Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/3f7463-4d4f-41a6-8d72-3951378aa766/1/u5qwjYLDrhtEBjcvenr9zMh-bVQ.roa
File: u5qwjYLDrhtEBjcvenr9zMh-bVQ.roa (raw, json)
Hash identifier: rch9MKsajRIN2nxPTlRbUTSCG5f+YTmKy71rVJimiBg=
Subject key identifier: BB:9A:B0:8D:82:C3:AE:1B:44:06:37:2F:7A:7A:FD:CC:C8:7E:6D:54
Certificate issuer: /CN=9813e2f6351d3b4d1e61aa4016f1b2cfa62d7cdf
Certificate serial: 0192FE4AB31FF15BA5C1A5BD256B80485DF2
Authority key identifier: 98:13:E2:F6:35:1D:3B:4D:1E:61:AA:40:16:F1:B2:CF:A6:2D:7C:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mBPi9jUdO00eYapAFvGyz6YtfN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/3f7463-4d4f-41a6-8d72-3951378aa766/1/u5qwjYLDrhtEBjcvenr9zMh-bVQ.roa
Signing time: Tue 05 Nov 2024 21:46:01 +0000
ROA not before: Tue 05 Nov 2024 21:46:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51484
IP address blocks: 2a03:24c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 05 Nov 2024 22:33:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fe:4a:b3:1f:f1:5b:a5:c1:a5:bd:25:6b:80:48:5d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9813e2f6351d3b4d1e61aa4016f1b2cfa62d7cdf
Validity
Not Before: Nov 5 21:46:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb9ab08d82c3ae1b4406372f7a7afdccc87e6d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:44:02:08:9d:24:de:d7:9a:ad:ea:51:58:32:
e2:a9:ea:ca:a0:7a:f8:c3:7d:8e:ac:20:5f:62:ab:
31:5b:08:d5:cb:fd:18:18:04:aa:46:0a:37:61:16:
54:18:d7:49:58:0e:8f:90:f8:3d:b0:98:2a:f8:0d:
e7:a2:d5:46:cd:77:de:f3:5b:8b:2d:70:27:e4:8e:
7a:0c:f9:1b:dd:94:e2:2d:a3:a6:b7:e2:0a:f7:4b:
c4:99:f3:48:ee:64:d3:00:30:61:01:bf:f0:fa:4e:
b0:2f:15:16:5d:e3:49:f6:72:26:45:4f:07:88:87:
a9:33:5f:f8:6f:9d:3b:96:30:c6:1d:45:c1:c1:da:
a8:00:60:0d:58:fb:0b:e5:28:76:03:17:98:5a:a9:
8e:b0:6f:f7:0e:a2:e2:2e:2c:ad:40:63:8f:44:cc:
37:33:67:c8:13:25:cf:a4:47:43:b3:f2:b8:00:46:
cf:99:8a:d0:af:7e:c7:89:86:72:1e:78:94:e5:d5:
8d:7b:d3:cb:8f:6d:07:47:75:82:98:09:39:aa:10:
ae:6f:6b:88:80:41:a7:48:8f:7c:d8:74:56:5c:39:
f1:70:28:1e:36:98:b3:e1:0c:ee:5f:74:d2:10:32:
1c:0b:81:93:0e:a9:59:1a:f9:a8:94:5c:3c:9c:e7:
06:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9A:B0:8D:82:C3:AE:1B:44:06:37:2F:7A:7A:FD:CC:C8:7E:6D:54
X509v3 Authority Key Identifier:
keyid:98:13:E2:F6:35:1D:3B:4D:1E:61:AA:40:16:F1:B2:CF:A6:2D:7C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mBPi9jUdO00eYapAFvGyz6YtfN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3f7463-4d4f-41a6-8d72-3951378aa766/1/u5qwjYLDrhtEBjcvenr9zMh-bVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3f7463-4d4f-41a6-8d72-3951378aa766/1/mBPi9jUdO00eYapAFvGyz6YtfN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:24c0::/48
Signature Algorithm: sha256WithRSAEncryption
2e:4f:e3:12:48:3a:f8:92:1f:df:ab:b1:b3:2d:5e:66:50:50:
23:26:9a:70:59:50:02:d4:79:c2:43:6c:24:fb:60:11:16:c6:
da:6a:56:97:ad:92:9a:d6:64:36:38:b5:ae:7d:0d:57:3f:08:
ca:93:00:07:ff:71:ef:ba:65:44:3e:aa:92:43:1e:22:ed:4d:
09:4e:5f:0e:2c:63:1e:f5:7c:de:02:cc:57:87:7f:32:a4:df:
6e:b4:e4:03:99:95:57:83:4e:6f:10:e3:e6:79:10:82:da:06:
01:3e:1e:09:de:f5:3a:43:a6:c6:c5:be:34:2d:2a:25:95:45:
61:18:22:0f:d8:fa:1a:97:22:64:a8:5c:2d:e4:b8:7a:a3:54:
b0:69:b5:95:67:b2:0c:a1:76:fe:6b:21:ea:ab:b6:e1:bf:8d:
1a:cf:08:93:2e:4f:12:4c:d2:f8:49:0b:2a:38:52:68:e6:d4:
b4:6b:41:b2:f3:44:ea:12:b4:b5:11:80:0e:05:3d:7f:bb:c5:
6d:69:4a:dd:1a:23:d3:91:d6:52:ba:4a:5f:51:ae:ba:28:65:
51:9e:c1:d3:71:fb:e7:51:34:b2:a9:3c:47:94:ed:8b:02:16:
1d:40:4c:35:fd:19:bc:3c:08:28:57:9c:11:a1:7b:d8:c4:8e:
42:dc:11:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:31:41 2025 by rpki-client