Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/YueNpXvh0iQO9JpiHOCwqlx8BmY.roa
File: YueNpXvh0iQO9JpiHOCwqlx8BmY.roa (raw, json)
Hash identifier: r4Q1TP+/9pS+232UlLhndaG1D5kAUvcTDiRqm5QA5sA=
Subject key identifier: 62:E7:8D:A5:7B:E1:D2:24:0E:F4:9A:62:1C:E0:B0:AA:5C:7C:06:66
Certificate issuer: /CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Certificate serial: 019272C64FBE9C1937C191213A37C0D76246
Authority key identifier: D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/YueNpXvh0iQO9JpiHOCwqlx8BmY.roa
Signing time: Wed 09 Oct 2024 19:34:12 +0000
ROA not before: Wed 09 Oct 2024 19:34:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214086
IP address blocks: 2a0e:e704:47::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:72:c6:4f:be:9c:19:37:c1:91:21:3a:37:c0:d7:62:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Validity
Not Before: Oct 9 19:34:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62e78da57be1d2240ef49a621ce0b0aa5c7c0666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6f:e5:b3:ad:cb:ac:58:13:1a:15:a1:88:99:
dc:72:74:d7:b9:d4:73:4c:3d:5d:76:12:f0:0c:27:
4f:aa:a8:ef:de:84:2e:47:59:34:43:22:85:93:1d:
53:38:e9:ab:85:d1:4e:15:39:5b:fc:fa:e0:35:37:
da:be:30:ac:9c:4b:84:01:64:41:70:93:ec:4b:cb:
4c:54:68:22:84:3b:f7:a2:8e:c1:6c:09:43:e4:86:
9a:22:54:19:66:74:32:60:63:3d:51:f1:0b:8e:94:
a7:b0:99:04:06:cd:23:2f:7b:62:97:20:48:7e:75:
3e:ad:47:a5:2f:8b:d4:c6:ed:48:a5:11:e4:b8:e1:
94:10:e4:54:00:40:8d:8c:1c:4b:63:93:6c:b6:77:
08:4e:df:b4:a2:5b:c2:78:4e:6c:b0:29:de:67:3b:
fc:9f:ac:11:27:c3:be:33:44:e1:38:69:01:30:bc:
b5:23:bc:b6:cd:a5:98:e3:01:f6:5c:6c:09:d4:94:
b7:dc:0f:4e:6b:a0:5e:1b:2d:ce:35:99:ab:73:bb:
f4:f8:de:e0:b8:8c:c6:0d:43:15:5f:ea:d3:bd:5f:
45:af:bb:ae:cf:5a:0b:eb:bc:0e:3c:ad:74:a1:5c:
34:b3:5c:53:89:b1:1d:94:e0:7d:8f:d3:05:31:39:
ea:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E7:8D:A5:7B:E1:D2:24:0E:F4:9A:62:1C:E0:B0:AA:5C:7C:06:66
X509v3 Authority Key Identifier:
keyid:D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/YueNpXvh0iQO9JpiHOCwqlx8BmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/1g9F98xLaR_UoxwfHAtPYF13pu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:e704:47::/48
Signature Algorithm: sha256WithRSAEncryption
20:17:84:c5:ee:ff:ae:59:78:7a:b4:49:10:09:eb:d4:61:ba:
00:1d:93:08:cb:70:94:eb:e6:60:e2:b5:f6:87:50:67:b2:e8:
e4:1e:f0:3a:95:45:d3:a2:3b:a3:d4:d1:01:68:67:20:77:d4:
6c:be:4d:50:4f:89:9d:0e:88:9e:91:3d:3a:aa:43:4e:da:3e:
30:62:d4:18:76:5d:f1:73:b2:63:c5:24:45:a5:0b:13:7e:2a:
0a:b8:44:80:bd:fb:a6:93:bd:10:81:f7:be:b1:93:25:59:a2:
66:28:50:ec:9b:03:00:62:6b:ba:a1:00:0b:a8:9c:67:76:a4:
ee:49:82:f1:25:a8:0f:96:39:f1:96:ca:48:e4:02:40:1d:66:
5f:90:cf:60:c5:98:e9:d0:0a:f4:8e:d9:5d:50:f9:d2:c5:de:
ef:ff:63:b7:bc:b0:c8:d6:7d:e1:8f:ba:84:0b:06:3e:7f:b5:
c3:5d:6c:f8:47:4c:3d:0c:6f:46:f0:9b:d2:c9:5f:52:b3:33:
3a:39:32:58:27:43:7d:2d:de:02:87:30:5f:ba:9f:7a:48:f1:
be:c9:6f:fb:8d:d1:01:b5:d4:36:49:76:04:c3:f1:3b:43:11:
09:03:c5:5d:6b:35:4a:e0:07:c6:de:ac:a0:08:e7:39:e4:b0:
fc:d9:00:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:05 2025 by rpki-client