Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/Hw3Fs_WUEWZA6gDDm_NHN4H0DG0.roa
File: Hw3Fs_WUEWZA6gDDm_NHN4H0DG0.roa (raw, json)
Hash identifier: Tzz/EPVa/WfCZnAoBYBW+7Bcqu/oCgsPOgvVRxUBD+w=
Subject key identifier: 1F:0D:C5:B3:F5:94:11:66:40:EA:00:C3:9B:F3:47:37:81:F4:0C:6D
Certificate issuer: /CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Certificate serial: 018E377379EEEC64DF9B1A5321747A0FF1E6
Authority key identifier: 19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/Hw3Fs_WUEWZA6gDDm_NHN4H0DG0.roa
Signing time: Wed 13 Mar 2024 10:54:58 +0000
ROA not before: Wed 13 Mar 2024 10:54:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197376
IP address blocks: 2a05:5fc1::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:47:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:37:73:79:ee:ec:64:df:9b:1a:53:21:74:7a:0f:f1:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Validity
Not Before: Mar 13 10:54:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f0dc5b3f594116640ea00c39bf3473781f40c6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4a:73:49:f1:4c:a0:2a:13:e7:a4:b0:b4:1d:
1c:32:bd:14:6f:e0:88:0e:3b:8d:53:88:fb:06:54:
f7:ea:b3:fd:3c:a2:e9:1c:22:4f:94:40:64:56:ca:
e5:83:be:0b:da:9e:b6:e6:c3:84:89:2d:c6:10:aa:
8a:78:3c:5d:8b:cd:a3:69:eb:c8:60:3d:8f:3c:a9:
33:ef:f4:32:46:60:9a:2c:64:c9:a8:6a:cb:e7:9a:
4d:13:f7:01:5a:9a:8a:21:7c:04:9a:02:8a:32:9a:
bf:7a:8e:7e:49:2e:f8:59:97:e9:64:f4:bc:7c:78:
e0:d6:4f:18:05:83:f8:3b:d5:4c:78:d0:03:14:a4:
a3:46:72:7d:9f:b6:ed:ed:6c:86:7b:38:17:b9:88:
c9:a5:ae:bc:6a:c7:21:26:66:db:a2:c9:77:7c:7d:
1d:e0:90:c3:0e:12:3c:e5:91:c5:d4:5a:7b:b9:57:
82:a7:93:b2:a7:94:b5:08:ad:ca:22:3a:b2:7e:bd:
6d:df:0e:aa:c3:af:ca:1a:8a:3c:ab:c2:f0:77:56:
88:84:39:3f:84:9f:31:e8:28:74:3e:b2:56:04:20:
14:d4:d3:b3:61:d2:73:56:b7:56:69:c1:57:cb:44:
54:42:36:8b:61:e3:23:69:4d:2d:fc:2b:d5:c7:ae:
fe:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:0D:C5:B3:F5:94:11:66:40:EA:00:C3:9B:F3:47:37:81:F4:0C:6D
X509v3 Authority Key Identifier:
keyid:19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/Hw3Fs_WUEWZA6gDDm_NHN4H0DG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:5fc1::/32
Signature Algorithm: sha256WithRSAEncryption
d2:aa:b2:12:d2:91:e4:0f:76:b1:0d:d5:b7:be:c1:c2:ff:cc:
ae:c9:c5:73:c1:d4:ad:07:cd:47:2e:b7:eb:3e:35:67:9a:ad:
f4:45:63:6b:f4:be:11:b9:95:a2:a9:eb:50:cf:9c:33:e8:30:
bd:54:80:30:00:8d:68:ff:d9:f0:c0:22:89:11:28:84:df:43:
78:58:0f:25:f3:db:b4:e6:dc:b0:8e:d6:67:f7:9d:b4:f5:29:
af:07:12:27:18:e0:21:3e:b4:78:bd:31:73:88:07:6f:f6:ee:
71:dd:c5:a4:2a:e5:6f:88:a8:68:2c:36:43:2f:f2:36:4c:0b:
47:7d:6c:10:a2:dc:a9:81:45:9c:32:0d:ad:04:70:89:81:04:
b7:2a:68:68:d4:75:62:d6:de:79:92:44:eb:57:44:36:53:4a:
be:26:50:05:ce:87:04:6b:80:83:b5:d2:d3:90:8e:55:99:01:
1f:85:08:39:45:01:43:ce:80:0f:7e:e7:07:2b:48:ef:60:92:
7e:5a:bc:45:89:b3:54:80:ce:5c:a6:e1:7a:95:25:61:da:c3:
40:10:98:cf:30:5c:c0:1e:b4:f3:d8:57:f2:bd:09:dd:47:41:
38:92:7f:25:b5:2e:d9:97:12:a7:84:b7:33:5a:07:33:8d:e1:
8c:b3:38:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:43:44 2025 by rpki-client