Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/347d71-ff78-4b3a-a5db-4de9345c83bf/1/0PVD9l17fPXV2fQAhOWW9RBxEnk.roa
File: 0PVD9l17fPXV2fQAhOWW9RBxEnk.roa (raw, json)
Hash identifier: YTtUnwtci8pz/u7p3+qz7ifdckzFjxPAZ6qqHhvyPUU=
Subject key identifier: D0:F5:43:F6:5D:7B:7C:F5:D5:D9:F4:00:84:E5:96:F5:10:71:12:79
Certificate issuer: /CN=dd8ae4d9ad863dda1401b490c28cff82d998e3b5
Certificate serial: 019200316119E45A38273FFE0721068BDF9F
Authority key identifier: DD:8A:E4:D9:AD:86:3D:DA:14:01:B4:90:C2:8C:FF:82:D9:98:E3:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Yrk2a2GPdoUAbSQwoz_gtmY47U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/347d71-ff78-4b3a-a5db-4de9345c83bf/1/0PVD9l17fPXV2fQAhOWW9RBxEnk.roa
Signing time: Tue 17 Sep 2024 13:34:48 +0000
ROA not before: Tue 17 Sep 2024 13:34:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215230
IP address blocks: 2001:678:a30::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 29 Sep 2024 13:38:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:00:31:61:19:e4:5a:38:27:3f:fe:07:21:06:8b:df:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8ae4d9ad863dda1401b490c28cff82d998e3b5
Validity
Not Before: Sep 17 13:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0f543f65d7b7cf5d5d9f40084e596f510711279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fc:ad:4e:ff:4b:50:fa:aa:46:1d:26:74:ff:
0b:e6:68:3a:e4:46:44:00:e0:f8:42:0a:12:20:37:
7f:be:7a:8b:19:b8:a7:2e:96:f5:df:52:48:02:5f:
4d:18:65:5d:ec:96:59:02:73:e2:41:03:69:ee:4e:
d6:49:50:e6:24:b2:c8:a8:ea:25:bd:84:8f:0e:e2:
f4:3a:b1:c7:6d:fd:fe:76:89:35:ed:20:58:9e:40:
a2:3c:36:8a:f1:68:ec:6b:fe:18:ee:3b:a2:57:ec:
3f:74:55:d4:9e:86:bd:6e:7f:03:87:a0:e9:3c:62:
8c:c9:ee:ba:b9:18:10:21:e1:a9:e8:86:d5:0d:f2:
44:03:44:b2:29:f3:ac:09:88:a1:e0:b6:f1:61:99:
3e:94:2c:3c:45:b4:67:d8:ed:fa:6d:74:21:7d:6e:
78:8f:b4:d5:dc:38:88:95:58:55:4e:00:53:97:06:
a9:89:3c:c1:b6:72:d5:67:7d:66:82:bc:61:a7:ac:
4e:b3:f4:74:5d:7c:26:7a:77:f9:81:66:e3:09:10:
34:56:c3:fe:64:48:c4:0e:de:f1:43:64:1c:00:cf:
d7:ff:23:c7:6d:64:11:53:c5:ad:99:30:13:9e:65:
78:ed:89:7f:ec:1f:c1:bd:bc:88:34:2a:84:86:72:
9f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F5:43:F6:5D:7B:7C:F5:D5:D9:F4:00:84:E5:96:F5:10:71:12:79
X509v3 Authority Key Identifier:
keyid:DD:8A:E4:D9:AD:86:3D:DA:14:01:B4:90:C2:8C:FF:82:D9:98:E3:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Yrk2a2GPdoUAbSQwoz_gtmY47U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/347d71-ff78-4b3a-a5db-4de9345c83bf/1/0PVD9l17fPXV2fQAhOWW9RBxEnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/347d71-ff78-4b3a-a5db-4de9345c83bf/1/3Yrk2a2GPdoUAbSQwoz_gtmY47U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a30::/48
Signature Algorithm: sha256WithRSAEncryption
3f:39:f6:23:61:26:a6:0e:e9:cf:18:2e:91:ac:22:a9:b9:b8:
9f:11:57:a1:d6:45:31:72:af:e0:ed:c6:6c:69:9f:fa:2c:1c:
06:b0:e4:5b:70:50:19:c4:f5:9c:9b:30:24:20:76:22:df:45:
e2:93:ab:1b:9b:43:1b:1b:63:34:22:b9:52:15:f7:e4:3c:f6:
fb:48:d8:91:b6:9b:93:3e:ab:6c:cc:9e:bc:b3:ab:7c:82:3e:
50:54:c0:c0:a9:9b:3b:e4:8b:7f:e9:5f:e5:44:37:95:87:a0:
73:33:c6:3a:0c:d7:d0:b4:15:29:5b:ae:d7:de:75:5b:e2:5b:
87:88:c9:cd:2d:9a:a9:55:4d:40:3d:0c:c9:a6:4e:25:62:71:
36:e3:c1:fa:7c:d9:d7:4d:19:b1:a5:8a:2a:0c:41:f5:ad:df:
e6:1d:cd:da:90:b8:24:6d:04:ad:d7:7f:0a:dd:8b:e3:f5:9c:
e3:0e:d8:da:23:a0:0a:e0:b8:d9:44:1f:b3:00:10:ea:71:32:
3a:8f:8b:53:06:ff:7f:01:ed:30:92:d1:d0:66:2d:78:a0:7d:
92:ac:7a:25:bb:a6:35:af:28:2c:49:63:88:ad:9a:db:a4:ce:
32:a2:00:87:20:b3:98:66:5c:c4:c8:7d:5f:f6:c1:3b:04:a0:
36:32:e9:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:17 2025 by rpki-client