Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/S5HFUSKkYEP_aAYcEPMlTokPb18.roa
File: S5HFUSKkYEP_aAYcEPMlTokPb18.roa (raw, json)
Hash identifier: wWR0816cQXbhffVjXMn7OfCfKgZarOsfzzsYz7v0KWI=
Subject key identifier: 4B:91:C5:51:22:A4:60:43:FF:68:06:1C:10:F3:25:4E:89:0F:6F:5F
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01919E9AFC031C3A094AB78CA16D5238CB14
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/S5HFUSKkYEP_aAYcEPMlTokPb18.roa
Signing time: Thu 29 Aug 2024 14:47:22 +0000
ROA not before: Thu 29 Aug 2024 14:47:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 2a07:8a40::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 29 Aug 2024 15:37:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9e:9a:fc:03:1c:3a:09:4a:b7:8c:a1:6d:52:38:cb:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 29 14:47:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b91c55122a46043ff68061c10f3254e890f6f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1a:53:b2:00:d4:42:0a:60:a1:e3:ca:8e:bd:
11:f9:7d:cc:c9:b0:89:34:da:c5:12:06:1b:a2:22:
b5:4a:b7:da:b9:d9:fc:4f:48:99:da:10:5c:cc:e7:
54:70:ac:52:ec:0c:8b:f4:ef:41:90:1d:6f:b8:a4:
8a:95:d7:86:22:00:a8:d9:5f:79:45:58:d5:20:d6:
33:b0:39:f4:2f:6d:0c:95:55:71:59:57:2a:7e:f2:
ae:e3:ab:be:88:70:19:ea:e4:eb:94:f6:33:ee:94:
ba:36:6f:4c:48:6f:1f:f1:b1:d3:a2:d9:be:6d:01:
47:f5:fd:3a:3e:0e:6d:96:86:69:09:9a:07:59:5d:
d7:d1:73:fc:fd:42:c1:e6:11:80:69:4e:35:85:70:
7e:23:09:99:02:76:95:b0:93:3a:16:23:bf:cd:14:
91:82:5c:8c:d8:9f:0e:83:93:9d:cc:90:69:0c:3c:
66:11:fa:9a:03:4c:2c:97:52:92:98:af:c0:ea:5a:
e3:10:e0:34:61:ab:05:d2:d0:d9:9b:11:05:77:82:
19:3d:f4:56:1e:27:a5:01:be:45:c1:02:9e:d3:5d:
8c:08:3d:11:62:9f:56:c1:70:3f:73:46:1f:b8:96:
82:51:88:ff:77:43:1a:f5:cc:aa:2b:bc:ae:a4:df:
ca:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:91:C5:51:22:A4:60:43:FF:68:06:1C:10:F3:25:4E:89:0F:6F:5F
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/S5HFUSKkYEP_aAYcEPMlTokPb18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:8a40::/29
Signature Algorithm: sha256WithRSAEncryption
76:40:b4:92:61:6c:24:11:db:89:70:ac:5c:60:85:6d:28:33:
ce:d2:f9:b2:70:b1:c8:f9:43:69:45:bf:20:64:d0:e6:6b:61:
b0:d4:de:cf:b3:7c:7e:50:d3:6f:21:50:fa:56:f1:37:3c:b8:
a3:e0:4f:47:56:16:15:98:0a:39:68:27:5d:19:07:40:2a:72:
31:bb:a2:82:d1:ff:9e:f9:2f:94:a8:8c:1b:6c:dd:2f:03:4c:
fa:88:62:ff:47:0e:e0:26:2f:ab:fa:8c:cf:44:6a:9e:13:2a:
54:9f:e1:e3:ff:cc:30:0b:d7:9e:40:11:3a:33:d4:a6:e4:80:
25:41:c1:e9:d4:51:f4:d0:38:09:29:d2:8c:da:c8:04:66:bc:
0e:87:7d:c9:d6:67:5f:c2:09:39:e3:2d:b7:ed:a9:7d:3e:f4:
7f:01:fe:74:52:d7:a0:36:71:61:e6:90:a1:c3:61:e6:a2:60:
27:8d:84:06:c6:31:cc:7a:89:de:3b:c8:ff:7d:92:cb:92:4c:
2c:e8:78:9b:d3:4e:9a:6d:93:1e:75:9d:96:f4:77:21:aa:ae:
32:4a:5e:2e:2d:5a:5f:c7:69:18:9b:e1:ad:8c:a9:b5:76:25:
1a:5a:85:82:6b:4c:1f:36:c0:54:2a:e8:10:52:ab:55:10:5a:
7d:d9:d6:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:21 2025 by rpki-client