Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/T_-WzQ7xNHJFRVxPLtKLs-wwvXc.roa
File: T_-WzQ7xNHJFRVxPLtKLs-wwvXc.roa (raw, json)
Hash identifier: 1fJP5MDXdcrkWYg34ejbzF1CL+3N+Z4cJe6svHI7uXs=
Subject key identifier: 4F:FF:96:CD:0E:F1:34:72:45:45:5C:4F:2E:D2:8B:B3:EC:30:BD:77
Certificate issuer: /CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Certificate serial: 018F76847FD779FDCE897CAB8146A5E194BC
Authority key identifier: AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/T_-WzQ7xNHJFRVxPLtKLs-wwvXc.roa
Signing time: Tue 14 May 2024 09:52:25 +0000
ROA not before: Tue 14 May 2024 09:52:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200443
IP address blocks: 2a13:5f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 17 May 2024 10:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:76:84:7f:d7:79:fd:ce:89:7c:ab:81:46:a5:e1:94:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Validity
Not Before: May 14 09:52:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fff96cd0ef1347245455c4f2ed28bb3ec30bd77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2d:3f:f6:af:81:5c:03:f1:ff:b6:51:10:bc:
b1:9f:8e:d6:a5:b0:14:9e:91:4d:2a:77:88:61:96:
00:59:a1:6a:8c:77:19:40:f8:2d:0a:3c:af:bd:2d:
e9:d6:c5:8b:3a:3a:56:9c:c0:01:9f:99:ab:b8:4e:
09:06:cf:53:4e:09:e7:bf:01:55:f1:ed:4e:3b:b4:
3a:34:03:4c:c9:e1:fe:5a:0a:93:06:b4:1e:75:c8:
aa:c9:d7:90:3f:bc:7d:8b:14:ff:cd:fe:cb:0f:59:
26:3e:17:99:25:01:88:95:06:61:7e:26:53:08:b4:
75:6b:04:7d:91:9b:86:54:c4:19:a2:bc:21:69:fa:
20:d3:30:ef:53:83:79:4c:9e:f5:29:57:00:e2:d8:
fe:9a:69:0b:b4:09:80:a1:2d:c9:5b:4f:c9:1e:c9:
6b:21:16:64:5e:0e:d1:3e:af:7d:db:b9:25:82:a6:
89:88:28:db:8d:89:68:a7:3c:f9:49:72:c5:5e:24:
6e:9c:f4:56:01:d6:d0:cb:93:36:ca:a8:5e:78:2d:
96:df:1a:1e:bb:91:70:9f:c3:64:39:09:01:a2:61:
b2:95:c5:69:d8:6a:0b:65:57:20:bb:99:52:81:5a:
c3:e1:b2:f4:23:8e:08:fb:4d:3d:83:0d:6b:4c:04:
43:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:FF:96:CD:0E:F1:34:72:45:45:5C:4F:2E:D2:8B:B3:EC:30:BD:77
X509v3 Authority Key Identifier:
keyid:AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/T_-WzQ7xNHJFRVxPLtKLs-wwvXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5f40::/29
Signature Algorithm: sha256WithRSAEncryption
bd:84:a4:db:52:4d:ca:cc:d7:77:69:39:d7:29:ad:66:f2:80:
b5:81:0d:8f:f8:76:d6:e9:4f:0b:08:e4:47:2e:9a:b3:3a:31:
96:4e:d5:49:14:2d:d4:95:ac:ae:82:84:99:c6:75:84:6e:74:
c4:c4:e4:af:64:d0:3b:54:85:c3:8d:6a:ea:69:e8:35:4b:70:
d9:71:29:9b:c1:4a:ff:7a:c9:48:6e:d9:d5:13:7d:f3:a4:33:
c0:a4:8c:90:36:10:db:42:72:dc:b3:25:84:5a:b6:9b:26:88:
38:fc:95:74:7c:d2:4c:9b:43:28:6d:93:fa:45:7e:55:ab:7a:
d9:45:62:8f:fb:51:15:c3:28:be:35:2e:5b:63:c0:05:54:64:
51:0b:7c:8d:c8:7d:2a:a2:a6:23:0a:ed:1a:f1:43:c2:92:bb:
c3:37:f7:d3:5b:85:a0:ac:86:d1:9d:46:a5:78:b8:48:38:2c:
4f:7a:03:24:e9:49:24:4d:a8:de:3c:73:3b:ff:82:d9:a0:53:
e9:1e:41:34:28:d3:4c:0f:84:85:14:a1:1d:3d:64:74:49:dd:
1e:67:94:d1:5b:40:d3:53:c0:b4:4f:11:56:30:93:44:98:0d:
2e:82:28:1f:ca:07:a0:52:44:1e:4b:6b:98:c5:35:58:29:a3:
15:ab:05:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:47 2025 by rpki-client