Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/c1vB59dLlUFUKwdX-xOlY7AQaJk.roa
File: c1vB59dLlUFUKwdX-xOlY7AQaJk.roa (raw, json)
Hash identifier: 0IncCzcWGNGISldyOLdxhcmQ25mumwiCa33S5h3A2lA=
Subject key identifier: 73:5B:C1:E7:D7:4B:95:41:54:2B:07:57:FB:13:A5:63:B0:10:68:99
Certificate issuer: /CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced
Certificate serial: 01939D2C8B3850BD0BAA0187BBD0C876CD15
Authority key identifier: A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/c1vB59dLlUFUKwdX-xOlY7AQaJk.roa
Signing time: Fri 06 Dec 2024 18:12:42 +0000
ROA not before: Fri 06 Dec 2024 18:12:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213758
IP address blocks: 2a0c:f686::/32 maxlen: 44
Validation: Failed, certificate revoked on Sun 22 Dec 2024 15:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9d:2c:8b:38:50:bd:0b:aa:01:87:bb:d0:c8:76:cd:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a07f6e2b60ca464700dd8e28fba0daadc2c40ced
Validity
Not Before: Dec 6 18:12:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=735bc1e7d74b9541542b0757fb13a563b0106899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d1:fd:8c:ef:c3:da:76:0b:58:2d:28:1f:11:
47:e7:05:ae:df:25:9d:e9:b2:bf:96:6a:50:5c:52:
8f:a7:13:93:25:6a:3c:d7:61:7e:8c:04:ba:e1:44:
11:39:f8:31:6a:0d:b4:3b:29:e0:b0:38:3f:0c:f9:
74:f8:5d:14:2d:72:25:60:e9:71:e7:38:10:ea:16:
3f:30:1b:88:9b:25:cc:03:e9:14:2c:8a:5a:55:ab:
e1:0a:4c:6c:3c:c1:a7:c3:0a:09:5f:15:a9:c2:1c:
62:44:6b:43:5a:07:1c:db:3d:a3:b0:11:45:26:6b:
f7:91:25:02:9a:c2:8e:fa:cf:37:f7:53:86:58:88:
3f:05:6a:83:6a:26:31:e6:63:19:61:3e:20:6c:a1:
76:61:cb:60:d9:bf:dc:b0:54:b2:5f:a4:4d:cf:1d:
5c:27:87:29:f8:68:ca:10:86:29:47:c5:58:e4:06:
47:9e:dd:94:2d:bc:7c:91:ad:6e:b2:0f:2b:bc:69:
d0:e5:df:d4:05:30:56:70:34:7b:62:62:94:59:f7:
53:f3:18:c3:1a:d8:7c:c7:41:30:0f:c6:a4:90:a0:
36:3b:39:13:29:27:02:0f:42:e4:17:4b:0a:25:66:
3f:e0:db:84:5f:11:eb:fa:18:e6:ae:2e:76:03:48:
9e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:5B:C1:E7:D7:4B:95:41:54:2B:07:57:FB:13:A5:63:B0:10:68:99
X509v3 Authority Key Identifier:
keyid:A0:7F:6E:2B:60:CA:46:47:00:DD:8E:28:FB:A0:DA:AD:C2:C4:0C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oH9uK2DKRkcA3Y4o-6DarcLEDO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/c1vB59dLlUFUKwdX-xOlY7AQaJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a7ce9e-10fc-4bda-838b-bcb724bc2684/1/oH9uK2DKRkcA3Y4o-6DarcLEDO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:f686::/32
Signature Algorithm: sha256WithRSAEncryption
72:5e:79:c1:e3:27:e2:cd:ec:29:b0:4c:bd:36:d3:b1:03:d6:
44:43:3c:1f:3f:08:5b:f6:d1:0b:42:18:26:21:08:f1:ca:b6:
f9:ef:7a:35:44:f9:14:34:c7:71:1d:5a:12:ed:c1:df:7e:fc:
6f:34:95:c2:ce:c4:b5:53:b5:2d:8f:10:50:9a:7b:3c:29:13:
a9:d5:b9:f8:a7:9e:57:ea:8e:3d:22:09:e1:e8:f1:c5:1b:05:
38:5f:13:53:f9:b1:15:36:26:52:6f:02:c9:48:c5:9f:00:f5:
41:24:e2:d0:0e:94:a0:7f:98:09:e1:a1:2e:b1:48:fc:2b:da:
17:d2:a8:35:58:5a:ab:ea:54:44:99:cc:91:43:10:e9:19:ca:
34:99:46:3a:04:4b:e8:00:59:3c:70:b2:7b:94:40:ee:92:78:
7f:33:83:1b:2a:56:8c:0a:15:75:33:23:0b:5e:41:91:b3:80:
28:37:7c:2f:b0:15:64:0e:6e:1d:3f:06:11:e3:ca:48:21:d1:
4d:90:a8:7a:d5:2b:85:c0:b8:a9:01:27:90:e8:8d:0a:29:9c:
f3:86:d9:61:60:d9:2f:69:94:0a:13:c7:5d:6c:e1:0a:79:93:
1b:ec:e1:38:d0:d2:31:3a:62:3c:d0:40:7c:76:bc:a4:c0:34:
b7:98:81:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 18:24:47 2025 by rpki-client