Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/dn3nKlg9Q94BIgHxViQHLJlVIp0.roa
File: dn3nKlg9Q94BIgHxViQHLJlVIp0.roa (raw, json)
Hash identifier: 7MW6hdh21EpsVoCtPtAwRwKHJij9rY7Axi6EFFO/vu0=
Subject key identifier: 76:7D:E7:2A:58:3D:43:DE:01:22:01:F1:56:24:07:2C:99:55:22:9D
Certificate issuer: /CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Certificate serial: 01933BADDBB6247DA3F5C99E7C2D94BBAF7D
Authority key identifier: D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/dn3nKlg9Q94BIgHxViQHLJlVIp0.roa
Signing time: Sun 17 Nov 2024 19:51:09 +0000
ROA not before: Sun 17 Nov 2024 19:51:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213935
IP address blocks: 2a0e:e704:48::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3b:ad:db:b6:24:7d:a3:f5:c9:9e:7c:2d:94:bb:af:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60f45f7cc4b691fd4a31c1f1c0b4f605d77a6ef
Validity
Not Before: Nov 17 19:51:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=767de72a583d43de012201f15624072c9955229d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1b:ac:55:da:de:11:d7:75:f8:ab:f3:93:99:
00:46:25:33:e0:62:93:b9:6a:25:dc:b5:d3:8a:09:
c7:98:a4:bc:3f:74:29:90:2c:cd:a6:28:ad:f5:65:
92:66:e1:2e:35:05:b4:87:7d:3d:c8:1a:37:76:69:
14:46:6d:fa:7c:e6:1f:02:68:d2:99:77:b1:b3:d3:
57:8b:de:c6:c1:ca:ab:bb:59:b4:e8:8c:80:ac:fd:
db:0a:e4:ea:0b:de:3e:b4:bd:42:57:5f:53:d4:7b:
90:cd:ec:eb:06:2d:1e:4e:b6:e6:b8:cb:11:08:d5:
57:f5:8f:6c:67:12:42:db:1a:5d:eb:5a:3c:86:89:
1a:e3:a3:e3:dd:8d:77:48:68:98:2a:91:0e:2c:6b:
6c:13:b6:7f:0b:81:59:26:e2:88:21:db:3e:35:bf:
b8:1c:79:b4:d9:36:00:c3:b2:f7:b9:2c:f3:15:01:
27:40:ea:08:ca:26:83:92:63:30:af:9e:52:0f:a6:
74:8d:90:37:98:99:22:22:55:ad:83:29:c4:29:e6:
f5:d5:c3:99:2c:28:0c:d9:8f:ed:f4:54:b0:0d:0d:
01:a5:03:f3:76:eb:a4:50:2a:f6:5d:03:27:16:6d:
ad:da:1c:28:33:87:08:89:af:a2:fc:02:15:cb:f0:
3c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:7D:E7:2A:58:3D:43:DE:01:22:01:F1:56:24:07:2C:99:55:22:9D
X509v3 Authority Key Identifier:
keyid:D6:0F:45:F7:CC:4B:69:1F:D4:A3:1C:1F:1C:0B:4F:60:5D:77:A6:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1g9F98xLaR_UoxwfHAtPYF13pu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/dn3nKlg9Q94BIgHxViQHLJlVIp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ad3044-cdce-46cf-92c9-a954d053994a/1/1g9F98xLaR_UoxwfHAtPYF13pu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:e704:48::/48
Signature Algorithm: sha256WithRSAEncryption
5b:41:e3:cb:3b:ee:21:c0:c1:a9:eb:e3:67:d6:48:dc:df:6f:
d6:ec:6c:4d:b6:64:17:a0:b4:fa:eb:dc:ab:ef:00:66:d5:b1:
bd:7b:e7:55:10:ef:33:70:52:33:0a:f2:b7:e7:97:17:bb:07:
cd:9e:0f:11:18:38:cf:3c:7e:49:0b:f6:78:7e:ce:4b:c6:77:
ae:49:93:fb:04:b4:40:80:7d:87:82:75:27:03:1b:94:28:1f:
7a:e6:0f:77:d5:70:a3:bf:77:4c:62:9a:30:7f:f7:c1:cf:9e:
bc:ab:f8:5a:e1:99:18:9a:89:d0:da:a0:ec:f8:e5:3c:52:a4:
65:b0:56:e6:3f:59:5d:43:12:c2:17:7f:76:b8:38:91:d6:df:
84:2d:70:de:82:59:60:71:de:1f:ef:a7:b7:f7:1b:e2:e7:42:
84:1f:c0:d2:bb:f7:17:71:8f:63:14:ac:23:23:66:a6:cb:f1:
3b:e0:52:fc:69:4f:ab:68:a5:64:78:d3:9e:25:5d:68:65:03:
fe:c1:d0:86:93:07:31:e6:e4:21:15:a4:43:53:82:70:06:b8:
59:44:59:4b:7a:e3:bb:86:8e:65:bb:cc:27:fc:26:b7:e0:6c:
34:16:a4:4a:0c:6b:07:dd:a4:f6:03:98:f9:4e:13:90:93:96:
5d:96:22:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:58 2025 by rpki-client