Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/T8McKVBsbVrhatE7dfhF_7VxFUw.roa
File: T8McKVBsbVrhatE7dfhF_7VxFUw.roa (raw, json)
Hash identifier: WQ8f18dqcN4/D+aHsodcajk9t1Zam9jrLLsaB7kMSsI=
Subject key identifier: 4F:C3:1C:29:50:6C:6D:5A:E1:6A:D1:3B:75:F8:45:FF:B5:71:15:4C
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 0191B26584B043A80CBCEA2905C16385F97B
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/T8McKVBsbVrhatE7dfhF_7VxFUw.roa
Signing time: Mon 02 Sep 2024 11:01:23 +0000
ROA not before: Mon 02 Sep 2024 11:01:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44812
IP address blocks: 2a09:6284::/32 maxlen: 32
2a09:e5c0::/32 maxlen: 32
2a09:e5c1::/32 maxlen: 32
2a09:e5c2::/32 maxlen: 32
2a09:e5c3::/32 maxlen: 32
2a09:e5c4::/32 maxlen: 32
2a09:e5c5::/32 maxlen: 32
2a09:e5c6::/32 maxlen: 32
2a0e:b140::/29 maxlen: 29
2a10:4103::/32 maxlen: 32
2a10:4104::/32 maxlen: 32
2a11:4b45::/32 maxlen: 32
2a11:4b46::/32 maxlen: 32
2a11:4b47::/32 maxlen: 32
2a12:a343::/32 maxlen: 32
2a12:a344::/32 maxlen: 32
2a12:a346::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 10 Nov 2024 08:11:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b2:65:84:b0:43:a8:0c:bc:ea:29:05:c1:63:85:f9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Sep 2 11:01:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fc31c29506c6d5ae16ad13b75f845ffb571154c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d6:da:66:63:3c:67:42:47:ea:5d:e2:a0:60:
ba:43:a0:11:ac:9c:a7:bb:0e:ca:5d:5d:e0:8a:f7:
9a:43:54:a4:8f:c0:50:d9:89:4f:3f:c1:3e:e5:bb:
d6:5c:46:68:69:39:90:ad:b4:64:82:f6:3d:57:7f:
2a:26:49:0c:f6:ae:55:56:3d:bf:52:da:59:bf:1b:
e2:4b:ae:cf:a3:01:22:4e:79:55:3f:61:a5:54:0a:
51:07:79:16:ed:ae:82:e4:e2:3f:e6:09:c9:40:bd:
a3:71:d5:98:a0:4a:e7:f0:f8:d1:73:cd:17:39:dd:
90:b9:21:b5:89:ed:55:7c:d9:98:73:1e:01:fd:a2:
ed:4a:b5:cf:bf:eb:2e:67:74:3a:21:c0:35:da:a4:
ed:1d:3c:0e:82:f2:ca:69:6a:9b:44:5d:22:87:8e:
14:8b:51:2d:c9:d8:6f:07:50:8e:8a:0b:bc:8a:44:
9d:69:9a:bb:91:ca:5c:c3:42:89:a4:b4:22:29:fd:
fe:a9:48:82:d6:ea:da:18:f3:98:37:cb:ba:87:0c:
4a:bd:f6:09:1f:20:5c:61:a1:2d:14:48:3b:9d:e2:
db:8c:d9:be:09:96:df:f2:1a:b2:15:38:4f:84:1d:
9a:25:b6:e0:b9:43:d6:c8:3b:ce:82:91:3e:52:12:
4a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C3:1C:29:50:6C:6D:5A:E1:6A:D1:3B:75:F8:45:FF:B5:71:15:4C
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/T8McKVBsbVrhatE7dfhF_7VxFUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:6284::/32
2a09:e5c0::-2a09:e5c6:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:b140::/29
2a10:4103::-2a10:4104:ffff:ffff:ffff:ffff:ffff:ffff
2a11:4b45::-2a11:4b47:ffff:ffff:ffff:ffff:ffff:ffff
2a12:a343::-2a12:a344:ffff:ffff:ffff:ffff:ffff:ffff
2a12:a346::/32
Signature Algorithm: sha256WithRSAEncryption
99:c4:2e:82:02:32:0f:60:4e:0d:ea:72:87:43:84:07:4f:0d:
7f:31:5f:27:7f:d7:1a:dc:e5:ab:4a:34:fd:6e:a4:66:cf:0b:
98:ec:99:79:90:e3:42:b7:9f:63:ac:a8:1d:60:78:2c:91:05:
1e:04:50:3d:a1:f6:0f:66:79:61:82:99:1e:d5:b4:01:99:9e:
db:81:90:83:8f:a7:16:35:46:dc:ee:f4:e4:ea:1f:5d:bb:c4:
37:91:74:b2:20:27:da:88:78:f9:8e:fa:f7:e8:5f:2c:19:8f:
4b:80:e1:c1:ec:6a:bb:9b:62:3d:72:93:0d:14:b0:f7:2d:c4:
e4:00:6e:fe:46:76:ec:78:43:1b:0f:84:93:ab:b6:a5:d3:90:
fc:c7:ea:23:1c:57:fe:3b:3a:09:61:77:ba:2b:c9:6b:a8:23:
b1:13:e2:71:0f:98:76:68:6a:5f:6e:2f:aa:b3:bb:c6:8c:96:
a9:f4:5d:0f:14:27:f3:a4:d8:a0:75:7f:ac:69:d9:0f:26:e9:
8d:14:96:d7:b7:5c:b5:55:04:27:e9:6d:56:9d:ca:be:a0:49:
7a:bf:b2:e8:c4:80:ab:e9:60:c1:02:49:1f:f3:36:1e:83:d8:
82:0e:84:57:1d:89:4f:35:ac:73:88:eb:4b:e7:53:4f:04:1b:
2b:b3:db:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:39 2025 by rpki-client