Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/YVSsInKGR63LT5Jx4HNGN5sUhAY.roa
File: YVSsInKGR63LT5Jx4HNGN5sUhAY.roa (raw, json)
Hash identifier: tl3zlvw/pTiGSvpv2X1031qVn4wkxT6HBkjMQJDERV0=
Subject key identifier: 61:54:AC:22:72:86:47:AD:CB:4F:92:71:E0:73:46:37:9B:14:84:06
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 019416F67A3EA15C3E30CDBDA05FCD0E0B6E
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/YVSsInKGR63LT5Jx4HNGN5sUhAY.roa
Signing time: Mon 30 Dec 2024 09:47:19 +0000
ROA not before: Mon 30 Dec 2024 09:47:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49492
IP address blocks: 2a12:a342::/33 maxlen: 33
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:49:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:16:f6:7a:3e:a1:5c:3e:30:cd:bd:a0:5f:cd:0e:0b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Dec 30 09:47:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6154ac22728647adcb4f9271e07346379b148406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d5:00:c5:7e:a3:f0:bc:18:8a:94:d7:14:c8:
77:35:44:d1:50:f8:78:ff:c1:bb:1d:88:0c:e7:29:
d0:35:0a:72:66:9a:6c:1e:f1:63:fa:31:e4:0a:d4:
b9:45:6e:18:7c:2d:82:4d:40:2f:0a:f5:e3:48:3b:
da:92:97:6b:81:cd:cb:c9:55:2a:60:13:5e:c5:bd:
f3:3c:a5:1c:9e:6f:2e:d7:da:3c:31:ab:f6:87:f4:
48:74:a2:a1:96:5a:1b:05:0d:53:06:72:d9:1f:30:
e1:98:e8:ae:43:dd:db:4f:eb:2b:3f:21:c1:be:75:
3e:2e:48:0d:71:3e:b2:46:d6:6c:81:99:9e:2d:ec:
b5:9c:d1:20:51:ee:77:bb:1c:cf:56:9b:ae:ca:46:
50:44:4f:a9:df:bc:f4:7f:73:99:5b:c1:cc:37:9a:
d7:64:72:89:e3:c1:0e:ce:c6:af:0f:04:95:8c:df:
82:da:a8:46:2a:d1:a1:bc:dc:0e:4d:5c:ba:7b:47:
35:90:a0:9a:09:fd:dd:3a:5d:c1:17:c0:4b:f1:e9:
d3:f5:09:f4:00:9e:8e:40:26:69:4f:d5:6d:71:7a:
13:69:74:e4:97:d9:3a:84:6c:26:2f:bc:b6:eb:d7:
3a:8b:60:b3:e1:d7:61:0a:8d:90:e4:a2:8e:2b:43:
a9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:54:AC:22:72:86:47:AD:CB:4F:92:71:E0:73:46:37:9B:14:84:06
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/YVSsInKGR63LT5Jx4HNGN5sUhAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:a342::/33
Signature Algorithm: sha256WithRSAEncryption
46:09:a9:52:ee:40:f2:ed:76:7b:18:fc:87:98:77:76:4a:1e:
37:f4:3c:37:84:c3:1b:ba:24:3f:f9:e7:ad:24:f5:f0:87:2f:
f6:6d:50:74:2a:e9:8e:b1:25:58:9b:b7:85:ba:55:4f:3b:38:
95:e1:d8:99:3f:ab:21:37:d7:be:71:ba:51:ad:9b:61:e8:9d:
7f:6f:da:46:1b:5d:85:56:48:43:df:ff:75:9c:ee:29:c8:e5:
a7:7b:84:2d:a3:b1:9f:52:91:10:df:79:cb:f4:9c:3c:13:a5:
cd:e0:41:77:e0:b4:23:79:ab:d2:10:33:4b:5f:ff:b3:44:6f:
df:50:dc:17:97:0d:c2:11:9e:2b:02:96:8a:0c:91:3b:32:d6:
b7:43:7a:c9:40:9d:5d:a5:67:d9:8a:90:76:ce:55:72:bc:69:
a7:69:f2:29:a1:fd:be:c2:f9:c9:95:2a:e5:65:fb:d6:0e:83:
35:f1:fc:7c:c8:31:4c:51:e2:92:97:dd:b4:05:69:28:21:b8:
b9:da:81:95:fb:9e:fd:79:88:fd:b9:db:e4:31:b6:d3:63:09:
cc:19:09:78:77:e4:2b:02:3c:f1:b2:59:78:e9:1a:69:51:80:
64:e5:42:ec:fd:8d:c2:af:c8:27:6a:00:b3:4f:37:02:bc:70:
25:72:b8:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 04:46:20 2025 by rpki-client