Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/Ms8Kzf1U0m4EtdmWcjhQf7l6sqU.roa
File: Ms8Kzf1U0m4EtdmWcjhQf7l6sqU.roa (raw, json)
Hash identifier: C1C9QwYwi91wk4kINcpXbh7Nn2J6lN8n4MyP+Eud/7E=
Subject key identifier: 32:CF:0A:CD:FD:54:D2:6E:04:B5:D9:96:72:38:50:7F:B9:7A:B2:A5
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 019422FB7AB3BB3C75EFF07E1B7E373D73EA
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/Ms8Kzf1U0m4EtdmWcjhQf7l6sqU.roa
Signing time: Wed 01 Jan 2025 17:48:13 +0000
ROA not before: Wed 01 Jan 2025 17:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209641
IP address blocks: 2a06:d640::/32 maxlen: 32
2a06:d646::/32 maxlen: 32
2a09:e302::/32 maxlen: 32
2a09:e306::/32 maxlen: 32
2a09:ef01::/32 maxlen: 32
2a09:ef02::/32 maxlen: 32
2a09:ef05::/32 maxlen: 32
2a09:ef07::/32 maxlen: 32
2a0a:b385::/32 maxlen: 32
2a0b:9001::/32 maxlen: 32
2a0b:9005::/32 maxlen: 32
2a0d:3c44::/32 maxlen: 32
2a0d:95c1::/32 maxlen: 32
2a0d:95c5::/32 maxlen: 32
2a0d:afc0::/32 maxlen: 32
2a0d:afc6::/32 maxlen: 32
2a0d:c105::/32 maxlen: 32
2a0f:3105::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 22 Jan 2025 18:24:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:7a:b3:bb:3c:75:ef:f0:7e:1b:7e:37:3d:73:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Jan 1 17:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32cf0acdfd54d26e04b5d9967238507fb97ab2a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1f:11:40:a7:8b:a5:f3:3f:62:21:94:9d:17:
11:14:8a:c3:d2:b3:4d:5c:73:96:7e:22:05:fa:c3:
b5:1d:a5:2f:ee:c2:58:43:3b:6d:be:82:25:4a:47:
ec:35:52:f5:3e:28:b2:0e:a1:54:d1:16:f6:94:10:
f5:37:30:15:03:7f:7c:ad:29:df:08:8f:0d:6b:09:
91:06:6d:be:ff:81:e2:1a:8e:2d:6b:e4:29:77:50:
5e:32:f7:26:e5:1b:08:00:42:2e:7f:3f:a5:73:4c:
25:81:65:6a:80:ce:49:5f:64:8d:71:5b:e6:12:bd:
75:3e:16:26:98:29:00:ba:04:31:d4:7a:7f:31:ea:
98:87:54:fe:ed:01:25:e2:7b:53:e4:24:8e:20:93:
69:16:4e:11:34:e4:65:1e:40:c5:9b:ec:42:ea:0f:
bd:71:c5:29:80:0e:62:e5:c6:da:02:b3:08:3d:05:
65:58:52:ae:6c:d4:00:73:44:57:76:2b:34:eb:89:
6d:ec:04:0f:4b:4f:27:1a:13:45:20:e7:a7:37:87:
ce:06:69:b1:14:bb:c0:e1:79:0c:0f:d6:da:30:3d:
62:39:03:86:3f:ff:39:01:0b:4d:54:b1:09:59:aa:
4e:ee:5e:e8:73:75:f0:b9:39:32:49:92:11:a8:14:
42:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:CF:0A:CD:FD:54:D2:6E:04:B5:D9:96:72:38:50:7F:B9:7A:B2:A5
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/Ms8Kzf1U0m4EtdmWcjhQf7l6sqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:d640::/32
2a06:d646::/32
2a09:e302::/32
2a09:e306::/32
2a09:ef01::-2a09:ef02:ffff:ffff:ffff:ffff:ffff:ffff
2a09:ef05::/32
2a09:ef07::/32
2a0a:b385::/32
2a0b:9001::/32
2a0b:9005::/32
2a0d:3c44::/32
2a0d:95c1::/32
2a0d:95c5::/32
2a0d:afc0::/32
2a0d:afc6::/32
2a0d:c105::/32
2a0f:3105::/32
Signature Algorithm: sha256WithRSAEncryption
d4:d0:e8:64:63:61:a3:57:d2:41:ae:db:b1:9a:f4:1f:14:88:
3b:2c:46:45:78:d0:ab:24:6c:28:cf:14:03:81:e8:37:df:bc:
9c:e9:ab:bc:03:26:b3:7b:08:9d:3a:4d:7c:37:14:27:eb:ed:
89:ee:a8:9c:ac:79:b3:78:b2:b0:10:b9:6e:55:61:f7:7a:02:
fc:17:8a:0d:64:b2:f5:45:19:95:b4:0c:67:30:b2:db:22:33:
05:d9:8a:e8:26:a9:75:ab:ae:79:cf:16:87:c8:ab:74:d0:56:
fd:ec:25:9f:1f:c2:1a:98:3e:dd:7d:a2:86:9e:b4:b4:db:28:
04:ca:6d:ff:f5:f9:f7:27:f7:93:24:2b:61:38:8c:82:7d:e6:
f7:f8:e4:17:d8:c3:09:88:28:39:e9:d1:4d:e5:12:14:c4:da:
3f:4e:b1:5e:ad:3f:c1:67:e9:b1:12:bf:a3:d6:37:c2:e9:6b:
82:09:d0:74:d9:6f:c9:89:d9:13:53:ad:fd:62:53:8d:16:3d:
d0:33:74:51:e0:50:17:db:0a:2e:da:b7:1b:ac:3d:c2:98:36:
f4:7b:68:ec:ef:cb:58:b8:66:cb:1a:b3:83:3a:59:66:b9:93:
f4:f6:81:54:5d:4a:9d:e2:bd:4c:dc:d4:c5:3d:1f:75:60:31:
75:48:6d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:11:01 2025 by rpki-client