Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/8c88bb-44dc-4f08-beee-fef48712acab/1/dRK2v2AlLZnrTM03O83dlU4yiE8.roa
File: dRK2v2AlLZnrTM03O83dlU4yiE8.roa (raw, json)
Hash identifier: n6ypVdeQgj295alOT7CukGdOfio+CC97oCck/DqGnWY=
Subject key identifier: 75:12:B6:BF:60:25:2D:99:EB:4C:CD:37:3B:CD:DD:95:4E:32:88:4F
Certificate issuer: /CN=c85106daad3a973fde98914f7cc1ccd35d8cc3c3
Certificate serial: 01917A32E9AF4F6DD7E3D44F11DBA149D210
Authority key identifier: C8:51:06:DA:AD:3A:97:3F:DE:98:91:4F:7C:C1:CC:D3:5D:8C:C3:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFEG2q06lz_emJFPfMHM012Mw8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/8c88bb-44dc-4f08-beee-fef48712acab/1/dRK2v2AlLZnrTM03O83dlU4yiE8.roa
Signing time: Thu 22 Aug 2024 13:07:22 +0000
ROA not before: Thu 22 Aug 2024 13:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214343
IP address blocks: 2001:3e80::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 12 Sep 2024 14:43:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7a:32:e9:af:4f:6d:d7:e3:d4:4f:11:db:a1:49:d2:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85106daad3a973fde98914f7cc1ccd35d8cc3c3
Validity
Not Before: Aug 22 13:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7512b6bf60252d99eb4ccd373bcddd954e32884f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:53:3a:46:9e:e6:88:69:2f:f3:32:24:8b:d7:
c1:ae:61:6d:16:a3:1d:d2:c2:b3:88:14:f1:f8:bd:
4e:01:6a:0c:16:45:31:8c:0a:08:07:b1:24:ad:dd:
7a:89:a7:11:ea:05:e6:c0:77:1c:6c:ed:f1:0b:4d:
65:20:ed:8b:0a:67:ea:30:98:f8:4e:ad:ca:26:68:
32:42:ec:1a:50:3f:0e:86:cb:5d:ef:e4:c5:00:4f:
e8:26:ee:c1:ec:9f:cd:0d:0b:cb:0b:37:7a:c2:ce:
95:69:1f:14:fb:b0:f5:f8:79:ca:97:8a:75:fd:93:
85:bd:ad:18:c9:71:57:23:28:02:da:b4:87:09:90:
6f:e1:25:98:07:90:67:49:0a:05:fb:1b:ad:50:1a:
68:af:81:99:76:27:18:17:aa:73:64:af:d5:4e:57:
4e:b7:a7:e1:bb:c7:6e:ac:f6:86:e7:4e:dc:27:7b:
2f:d3:01:b6:c4:6d:92:db:90:4e:ef:a9:fa:cd:d5:
4b:77:fc:ff:92:47:f1:2b:8b:d4:33:f7:b4:ed:8c:
70:f3:a0:c5:cb:47:e9:21:b9:7e:15:d9:c5:e9:ec:
03:41:7f:05:14:59:8f:98:21:79:21:2c:ba:18:d6:
04:8b:bb:4a:83:6f:6b:76:82:3a:ce:1a:34:fd:78:
1a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:12:B6:BF:60:25:2D:99:EB:4C:CD:37:3B:CD:DD:95:4E:32:88:4F
X509v3 Authority Key Identifier:
keyid:C8:51:06:DA:AD:3A:97:3F:DE:98:91:4F:7C:C1:CC:D3:5D:8C:C3:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFEG2q06lz_emJFPfMHM012Mw8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8c88bb-44dc-4f08-beee-fef48712acab/1/dRK2v2AlLZnrTM03O83dlU4yiE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/8c88bb-44dc-4f08-beee-fef48712acab/1/yFEG2q06lz_emJFPfMHM012Mw8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3e80::/29
Signature Algorithm: sha256WithRSAEncryption
88:2e:f5:99:c7:d0:1f:8a:67:a5:f2:fc:cb:2a:0c:8d:a3:fb:
c8:48:16:a8:71:f3:9e:c1:4b:42:85:25:cd:2a:63:02:f7:d0:
4d:c8:80:77:34:0b:03:d4:3a:f7:7f:49:39:43:72:84:77:bf:
51:d6:ba:75:d3:d2:48:a3:cc:7e:08:56:13:5e:99:a3:ba:43:
af:f7:9e:0d:4e:e1:c9:35:6d:47:8d:64:5d:8b:a4:dc:f0:25:
e5:f1:ae:16:c5:17:dc:4a:3c:40:78:a5:b8:12:14:69:00:40:
fd:4d:cb:4a:d7:af:79:b8:76:a1:f3:8a:02:02:8e:d0:df:21:
ba:af:c1:16:39:69:8e:fe:5e:6b:8c:8e:24:19:54:b4:95:34:
ce:6c:f1:15:8e:f9:bf:f4:68:67:b9:5c:08:ee:cc:52:42:02:
4a:5c:12:f2:76:5e:88:04:a7:c4:53:8d:50:fa:0b:10:28:6c:
01:42:a5:e4:66:66:2e:b2:dc:06:0a:e0:c7:94:0c:c9:d1:8c:
9d:af:12:de:ab:7b:79:f4:93:9d:ce:96:37:5e:e8:14:89:e8:
27:41:9c:01:93:93:82:ba:26:0a:6d:4d:b7:76:d1:2a:97:7b:
09:2b:7b:10:21:9b:77:d3:d7:73:3b:54:4b:cf:75:84:d3:b7:
ff:28:3c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 11:47:49 2025 by rpki-client