6e:7f:5f:60:e8:11:cd:9e:
2f:73:0d:20:b0:c4:b4:9f:9b:29:9a:bc:8d:f6:19:
00:6b:8b:e9:d5:6e:f8:d4:ab:aa:de:4d:ab:2c:04:
2d:5b:31:9a:2c:64:f4:1b:3c:81:9c:82:5a:f3:aa:
3e:17:89:6d:20:33:5b:f5:08:34:e2:fc:78:a1:33:
3c:b1:e4:a5:1d:2d:02:c1:67:50:a5:5a:5f:af:06:
2f:ac:7b:45:81:31:58:22:0f:c1:06:0c:d7:0e:5e:
07:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1B:84:A1:5B:1E:DD:0C:87:51:99:BB:CC:56:D3:FE:36:25:95:CE
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/UxuEoVse3QyHUZm7zFbT_jYllc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:7340::/29
2a0d:be40::/29
2a0d:e080::/29
2a11:c0c0::/29
2a11:d900::/29
Signature Algorithm: sha256WithRSAEncryption
71:02:08:e9:17:83:8e:8c:0b:7a:e5:e4:f4:90:a6:8b:df:08:
b5:b1:88:1c:9a:5e:68:19:2c:bc:66:9a:0e:da:ff:47:9e:91:
ca:96:72:96:17:dc:3a:d7:e3:83:48:f8:d2:7f:e5:41:10:75:
ea:78:22:00:06:fd:ae:1e:21:c9:3a:8f:12:96:6e:a9:54:07:
e4:22:94:83:9c:04:d9:f4:b7:8e:01:7c:31:6c:10:b1:3b:f5:
15:e0:de:f2:de:57:38:9c:61:df:1b:dc:a6:c7:d5:c0:2b:86:
ba:58:0e:7f:29:77:b0:02:8e:c5:ef:2a:ed:08:30:ca:94:a8:
92:f9:ed:39:98:ac:34:f3:fd:44:58:62:fb:b8:9e:df:7d:b3:
47:ff:13:3c:bc:02:9f:28:31:2d:49:c3:30:b0:58:a2:6e:b8:
d4:31:1e:58:ed:09:76:87:10:9b:13:3f:7e:e2:26:fa:6e:2f:
2c:39:f5:df:8f:bc:23:c3:9a:bb:46:31:88:ab:07:ba:6c:71:
42:d2:cd:4f:67:03:1a:ac:1e:05:e2:9a:73:db:8e:ab:13:3c:
d1:24:b5:89:e1:28:4e:75:fa:65:16:5f:84:76:28:57:d6:ef:
4d:8c:23:0f:68:c3:57:3e:4a:b1:44:e1:5d:cc:95:20:9a:f7:
74:94:0f:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:06 2025 by rpki-client