Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/b52421-1a3d-48f5-949f-a329394698d2/1/7MZeSZoiYL0RF7trVeYqWK2XgGI.roa
File: 7MZeSZoiYL0RF7trVeYqWK2XgGI.roa (raw, json)
Hash identifier: nMYHkC6bv+ujwkQshL9NTJ74A24MR32fgWcOTkkquGU=
Subject key identifier: EC:C6:5E:49:9A:22:60:BD:11:17:BB:6B:55:E6:2A:58:AD:97:80:62
Certificate issuer: /CN=f210bac96aff25b2aa931c4297446be37ffe2ada
Certificate serial: 01941F8C3FC0BA5B65E990F680F360245301
Authority key identifier: F2:10:BA:C9:6A:FF:25:B2:AA:93:1C:42:97:44:6B:E3:7F:FE:2A:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8hC6yWr_JbKqkxxCl0Rr43_-Kto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/b52421-1a3d-48f5-949f-a329394698d2/1/7MZeSZoiYL0RF7trVeYqWK2XgGI.roa
Signing time: Wed 01 Jan 2025 01:47:52 +0000
ROA not before: Wed 01 Jan 2025 01:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1103
IP address blocks: 130.37.0.0/16 maxlen: 16
192.31.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Jan 2025 10:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:3f:c0:ba:5b:65:e9:90:f6:80:f3:60:24:53:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f210bac96aff25b2aa931c4297446be37ffe2ada
Validity
Not Before: Jan 1 01:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ecc65e499a2260bd1117bb6b55e62a58ad978062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:eb:83:16:1d:1d:f5:77:8c:55:ef:69:4c:90:
ec:69:3f:4d:3a:b8:a8:1c:4d:6b:12:30:05:ab:9a:
29:bb:a4:33:df:93:20:18:e4:2e:bd:d3:2f:e0:23:
2c:ad:9a:3c:c9:e4:0f:a8:87:8b:33:7e:b0:e3:f1:
33:12:bd:51:af:87:69:60:22:ad:06:1a:de:9d:4b:
59:c3:47:c5:4a:df:af:90:59:01:c0:5b:b5:8a:a8:
56:86:a5:0e:c0:b7:6d:ea:d6:18:b6:d7:35:35:6d:
11:1d:2b:01:56:22:0a:50:15:0e:f1:9a:c2:b6:68:
38:1a:18:15:39:d2:dc:13:10:13:db:e5:18:2a:33:
19:da:a5:c4:45:8c:84:73:99:13:fc:2d:d1:fc:d0:
88:0e:4b:79:28:cb:b5:85:b3:f0:fe:ee:63:18:4c:
c7:32:05:82:b6:db:31:ca:95:90:84:cd:b3:82:d4:
5d:6f:eb:f2:28:63:f4:49:fb:8f:e5:93:f6:42:51:
80:aa:df:a6:8c:68:14:e4:ff:86:6c:94:73:78:56:
60:f2:fd:d9:9f:d2:f5:2e:6b:d8:8a:f3:94:38:d9:
5e:0c:41:ee:72:7f:91:f1:29:36:7c:c4:1b:8f:48:
37:77:f3:6f:a3:bb:43:6f:c3:0d:59:a0:39:28:52:
47:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C6:5E:49:9A:22:60:BD:11:17:BB:6B:55:E6:2A:58:AD:97:80:62
X509v3 Authority Key Identifier:
keyid:F2:10:BA:C9:6A:FF:25:B2:AA:93:1C:42:97:44:6B:E3:7F:FE:2A:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8hC6yWr_JbKqkxxCl0Rr43_-Kto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b52421-1a3d-48f5-949f-a329394698d2/1/7MZeSZoiYL0RF7trVeYqWK2XgGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/b52421-1a3d-48f5-949f-a329394698d2/1/8hC6yWr_JbKqkxxCl0Rr43_-Kto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.37.0.0/16
192.31.231.0/24
Signature Algorithm: sha256WithRSAEncryption
97:a2:4e:d3:e0:d6:37:ac:54:94:58:cb:10:3f:fe:94:a4:4f:
e0:7f:09:9a:5b:77:f1:9a:4f:27:69:11:ae:d1:cc:ab:1c:d9:
7c:84:70:46:24:07:a4:4a:2c:dd:b0:04:81:fb:5c:b7:03:36:
a3:a4:fe:aa:1b:88:df:49:f0:89:43:73:d8:92:90:98:ed:85:
d8:10:0d:94:c9:68:35:2e:f6:e6:7d:1f:c0:16:ff:35:24:70:
bd:37:c1:2a:3d:2f:19:e4:6a:8d:7f:dd:9a:80:c6:3c:5a:e6:
34:7b:44:60:b0:56:f7:d8:ed:a0:bc:7d:88:d4:3b:9f:90:03:
40:0a:41:93:52:fb:f6:36:df:c3:89:3b:62:4a:83:3b:8d:ac:
06:88:a5:3f:7c:d8:30:9d:39:63:88:96:c0:85:b9:b1:d0:a2:
51:92:9f:31:5e:ef:5a:a8:8f:0b:98:7f:b9:91:3b:cc:40:7f:
03:ca:60:a5:05:25:ec:61:73:e0:f2:4e:84:52:bf:9f:8b:52:
e7:c1:0e:96:67:18:99:5c:40:8a:c8:5e:dc:1e:09:65:c0:02:
e6:61:7d:a6:76:21:16:e2:d9:f3:dc:5c:71:e8:1d:c5:7f:d5:
80:59:fa:e6:13:4e:a5:bb:ca:79:d6:4b:93:35:e7:37:28:52:
17:cb:01:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:33:40 2025 by rpki-client