Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/UU15By_WkZcWhKdyZkgXudzMWIs.roa
File: UU15By_WkZcWhKdyZkgXudzMWIs.roa (raw, json)
Hash identifier: ioP/mEjtag0RAr4b+RHTIhIszca6S3coTUhqKDeBwe8=
Subject key identifier: 51:4D:79:07:2F:D6:91:97:16:84:A7:72:66:48:17:B9:DC:CC:58:8B
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018D8C3F9C2A8BB4BD0D01F2FBE38E0C7C4C
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/UU15By_WkZcWhKdyZkgXudzMWIs.roa
Signing time: Fri 09 Feb 2024 05:03:15 +0000
ROA not before: Fri 09 Feb 2024 05:03:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 45027
IP address blocks: 2a04:6e40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 19 Feb 2024 12:12:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8c:3f:9c:2a:8b:b4:bd:0d:01:f2:fb:e3:8e:0c:7c:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Feb 9 05:03:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=514d79072fd691971684a772664817b9dccc588b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6a:8d:58:bb:47:ee:77:0b:35:2d:f1:a2:9e:
37:47:56:28:4c:ed:2c:38:fc:29:fd:40:e5:e9:f2:
af:8b:34:2d:66:b3:15:a3:fd:c3:8b:6b:90:c9:6e:
d6:24:12:fc:f8:8c:a6:83:f9:ac:da:2c:91:b1:0e:
ec:6a:c4:76:27:3e:74:9d:18:c2:b6:5c:54:fe:41:
2d:d2:71:b7:3b:19:b0:04:49:47:fb:cf:dc:7b:ba:
e5:1f:be:9a:57:52:b6:92:78:f7:0e:6d:7e:1e:ef:
5a:5f:10:b5:69:55:cb:48:31:7d:97:a7:2e:d2:f6:
bb:24:f3:db:6c:5f:85:a9:0b:60:74:22:8d:fa:ec:
89:63:93:b5:da:4e:2f:3d:f3:ea:43:bb:95:86:4b:
a4:f3:8d:ab:c8:a2:82:22:1e:1a:13:1d:2e:92:bb:
36:fa:fb:bd:ad:a3:8c:00:25:2e:a0:f4:22:24:7b:
20:09:09:ae:03:3c:a1:b7:fb:75:be:1c:2b:b3:35:
55:16:3a:c8:eb:a6:87:2f:f5:35:c0:1a:cd:66:ec:
51:22:35:39:e0:62:95:4b:23:74:6f:91:52:a1:00:
8a:fb:e5:26:06:d0:4d:67:77:d7:99:d5:96:92:81:
f2:94:3c:b7:5a:88:38:6f:dc:d3:99:3b:16:79:ca:
3e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:4D:79:07:2F:D6:91:97:16:84:A7:72:66:48:17:B9:DC:CC:58:8B
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/UU15By_WkZcWhKdyZkgXudzMWIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:6e40::/29
Signature Algorithm: sha256WithRSAEncryption
0d:ad:aa:8f:26:79:c7:53:bf:92:cf:28:3c:52:c7:b8:a0:36:
04:a2:f2:cd:c8:1e:97:ab:a6:6d:c7:a8:7a:b5:7f:20:1e:ee:
af:9f:93:d1:62:02:3b:fc:5e:87:6c:db:b8:b0:74:10:f9:73:
08:61:ee:4c:92:bc:60:2d:54:8f:f8:3d:97:bf:f3:26:ab:70:
e9:56:31:18:35:b6:4e:0f:ab:56:16:e7:ef:43:85:4f:58:a0:
fa:60:b6:78:db:a2:ba:97:cf:89:60:a6:3a:69:5a:5d:8f:c2:
ae:ec:29:ac:64:1d:92:e4:10:67:2d:a8:d8:47:d0:f9:eb:44:
97:64:d4:08:19:21:3f:e5:d4:0a:5f:a4:cc:6a:da:62:a6:38:
86:0c:64:49:00:d7:83:58:c9:df:8f:db:05:72:6b:2a:36:04:
cb:68:f6:ef:18:4e:59:6f:dc:3f:d9:c0:b3:f5:8e:10:95:50:
b9:ec:8a:f9:9b:ae:50:e1:6e:b7:03:50:59:d9:41:3c:f8:5b:
68:fb:44:b1:8f:a2:ef:30:8c:a1:3a:1e:ec:05:95:6e:03:bf:
b5:0d:ba:ae:7e:51:c9:7d:4a:8b:f1:d3:4d:58:8f:0c:12:48:
ef:d0:c9:7d:16:0d:1c:e1:26:c0:f1:4c:3b:af:7b:98:48:50:
6e:bf:0a:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:44:10 2025 by rpki-client