Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/SkEft6yjyB0Iq69JTttm423IoOg.roa
File: SkEft6yjyB0Iq69JTttm423IoOg.roa (raw, json)
Hash identifier: gjjRqe75LxeriV6I8Al3hEoN6HPy/M8jjgu5CYsAchM=
Subject key identifier: 4A:41:1F:B7:AC:A3:C8:1D:08:AB:AF:49:4E:DB:66:E3:6D:C8:A0:E8
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018F18900D6F215EC35057F069759C2BBD46
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/SkEft6yjyB0Iq69JTttm423IoOg.roa
Signing time: Fri 26 Apr 2024 04:00:44 +0000
ROA not before: Fri 26 Apr 2024 04:00:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61400
IP address blocks: 2a09:e2c4::/30 maxlen: 30
2a12:c300::/30 maxlen: 30
2a12:c304::/30 maxlen: 30
Validation: Failed, certificate revoked on Wed 08 May 2024 04:51:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:18:90:0d:6f:21:5e:c3:50:57:f0:69:75:9c:2b:bd:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Apr 26 04:00:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a411fb7aca3c81d08abaf494edb66e36dc8a0e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:91:cc:43:87:90:7c:d9:8f:7c:2a:18:ff:a5:
ea:33:9a:f3:86:0b:0e:72:1e:47:91:53:3e:6d:3e:
fb:ad:e3:6c:aa:3b:7f:d4:e2:38:de:2e:95:b3:ba:
6a:ac:c4:dc:a6:42:56:1a:60:93:e9:c8:13:22:e6:
39:24:d9:12:31:27:c0:a1:e3:ed:64:e0:d2:66:9a:
53:f0:88:79:ec:cf:63:e0:06:7b:9e:36:6b:27:ce:
1c:60:8d:f9:50:8f:81:38:a9:ae:80:88:76:78:40:
25:f9:d3:72:f8:42:ee:9b:5d:2e:79:a8:9b:4a:3c:
26:35:cd:97:f3:ff:db:6b:9c:99:d2:df:f7:f6:e6:
b4:1d:8d:27:1b:03:0d:51:63:06:7d:5b:69:64:a0:
91:1a:3d:49:2f:f1:dc:7b:63:19:d6:de:6f:a9:f8:
1e:78:5e:92:ee:c0:49:d9:42:85:d6:97:44:c8:85:
95:34:51:74:1c:ba:de:0d:f2:f9:7a:68:4c:c2:dd:
1c:a3:8f:e1:a4:75:75:68:a2:c1:4e:5c:b8:8d:de:
63:c1:c5:96:7b:8c:79:73:9b:1a:7f:f0:46:98:03:
c7:be:9e:88:40:f4:0c:e5:57:dc:01:72:20:61:68:
7e:86:62:a6:89:76:ec:05:14:19:58:6a:90:31:98:
3f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:41:1F:B7:AC:A3:C8:1D:08:AB:AF:49:4E:DB:66:E3:6D:C8:A0:E8
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/SkEft6yjyB0Iq69JTttm423IoOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:e2c4::/30
2a12:c300::/29
Signature Algorithm: sha256WithRSAEncryption
88:e1:d1:8c:c9:9b:bd:fd:4c:e2:9f:aa:f0:b6:2b:84:9d:a8:
2a:06:c2:f1:ee:c0:2a:4b:9d:29:3e:7b:1f:9b:ec:ca:ba:7e:
24:f0:ad:73:bd:28:70:70:75:a3:80:e5:63:bc:d4:11:73:45:
fa:88:1b:5e:fc:53:a4:4e:c8:e7:a4:65:d8:db:f3:02:2e:57:
96:e7:2f:85:93:63:41:11:4e:37:77:13:66:87:e5:63:89:7e:
80:fe:d5:fa:b7:86:fd:c7:e5:d6:00:4d:97:08:78:f6:8b:af:
d8:31:f0:28:c5:35:37:c2:81:34:d9:a6:24:fd:ba:e7:75:2f:
dc:11:d5:b2:35:0e:dc:fc:3e:71:2f:4c:05:09:57:fa:6f:ee:
bf:ad:a3:05:fa:bd:27:f5:72:83:49:f1:b5:4b:d4:c5:ca:7c:
a4:45:7a:2b:0c:ff:34:6e:40:64:2e:13:21:c3:64:90:44:ff:
f7:b4:5e:7d:57:68:1b:61:e6:c1:6b:2e:e2:19:e0:a5:82:8d:
a1:5a:d3:69:69:a0:b3:0f:8e:b7:09:f6:89:cf:92:48:91:d6:
bc:ab:74:ea:0f:97:d6:53:6a:0d:01:25:1d:4d:df:9a:e3:fe:
43:93:0e:26:c8:2c:83:ea:8b:bb:cb:3a:da:86:78:6b:20:3d:
9f:c3:e2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:07 2025 by rpki-client