Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/o8F-5r_6SsZT4yq95DAsR43sU-k.roa
File: o8F-5r_6SsZT4yq95DAsR43sU-k.roa (raw, json)
Hash identifier: vFyGvkhiRVjyM6efCvjv1dr4+lOrdavXA0iCDHAZJP8=
Subject key identifier: A3:C1:7E:E6:BF:FA:4A:C6:53:E3:2A:BD:E4:30:2C:47:8D:EC:53:E9
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 019416F989CFEF7D19AA554B299D24DA6ABC
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/o8F-5r_6SsZT4yq95DAsR43sU-k.roa
Signing time: Mon 30 Dec 2024 09:50:40 +0000
ROA not before: Mon 30 Dec 2024 09:50:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29182
IP address blocks: 2a13:2980::/30 maxlen: 30
2a13:2984::/30 maxlen: 30
Validation: Failed, certificate revoked on Tue 31 Dec 2024 05:17:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:16:f9:89:cf:ef:7d:19:aa:55:4b:29:9d:24:da:6a:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Dec 30 09:50:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3c17ee6bffa4ac653e32abde4302c478dec53e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3e:bc:46:12:49:76:0a:60:c8:5b:87:f1:87:
e1:71:42:4b:e7:42:bc:6f:cd:95:b0:87:ef:58:38:
38:85:36:7e:78:53:db:5b:9f:9c:f5:e8:9e:f3:92:
78:6f:2c:fd:ee:64:15:48:fb:cb:92:31:0b:5f:d4:
c0:ea:31:36:cf:14:0f:2d:8a:c2:32:e2:40:50:3d:
a0:b4:a9:69:41:af:4e:bd:26:50:8b:2f:b4:19:71:
f7:89:50:37:56:54:7d:e9:cc:fe:ec:e6:90:55:f5:
9a:16:0a:92:18:b9:ec:3c:60:11:cf:3b:d6:63:4b:
fb:22:5f:ed:f2:8c:5e:52:e9:1d:5f:f1:76:59:00:
4b:79:8a:e4:0e:55:a8:a8:a3:99:92:2c:bf:19:b5:
1e:64:a3:42:ea:dd:a9:6e:2b:ff:2c:92:39:29:ef:
68:e4:df:ae:78:d6:9c:02:24:1f:2a:96:44:11:6f:
65:eb:2e:80:3a:68:a0:66:eb:e2:d4:58:88:76:d0:
4e:a4:1d:89:e9:2b:19:5a:96:ef:7d:92:ba:33:05:
2b:d7:da:fa:fb:25:92:dd:f5:a7:05:2e:85:26:60:
7f:82:12:89:34:c3:14:11:0b:da:82:63:93:ae:1a:
ea:43:c3:3d:f8:f0:00:c1:8a:74:f8:f9:e8:15:1a:
bf:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C1:7E:E6:BF:FA:4A:C6:53:E3:2A:BD:E4:30:2C:47:8D:EC:53:E9
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/o8F-5r_6SsZT4yq95DAsR43sU-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2980::/29
Signature Algorithm: sha256WithRSAEncryption
1b:32:b2:15:65:cb:05:72:1b:de:b5:5a:88:f6:62:ba:65:2d:
f4:51:0c:f9:d2:b0:e8:3c:46:9b:71:63:cc:62:e4:c8:f3:c5:
8b:3b:64:63:11:cd:4d:70:63:57:f4:25:ed:6a:d6:e4:8a:86:
4c:b6:2e:24:4a:de:38:88:b9:38:5c:24:2a:e1:09:01:c5:ef:
19:79:15:aa:ee:e2:7b:9e:f3:aa:51:9b:89:07:95:13:fc:1a:
6e:9f:42:01:69:1d:47:83:ba:94:18:62:bd:75:7f:bc:c8:61:
e6:9d:33:63:c6:c1:dd:30:dd:9c:94:da:d4:c6:d8:47:53:7c:
be:ef:ae:b6:aa:32:1c:b7:73:13:6f:69:a0:e3:04:3e:96:c2:
a1:f3:0f:da:bf:f8:7c:62:c2:07:ac:3d:2b:c5:7d:ca:2d:68:
72:eb:da:05:d0:30:de:f0:c1:23:6a:b5:78:36:34:31:12:ea:
74:e4:86:ad:0d:ad:7c:bd:a6:7a:b9:40:73:cf:79:b9:b4:77:
96:bb:f7:69:5f:30:cf:9d:b3:26:e6:46:4e:96:09:2d:d5:07:
2f:2a:e0:5b:b9:b6:38:29:70:60:f4:56:60:c3:2e:04:f0:c1:
3c:ca:8d:c0:ab:61:0e:ab:6a:ca:84:32:47:93:3d:50:0c:7e:
e1:56:88:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:08:13 2025 by rpki-client