Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/eJzRI81HdPyOIFJkXGOmHYTWCcs.roa
File: eJzRI81HdPyOIFJkXGOmHYTWCcs.roa (raw, json)
Hash identifier: 1mYXjtqf+IeExRGQcq9qwn7B8hdESF2FzctPjWzekxo=
Subject key identifier: 78:9C:D1:23:CD:47:74:FC:8E:20:52:64:5C:63:A6:1D:84:D6:09:CB
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 0190210BB87751F5096AB45B232268728BA2
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/eJzRI81HdPyOIFJkXGOmHYTWCcs.roa
Signing time: Sun 16 Jun 2024 12:35:34 +0000
ROA not before: Sun 16 Jun 2024 12:35:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51741
IP address blocks: 2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 16 Jun 2024 13:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:21:0b:b8:77:51:f5:09:6a:b4:5b:23:22:68:72:8b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: Jun 16 12:35:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=789cd123cd4774fc8e2052645c63a61d84d609cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2f:1b:3b:3c:46:f3:3a:0b:ba:60:32:8f:8e:
9b:ae:1b:e5:cb:83:71:75:81:cc:9c:dc:d8:c0:29:
71:1a:3f:bc:dc:22:2a:36:bb:da:be:83:09:9f:2c:
67:a5:d7:57:4a:bf:76:1d:5f:39:dc:6a:c7:4d:37:
39:bd:3f:a9:f2:a5:b2:f4:b5:e0:40:f7:f8:ba:f6:
23:6d:04:94:1a:fa:9f:37:74:41:90:c6:06:be:8f:
17:25:c6:5b:42:68:2f:17:68:50:a7:5e:73:af:17:
af:10:c1:a7:c2:26:35:81:b6:db:66:d6:2b:a6:7c:
f9:50:a1:70:ee:d5:e5:ca:f9:b8:dc:33:77:91:2c:
d4:ff:9a:21:29:56:fc:2b:15:c8:52:55:19:e4:ab:
4e:7b:c0:bc:a6:b2:1c:ae:a2:19:bb:e1:72:5d:7a:
82:87:34:03:a0:e1:8b:b8:cd:bf:09:ba:f5:9f:c6:
5b:e2:75:3a:31:a0:55:b9:5b:09:40:c3:07:ff:83:
89:eb:71:a5:b3:5d:60:2a:29:de:75:05:72:29:cb:
5e:e9:0a:9a:33:e6:ef:af:38:62:5b:18:17:83:96:
25:b1:c1:f5:69:45:dd:54:01:98:ec:85:2c:56:5a:
fe:2c:7b:e9:c9:96:1d:8f:f5:7b:07:9c:9f:a1:09:
b9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:9C:D1:23:CD:47:74:FC:8E:20:52:64:5C:63:A6:1D:84:D6:09:CB
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/eJzRI81HdPyOIFJkXGOmHYTWCcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
e3:ec:eb:02:c0:16:7d:42:7b:71:ed:be:8f:79:82:43:51:2e:
d1:0c:17:ff:f1:ed:de:ab:47:7d:5c:ad:73:2d:bb:b1:2a:e2:
03:ab:10:84:c8:d4:80:c1:f3:b2:10:25:77:54:ce:06:28:92:
8a:18:7b:22:40:1f:4d:85:82:86:8d:26:fa:75:00:a7:b0:01:
9c:90:2e:32:7e:d8:9c:c8:8b:f7:8b:18:9f:be:c0:11:4b:67:
c2:91:ee:6d:c1:08:72:fa:36:1c:08:f4:b0:c6:4b:8e:b4:b1:
37:ef:3d:50:53:bf:6b:59:eb:5e:9d:4b:8e:d1:72:be:0c:96:
a7:08:74:00:36:02:61:0d:12:73:71:ed:fb:4d:58:88:3c:a4:
0f:08:b0:27:e8:5b:42:78:28:fe:d2:14:4d:cf:29:7f:29:50:
aa:e3:1c:a2:4b:f1:89:77:90:d9:3b:61:a2:17:8f:93:d0:cf:
70:8e:88:16:e7:d9:4c:e1:c7:84:f1:de:cf:0d:40:cb:cc:83:
39:08:ba:ef:1d:c3:52:11:cb:9f:32:fa:27:98:c0:3d:bf:ae:
21:c8:db:d8:b4:56:4a:e9:d4:bc:f6:c3:f7:15:77:a1:2b:fe:
61:35:7a:51:fa:fb:79:dc:6e:c5:78:11:b0:c1:08:77:a7:08:
0d:1b:b6:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:18:07 2025 by rpki-client