Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/uHta-df4nwhhI8F5A7v32V0hJGY.roa
File: uHta-df4nwhhI8F5A7v32V0hJGY.roa (raw, json)
Hash identifier: JDX/H4iJvb2FU2Xi7ySuyumalu8MXcREaIDMImRe21o=
Subject key identifier: B8:7B:5A:F9:D7:F8:9F:08:61:23:C1:79:03:BB:F7:D9:5D:21:24:66
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018FCE01C20811F361999CF361CF6DC56025
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/uHta-df4nwhhI8F5A7v32V0hJGY.roa
Signing time: Fri 31 May 2024 09:36:12 +0000
ROA not before: Fri 31 May 2024 09:36:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47824
IP address blocks: 2a0f:dfc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 28 Jun 2024 12:03:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ce:01:c2:08:11:f3:61:99:9c:f3:61:cf:6d:c5:60:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 31 09:36:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b87b5af9d7f89f086123c17903bbf7d95d212466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:06:1b:2e:e6:d7:e3:d8:dd:d6:65:be:39:57:
68:2e:bb:bb:d2:e2:0b:c7:e5:a3:d9:bc:6b:5f:87:
ce:b2:ab:a9:7b:d8:4c:1f:9a:23:32:7e:a8:18:30:
06:53:ed:58:19:e9:04:a1:d4:23:5f:9f:ea:43:a9:
f0:ba:97:06:85:ab:58:db:e4:9a:52:11:fc:56:17:
f6:8c:2b:17:0c:28:d1:3b:b8:d4:cf:9c:fa:f7:d9:
48:6c:27:fb:f9:3b:6a:3d:7e:aa:a4:2a:96:0d:ee:
8d:3f:91:b6:23:31:dd:74:64:5d:6c:cb:08:d2:d0:
7c:29:3d:19:a8:2b:1f:30:e3:5c:fd:3f:55:20:f1:
54:65:07:a9:8f:7d:e3:2e:37:0e:ac:73:01:a8:64:
71:17:c9:77:b6:7f:d4:a4:8c:64:a2:07:5b:08:ac:
e0:96:70:02:ce:6b:e4:62:02:21:e9:ff:c2:ce:33:
01:f6:b5:88:b5:df:fa:97:16:70:80:48:b0:a5:29:
68:a8:e5:2f:aa:8f:e6:f2:16:45:2d:ac:cf:ac:b2:
62:42:2e:27:9b:c0:93:d1:47:26:f0:d7:62:e7:1c:
fa:f0:84:6c:c5:9c:e1:0f:88:03:e9:84:ce:83:d7:
6c:19:b2:9a:8a:5e:83:73:26:c7:2a:46:f4:da:2c:
aa:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7B:5A:F9:D7:F8:9F:08:61:23:C1:79:03:BB:F7:D9:5D:21:24:66
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/uHta-df4nwhhI8F5A7v32V0hJGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:dfc0::/29
Signature Algorithm: sha256WithRSAEncryption
b3:3b:72:ed:32:ee:78:e8:97:c8:28:a7:8f:1f:e3:1f:62:88:
7a:56:70:27:02:76:45:af:a7:e9:49:b0:14:5e:7a:8a:c9:ae:
50:c5:fa:f1:37:70:6f:3b:bf:0a:d3:d6:52:12:43:e8:ce:bf:
cc:a6:3a:35:c8:7d:b4:69:24:ce:7f:35:4f:02:30:93:b6:0d:
74:f0:8f:c5:d1:9f:70:15:ff:01:68:58:e4:60:57:7b:00:ad:
f6:1c:02:f4:22:17:c0:24:1e:c7:ca:f1:10:99:25:25:8f:5b:
cb:f9:ed:19:a5:94:37:cf:bf:3a:c5:83:5d:5f:24:bd:77:06:
39:18:ec:6f:89:e2:70:b2:fc:f9:a0:f8:7e:9c:30:ec:7b:8f:
bd:ec:d0:20:11:0d:c9:3d:65:35:ae:ce:f5:e5:7c:74:2c:48:
22:7e:43:ae:34:ae:96:e9:3a:2d:44:3c:60:67:fc:e5:d9:5e:
47:9e:20:00:33:54:3e:74:e8:b7:72:94:1b:3f:06:61:41:97:
83:6c:53:99:9c:73:9f:2a:e4:a1:a8:f7:6c:c5:ac:fa:d5:9f:
c8:ec:ea:b0:b8:74:08:be:05:26:80:dd:48:6d:8d:43:9c:11:
47:3f:3b:50:b0:7c:8e:1a:f9:7d:cf:6c:a4:e6:6a:e3:87:6e:
62:59:64:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 02:19:05 2025 by rpki-client