Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/LOxKQhsYYqyUaOk-hK9Fe3s42FA.roa
File: LOxKQhsYYqyUaOk-hK9Fe3s42FA.roa (raw, json)
Hash identifier: QrNBOdGzymNboUO8WtP4+AWEplFRzWptneEBogcvS8o=
Subject key identifier: 2C:EC:4A:42:1B:18:62:AC:94:68:E9:3E:84:AF:45:7B:7B:38:D8:50
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 01936EA7C9032C8DCEEBDD1CB6D9C111C61E
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/LOxKQhsYYqyUaOk-hK9Fe3s42FA.roa
Signing time: Wed 27 Nov 2024 17:25:09 +0000
ROA not before: Wed 27 Nov 2024 17:25:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a06:d640::/32 maxlen: 32
2a06:d646::/32 maxlen: 32
2a09:e302::/32 maxlen: 32
2a09:e306::/32 maxlen: 32
2a09:ef01::/32 maxlen: 32
2a09:ef02::/32 maxlen: 32
2a09:ef05::/32 maxlen: 32
2a09:ef07::/32 maxlen: 32
2a0a:b385::/32 maxlen: 32
2a0b:9001::/32 maxlen: 32
2a0b:9005::/32 maxlen: 32
2a0d:3c42::/32 maxlen: 32
2a0d:3c44::/32 maxlen: 32
2a0d:95c1::/32 maxlen: 32
2a0d:95c2::/32 maxlen: 32
2a0d:95c5::/32 maxlen: 32
2a0d:afc0::/32 maxlen: 32
2a0d:afc6::/32 maxlen: 32
2a0d:c104::/32 maxlen: 32
2a0d:c105::/32 maxlen: 32
2a0f:3102::/32 maxlen: 32
2a0f:3105::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 27 Nov 2024 18:05:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6e:a7:c9:03:2c:8d:ce:eb:dd:1c:b6:d9:c1:11:c6:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Nov 27 17:25:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2cec4a421b1862ac9468e93e84af457b7b38d850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bf:74:62:00:28:30:5c:1e:a4:0e:a7:9b:4a:
2b:ff:52:7b:13:b3:72:ed:3a:ee:90:49:8e:94:5e:
d9:a3:f8:46:c7:27:a1:cd:3c:ca:1f:d5:e8:c8:b1:
f4:05:b1:b6:96:6b:3d:67:7c:8b:ec:10:16:f6:70:
a1:be:87:1b:d2:e1:26:55:da:0c:e6:07:25:0d:b1:
c4:c4:e6:f1:58:c2:51:b8:fc:6a:2d:de:90:4c:c6:
07:6a:43:c9:63:01:a3:07:bd:66:ee:f0:b5:d3:53:
1f:9e:9d:1f:c2:61:70:0c:30:f0:a6:5b:b0:35:a5:
df:4d:b5:28:e4:bd:d9:df:74:9c:72:a0:07:d7:8e:
79:95:c2:7f:36:69:c4:0c:6c:67:e8:0c:b7:b7:c2:
aa:e3:59:fa:54:35:8b:04:66:a7:5d:b9:95:f2:57:
d1:fb:05:13:75:b0:fe:0f:32:cb:03:95:78:16:b7:
98:3a:90:60:5b:7c:b4:91:5c:c0:68:b9:12:d0:0d:
0a:63:7b:91:e1:db:6b:b4:2c:2d:80:f1:c3:9e:6d:
8d:b7:76:79:5a:d9:63:aa:2d:47:56:bd:ff:83:54:
08:f5:fa:5d:ec:cf:a9:d5:8b:d8:3d:b2:8e:8b:20:
b9:6e:e0:2e:a3:76:16:bd:70:ac:97:9a:dd:0f:5b:
f4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:EC:4A:42:1B:18:62:AC:94:68:E9:3E:84:AF:45:7B:7B:38:D8:50
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/LOxKQhsYYqyUaOk-hK9Fe3s42FA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:d640::/32
2a06:d646::/32
2a09:e302::/32
2a09:e306::/32
2a09:ef01::-2a09:ef02:ffff:ffff:ffff:ffff:ffff:ffff
2a09:ef05::/32
2a09:ef07::/32
2a0a:b385::/32
2a0b:9001::/32
2a0b:9005::/32
2a0d:3c42::/32
2a0d:3c44::/32
2a0d:95c1::-2a0d:95c2:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:95c5::/32
2a0d:afc0::/32
2a0d:afc6::/32
2a0d:c104::/31
2a0f:3102::/32
2a0f:3105::/32
Signature Algorithm: sha256WithRSAEncryption
2e:68:ec:d0:76:10:da:7d:92:d6:4f:ab:d6:e3:9f:64:1b:ca:
71:b1:08:bd:c5:ba:37:23:66:58:11:d4:50:ad:4b:48:a7:a8:
e8:f3:ad:62:99:0b:c4:35:00:c8:91:8a:9d:9c:6b:76:0f:e1:
b0:c8:a0:a3:6e:1e:40:61:3b:b0:9b:af:50:4c:20:15:e2:ac:
b7:2f:6e:26:3d:d2:f3:0b:e2:4c:3b:5b:31:3c:fe:f9:f7:9c:
87:d5:59:93:be:81:61:4b:9e:3d:90:03:4f:12:aa:b3:54:a3:
81:15:09:35:85:74:65:14:59:e9:bc:10:55:c7:03:06:3b:42:
20:a0:a6:47:34:68:0f:24:8d:62:b4:7b:cb:96:ac:6e:f8:76:
69:e6:b4:25:5a:17:37:c1:37:ed:32:c2:25:4b:2f:fd:b2:2f:
a4:74:c1:b1:09:67:34:10:9c:96:9e:11:3b:6e:37:eb:f5:24:
ca:75:df:e9:08:50:6e:26:14:e6:54:a8:a9:b3:19:3d:b0:bd:
51:74:61:ca:07:5f:2b:1e:ed:8c:f7:f5:32:e5:4e:f6:d8:97:
ec:90:b2:fc:af:74:c7:d8:20:15:57:2a:35:35:84:23:74:7b:
5f:1b:75:38:01:9e:5a:ba:03:c3:71:48:c1:b8:c5:e2:9e:6a:
9b:e1:d1:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 11:30:46 2025 by rpki-client