Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/iTY3D7zL5smJKC_584YgpydIAlY.roa
File: iTY3D7zL5smJKC_584YgpydIAlY.roa (raw, json)
Hash identifier: cRR23r0XY8/TDCJOx8lju7d9Mu5Zr41jtjb8PL/y5WA=
Subject key identifier: 89:36:37:0F:BC:CB:E6:C9:89:28:2F:F9:F3:86:20:A7:27:48:02:56
Certificate issuer: /CN=f31ed7b1f63b51aa516a9ffcb035a3a0d69e65a1
Certificate serial: 0194274881486752C392042C5A29D2FF3179
Authority key identifier: F3:1E:D7:B1:F6:3B:51:AA:51:6A:9F:FC:B0:35:A3:A0:D6:9E:65:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8x7XsfY7UapRap_8sDWjoNaeZaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/iTY3D7zL5smJKC_584YgpydIAlY.roa
Signing time: Thu 02 Jan 2025 13:50:50 +0000
ROA not before: Thu 02 Jan 2025 13:50:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216211
IP address blocks: 2a13:edc0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 15 Jan 2025 11:49:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:81:48:67:52:c3:92:04:2c:5a:29:d2:ff:31:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f31ed7b1f63b51aa516a9ffcb035a3a0d69e65a1
Validity
Not Before: Jan 2 13:50:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8936370fbccbe6c989282ff9f38620a727480256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:de:81:3a:c9:c1:8a:14:d9:43:d0:82:e8:93:
54:42:36:59:5f:bf:36:ec:85:c6:60:1a:31:cf:27:
e0:05:40:b3:8e:5e:1b:6c:af:97:c6:91:0b:b1:c8:
8b:32:95:1a:fc:9a:6b:2e:07:8c:52:eb:ae:68:7a:
60:3e:87:33:04:00:42:0f:50:84:2e:a2:28:76:a7:
fe:45:a4:14:62:57:85:3d:d6:95:be:3e:2b:73:1c:
8f:91:aa:36:d9:0f:0c:cc:4d:a0:e9:52:77:eb:4c:
06:e6:1b:28:19:b5:e7:53:41:a4:8b:01:b0:12:1a:
19:6f:14:c3:e2:e1:78:91:8e:1b:96:89:3a:5a:40:
93:00:23:50:fc:24:39:63:6e:84:9a:48:e7:d8:f4:
30:68:26:50:f8:ac:2d:ae:e0:b7:11:ba:43:02:39:
92:59:0e:87:e3:24:fb:cd:14:97:f7:78:01:6d:d8:
e7:a4:7b:23:88:0d:1a:ae:2b:ce:c1:5c:ef:a5:b0:
b4:63:f3:f0:2d:c3:7c:fd:d1:62:c6:06:aa:3b:17:
38:d9:4d:92:cb:3a:00:31:b3:36:42:79:87:10:3e:
d4:ae:1d:ff:2e:96:96:f7:14:1e:0c:3c:59:a0:53:
df:df:09:b2:5e:36:f6:09:2b:dc:99:5b:ac:a8:d2:
71:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:36:37:0F:BC:CB:E6:C9:89:28:2F:F9:F3:86:20:A7:27:48:02:56
X509v3 Authority Key Identifier:
keyid:F3:1E:D7:B1:F6:3B:51:AA:51:6A:9F:FC:B0:35:A3:A0:D6:9E:65:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8x7XsfY7UapRap_8sDWjoNaeZaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/iTY3D7zL5smJKC_584YgpydIAlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/99ed06-e445-4ca2-b647-bd2b3abae121/1/8x7XsfY7UapRap_8sDWjoNaeZaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:edc0:1::/48
Signature Algorithm: sha256WithRSAEncryption
51:5f:7a:dc:c3:ca:1a:94:0c:99:89:09:59:9f:7f:94:14:b3:
f8:d4:46:aa:0c:a9:61:78:ca:ec:94:85:dc:82:a4:9d:a5:17:
2a:f8:e3:58:41:c6:a6:9f:be:bc:f0:4a:62:36:04:84:1f:1e:
33:c2:af:47:6b:ec:e6:a0:5e:2f:d5:01:56:4f:af:dd:71:4e:
9d:b0:ca:23:93:ab:97:c0:03:a5:f4:e3:df:e0:38:3f:59:74:
55:65:6b:5f:b3:ff:13:09:2a:e5:cc:73:10:3a:b5:32:4f:1c:
84:de:f8:8b:57:49:30:9a:5b:b5:18:45:81:c9:fd:fe:a8:7d:
f3:e7:5c:73:7b:2e:72:29:8c:63:b8:e1:02:72:18:e0:6a:a2:
61:c6:cd:61:5d:ce:95:a5:0c:95:9a:3d:fa:e8:7d:7a:cc:cb:
d6:42:e4:08:6e:93:5f:4e:72:e9:6b:a6:7c:a8:98:8c:2b:12:
2d:3e:8f:df:d1:be:f1:bc:fe:e6:32:76:da:1c:a0:b6:9a:8e:
16:12:b4:ab:ab:31:8c:54:b7:c0:bf:82:d3:ef:46:16:31:c4:
cc:43:b4:04:6d:ac:24:09:5e:70:76:9d:85:eb:04:2e:a7:79:
96:e0:39:cb:ac:0a:9a:bb:69:e1:0c:7e:1f:73:2c:f7:6c:1c:
9b:1e:7a:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 06:11:11 2025 by rpki-client