Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/xR9s75oWFsVDdeo4_Qrlo0yzfeo.roa
File: xR9s75oWFsVDdeo4_Qrlo0yzfeo.roa (raw, json)
Hash identifier: q3u4QiCIHQ6hz7b1r0UmrsNT4BiTMzsIDGi1UPvffFs=
Subject key identifier: C5:1F:6C:EF:9A:16:16:C5:43:75:EA:38:FD:0A:E5:A3:4C:B3:7D:EA
Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Certificate serial: 018E12CB8AD416F200E3A233B8214BC96452
Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/xR9s75oWFsVDdeo4_Qrlo0yzfeo.roa
Signing time: Wed 06 Mar 2024 08:05:13 +0000
ROA not before: Wed 06 Mar 2024 08:05:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25417
IP address blocks: 2001:67c:266c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:12:cb:8a:d4:16:f2:00:e3:a2:33:b8:21:4b:c9:64:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177
Validity
Not Before: Mar 6 08:05:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c51f6cef9a1616c54375ea38fd0ae5a34cb37dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1d:6c:42:13:3a:af:31:8f:c4:97:5f:5b:52:
a6:f9:3f:0c:9d:42:a7:e1:fe:bf:1f:14:31:7d:30:
bc:ed:af:b0:a7:91:fb:be:da:d2:be:02:80:73:45:
14:00:4e:6e:76:32:01:a9:d6:ea:6d:2e:d7:4d:f1:
71:60:f5:9c:bf:56:53:bf:bb:66:75:18:60:71:fa:
a5:9e:83:b4:85:17:98:91:15:e7:bd:3e:91:9d:92:
de:2a:e1:10:39:0b:7a:6d:93:00:7d:56:3c:c3:7c:
7b:9f:a4:57:e4:b0:b0:a8:60:b7:45:b6:96:aa:58:
ef:30:6e:e3:fa:f9:a6:21:1f:d7:5f:1f:31:6b:58:
3e:cb:83:a9:f3:78:9a:d6:5e:23:0d:22:12:f4:94:
bf:6a:f3:9a:ba:ad:40:7f:90:54:27:5f:a2:f2:76:
cc:29:af:b9:c2:eb:39:48:f9:33:72:48:ab:80:73:
62:2f:57:c4:a0:30:95:15:7c:6b:f2:8f:01:39:34:
ee:74:53:f5:66:7f:05:5f:40:6d:b2:01:a8:9d:41:
64:eb:38:ea:bc:63:f3:b4:38:da:bb:2a:e0:c0:6c:
2e:62:79:bb:08:f2:30:1a:a5:bf:d9:4d:ad:6d:3d:
27:a3:59:7e:86:01:4a:11:41:8a:6b:b3:44:ea:fb:
f5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:1F:6C:EF:9A:16:16:C5:43:75:EA:38:FD:0A:E5:A3:4C:B3:7D:EA
X509v3 Authority Key Identifier:
keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/xR9s75oWFsVDdeo4_Qrlo0yzfeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:266c::/48
Signature Algorithm: sha256WithRSAEncryption
a2:b1:f2:c1:db:ef:00:aa:54:bd:e5:20:6d:91:fb:be:c8:2c:
9a:61:30:d4:e3:cb:04:60:93:65:d5:47:07:27:5e:66:68:f1:
89:9d:0a:24:bf:ff:bc:96:04:8c:f6:67:7f:95:ca:86:f0:8d:
b0:e4:12:30:fe:44:0b:18:8e:e9:0e:74:51:1a:75:dd:52:9b:
49:0a:7a:95:e2:b8:fd:01:a4:f5:d0:e1:b1:69:c9:dd:77:10:
f4:9e:f6:85:2f:bf:38:ee:c5:ad:fb:d6:44:1e:b8:6f:6a:1e:
1a:45:03:9c:1c:6d:c7:55:f1:a4:04:99:64:5b:fb:e7:81:6e:
f9:d3:78:ec:32:f7:5d:14:c5:38:40:77:6b:f0:08:45:97:ac:
d4:4e:1f:5e:c8:ac:c5:8a:72:49:80:e1:33:bb:cc:cf:91:57:
13:aa:91:c1:e0:eb:09:79:48:43:43:ae:d8:49:25:b2:9c:2d:
b3:89:a9:34:27:24:d5:81:b2:15:20:8f:ab:48:b7:c4:83:37:
fd:e3:d7:59:f0:6a:e8:27:44:57:80:f1:98:af:6d:fe:59:5f:
55:9b:a8:39:f0:75:3f:fc:5f:2d:47:cc:46:cc:43:fb:21:e3:
03:47:ca:cd:04:73:2a:b7:07:e8:b4:2f:ac:20:dd:ae:bf:58:
b4:64:37:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:21 2025 by rpki-client