Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/a5KLynxbNfFvRk15X8BbgfZP6l4.roa
File: a5KLynxbNfFvRk15X8BbgfZP6l4.roa (raw, json)
Hash identifier: zigC2Lthx06DMAydtQRzG8XYERdJPDiQ/jEXS0e6PzA=
Subject key identifier: 6B:92:8B:CA:7C:5B:35:F1:6F:46:4D:79:5F:C0:5B:81:F6:4F:EA:5E
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 0190CC26479DF0B1F5B694B3F933ECB93705
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/a5KLynxbNfFvRk15X8BbgfZP6l4.roa
Signing time: Fri 19 Jul 2024 17:59:39 +0000
ROA not before: Fri 19 Jul 2024 17:59:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214495
IP address blocks: 2a0f:7803:dc00::/40 maxlen: 48
Validation: Failed, certificate revoked on Sat 20 Jul 2024 06:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:cc:26:47:9d:f0:b1:f5:b6:94:b3:f9:33:ec:b9:37:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Jul 19 17:59:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b928bca7c5b35f16f464d795fc05b81f64fea5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fc:b8:8d:ea:f3:e8:79:d1:0c:df:a6:29:b0:
26:6f:10:e1:91:13:fb:73:d1:72:3a:95:99:b4:fb:
9b:cc:eb:48:31:99:33:9c:c9:e0:22:da:96:6c:28:
dc:e7:86:96:12:db:87:c3:f8:86:96:20:91:b9:a6:
30:c3:69:a6:a8:37:aa:ba:5a:a8:33:45:7b:d2:19:
69:58:a6:ac:77:38:f2:4b:7d:b7:d8:06:9f:ab:b8:
3e:1b:87:37:12:6e:4f:e8:4d:fc:aa:b5:97:5a:8f:
58:79:9a:82:2b:9a:d5:ca:60:41:01:b8:9e:10:be:
1b:c5:45:bb:6d:86:94:54:3c:59:2f:64:25:36:cc:
30:8d:05:e8:1a:6b:0b:59:70:0e:41:bf:9e:28:35:
ea:68:df:26:d8:2d:35:0a:93:2c:3f:f1:0e:93:f6:
c4:79:ef:e7:76:59:6a:9d:55:62:67:d8:b1:3f:f4:
ac:3e:f0:e5:96:bd:25:35:ce:d1:98:95:4b:ee:4c:
aa:06:a9:64:07:91:2f:73:76:26:05:e3:42:50:a4:
d8:17:e7:79:2d:80:b8:83:29:77:5e:91:ee:06:f6:
54:d9:4e:e7:5f:76:3d:68:73:7f:54:70:c9:d5:f6:
33:05:d5:50:c8:76:53:2c:0f:de:5b:4c:d9:b3:60:
8a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:92:8B:CA:7C:5B:35:F1:6F:46:4D:79:5F:C0:5B:81:F6:4F:EA:5E
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/a5KLynxbNfFvRk15X8BbgfZP6l4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7803:dc00::/40
Signature Algorithm: sha256WithRSAEncryption
90:58:53:94:4c:32:90:b6:00:d1:dc:2c:90:26:e7:b2:60:78:
64:1b:82:46:dd:91:7f:65:ca:a1:cb:b9:f9:97:fa:00:21:9f:
5f:a9:38:93:44:59:35:f1:bb:57:db:a6:95:24:47:84:b2:14:
02:59:a3:43:da:13:80:01:74:e3:d5:27:ae:9f:b0:1c:15:eb:
81:50:48:34:14:5f:bd:f2:8f:25:ed:b0:29:7f:b5:14:7b:12:
85:74:75:5f:de:6e:58:55:9d:95:8b:bb:55:28:53:e4:f7:9f:
61:44:65:7a:aa:fe:1c:9e:14:80:0d:25:a0:2a:47:ce:08:95:
00:09:d0:e6:fc:9d:c0:ff:c6:ee:39:72:0a:73:9f:a4:27:e6:
9c:17:c8:fb:bc:0e:51:08:1e:29:19:1f:3b:87:a1:d1:40:ec:
e1:28:2a:8c:6a:d6:b8:0f:cf:11:3b:81:1d:48:28:6c:f5:48:
f6:4e:20:1d:23:17:b5:09:7e:d7:f9:85:ef:50:9a:85:ff:f3:
32:45:7d:c5:66:f6:d9:0d:46:27:32:28:c8:c7:a6:fc:e4:a4:
4a:c1:7a:cd:aa:0c:dc:fe:5b:49:2b:14:e8:a2:58:19:26:7a:
ff:28:64:93:7f:9d:ea:cd:de:c5:5c:fb:e8:aa:85:ca:e8:85:
c6:da:1a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:28 2025 by rpki-client