Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cd410f-9de4-4d82-8091-59e792fe14cc/1/9YLbiqgx7sRjIxpB8O2ixAXhBpA.roa
File: 9YLbiqgx7sRjIxpB8O2ixAXhBpA.roa (raw, json)
Hash identifier: cbBXKwD2ZLUybRGG8RlLKnoXBavUaBBPTuaENQ+6Mxs=
Subject key identifier: F5:82:DB:8A:A8:31:EE:C4:63:23:1A:41:F0:ED:A2:C4:05:E1:06:90
Certificate issuer: /CN=334b09743ed2afd6afb47c58360ee3112a95cd34
Certificate serial: 018ED334A761AB2D870264416FF527276BBF
Authority key identifier: 33:4B:09:74:3E:D2:AF:D6:AF:B4:7C:58:36:0E:E3:11:2A:95:CD:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M0sJdD7Sr9avtHxYNg7jESqVzTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cd410f-9de4-4d82-8091-59e792fe14cc/1/9YLbiqgx7sRjIxpB8O2ixAXhBpA.roa
Signing time: Fri 12 Apr 2024 16:47:07 +0000
ROA not before: Fri 12 Apr 2024 16:47:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397071
IP address blocks: 2a0c:5e00:7::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 12 Apr 2024 17:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d3:34:a7:61:ab:2d:87:02:64:41:6f:f5:27:27:6b:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=334b09743ed2afd6afb47c58360ee3112a95cd34
Validity
Not Before: Apr 12 16:47:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f582db8aa831eec463231a41f0eda2c405e10690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9f:1e:71:e9:30:47:c4:61:c6:7b:9b:9d:1c:
e2:e5:5c:53:33:a6:51:c7:e4:1c:26:f2:0e:cf:a0:
2b:13:94:af:20:cb:3a:c7:87:65:11:6d:9e:a1:08:
7b:fb:be:9f:09:da:53:49:a1:93:54:b4:21:fc:31:
bb:b5:99:24:25:30:be:c1:2c:07:38:df:92:a1:08:
f6:38:62:c6:1b:f2:6c:53:18:18:0d:8c:aa:a2:48:
34:e8:cd:3f:b1:fc:35:80:d3:22:d3:59:67:e0:77:
03:24:2b:d2:a9:70:ff:60:73:78:5a:54:d6:51:89:
57:2d:e2:1e:f2:3a:ab:e6:5f:5f:39:01:a7:51:e8:
ba:dc:f7:45:ff:29:30:82:6a:6c:39:0f:76:45:8c:
2c:6b:58:b9:69:32:92:ed:30:a9:93:0e:75:1a:0f:
6e:72:a4:17:a9:92:d9:bc:21:e9:a8:2e:5d:af:5e:
15:07:2b:03:e0:c9:94:22:65:68:88:a7:2c:68:ea:
da:e4:53:6b:fd:1f:1c:d0:89:91:1e:dc:a5:04:61:
a6:53:5d:3a:c7:83:c1:9f:42:2e:00:5d:4a:3f:e9:
88:df:75:04:f4:33:0d:65:e3:a1:19:4d:19:93:5a:
a3:9f:c8:43:6a:7e:3b:4c:ee:66:a7:aa:90:fc:18:
72:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:82:DB:8A:A8:31:EE:C4:63:23:1A:41:F0:ED:A2:C4:05:E1:06:90
X509v3 Authority Key Identifier:
keyid:33:4B:09:74:3E:D2:AF:D6:AF:B4:7C:58:36:0E:E3:11:2A:95:CD:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M0sJdD7Sr9avtHxYNg7jESqVzTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cd410f-9de4-4d82-8091-59e792fe14cc/1/9YLbiqgx7sRjIxpB8O2ixAXhBpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cd410f-9de4-4d82-8091-59e792fe14cc/1/M0sJdD7Sr9avtHxYNg7jESqVzTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:5e00:7::/48
Signature Algorithm: sha256WithRSAEncryption
45:ec:46:dc:a9:75:b3:64:75:34:2c:05:4a:a5:43:ff:13:b4:
52:b1:da:51:69:c1:92:0e:22:3b:c5:fd:1a:3f:c6:90:21:37:
45:5f:bf:85:7e:58:62:1b:42:57:19:32:10:06:7e:68:cb:1c:
db:6e:26:cc:9b:4d:75:a2:6e:4f:22:b9:0f:52:58:87:82:43:
96:b0:75:ce:07:0f:6d:35:ee:02:df:2d:e7:0a:b0:71:bd:3f:
8f:4c:4b:85:e9:63:31:b6:74:79:e6:8c:17:b3:04:9b:7b:fa:
dc:40:b0:59:94:8a:dc:89:1f:2d:a6:ed:98:e2:18:f5:03:49:
4d:23:d4:52:7b:a7:f1:e2:04:74:50:30:ae:c1:67:8c:d7:63:
7d:1f:1c:e7:c7:41:64:d6:79:66:ff:da:f0:3e:98:c3:78:1f:
cb:3f:76:40:ca:ee:62:cc:0f:21:89:4d:f3:ff:97:93:1b:03:
f0:11:87:2d:28:d6:f3:05:9b:67:ae:8c:7d:02:71:a9:94:ea:
4a:78:be:4a:d9:ed:16:5e:d1:ee:29:35:0e:74:b8:f8:8f:d9:
6f:de:8a:69:c4:35:dd:98:ef:ae:44:0e:e9:99:0d:91:5e:fc:
d3:ec:02:de:09:ca:02:e8:99:a3:16:de:cf:04:50:60:f4:97:
8f:fa:fb:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 12:47:23 2025 by rpki-client