Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/0Qvsv8G5Vu5xpIRdyH5Armt2RPY.roa
File: 0Qvsv8G5Vu5xpIRdyH5Armt2RPY.roa (raw, json)
Hash identifier: u+Av/dLF6R14FMLAynuW0KHE12QhRKM1HZcUyA+lHdE=
Subject key identifier: D1:0B:EC:BF:C1:B9:56:EE:71:A4:84:5D:C8:7E:40:AE:6B:76:44:F6
Certificate issuer: /CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Certificate serial: 019386D3D65B955DA368AA95C11C7137F855
Authority key identifier: B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/0Qvsv8G5Vu5xpIRdyH5Armt2RPY.roa
Signing time: Mon 02 Dec 2024 10:04:10 +0000
ROA not before: Mon 02 Dec 2024 10:04:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216226
IP address blocks: 2a12:de40:30::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:86:d3:d6:5b:95:5d:a3:68:aa:95:c1:1c:71:37:f8:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Validity
Not Before: Dec 2 10:04:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d10becbfc1b956ee71a4845dc87e40ae6b7644f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d8:23:27:c8:ea:78:0a:db:59:7c:10:b4:4f:
4f:36:41:b6:df:b4:d2:ba:8e:70:1d:18:95:40:1e:
50:6a:5b:7c:61:e7:29:f7:fd:47:50:3d:2f:c7:7f:
65:b2:e6:99:5c:a4:df:36:5c:ec:36:1b:b6:5a:80:
77:c4:cf:37:39:a8:cd:e0:08:fb:15:67:50:51:fd:
33:87:51:64:75:b6:83:6a:d9:ff:6c:c9:b9:d6:68:
7a:30:48:06:67:3e:1a:92:b1:58:f7:3f:04:76:6d:
37:23:17:c9:05:07:87:7c:fe:d5:fc:24:d6:49:1d:
d4:80:92:d7:dc:d6:82:36:1e:c5:44:bc:07:2d:d6:
5d:5b:10:78:c2:d2:7b:2d:0a:78:d2:ff:fb:ff:9b:
05:77:b9:1a:08:a7:87:a5:6c:62:a9:85:a1:70:93:
d1:aa:b2:cf:23:94:e0:05:70:7f:dc:97:a3:d5:ca:
16:7e:7b:5d:ff:70:51:3c:54:e6:36:20:10:1b:23:
91:16:15:b6:b2:1f:7d:52:e0:45:b4:34:88:d8:4d:
d1:71:df:90:6e:42:eb:82:da:e4:a6:92:21:b2:0c:
b1:c5:6a:4e:bc:11:6d:8b:5e:c2:76:60:5f:b5:3a:
ef:8c:ef:87:15:f8:a2:1c:ab:7a:a7:61:68:5f:30:
86:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0B:EC:BF:C1:B9:56:EE:71:A4:84:5D:C8:7E:40:AE:6B:76:44:F6
X509v3 Authority Key Identifier:
keyid:B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/0Qvsv8G5Vu5xpIRdyH5Armt2RPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/uebEGisE_Nj46VcY-n0uEsxErB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:de40:30::/48
Signature Algorithm: sha256WithRSAEncryption
3f:2a:18:6a:43:44:7f:45:54:f5:b4:98:84:15:0b:b1:59:f5:
3f:29:10:0d:ba:dd:c6:a6:e7:08:8b:34:86:01:26:d5:48:33:
c7:78:25:9f:7e:11:87:98:f4:ad:91:ff:a9:40:b9:bf:00:b8:
61:3c:51:8d:7d:eb:30:44:b8:85:73:66:41:06:2a:d6:13:78:
bb:b1:6a:2e:dd:05:27:68:b8:ca:74:ef:3f:03:af:5e:0d:59:
f6:f2:c6:68:e8:ad:f2:63:08:69:ba:88:d0:b0:d1:be:8e:83:
1a:dd:3a:44:ad:5e:47:eb:f6:f1:50:71:16:40:b5:c5:d7:dd:
da:07:f7:14:3b:c2:47:4a:a3:3f:5d:ab:f2:81:ce:99:a3:6e:
2d:1e:89:c5:ce:8a:99:5a:ee:f9:bb:49:d8:87:76:4f:c5:f8:
d0:85:83:22:48:57:76:e2:03:e0:d8:bb:e1:a7:ae:2e:89:ae:
9a:15:b0:e7:fd:d0:d7:78:48:1e:c4:d9:6a:af:07:5b:d7:61:
b4:55:83:49:f9:ed:00:4f:69:a0:f2:dc:a7:61:df:5b:14:05:
d1:80:23:77:dd:f4:47:0d:fd:03:fc:cf:06:1c:22:77:75:aa:
86:74:a6:e2:a2:7a:58:4c:3b:3e:11:8a:b8:c8:53:cd:9f:29:
75:76:46:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 06:28:06 2025 by rpki-client