Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/NVYVD0FNBe46QuGLZU4WFIXHfws.roa
File: NVYVD0FNBe46QuGLZU4WFIXHfws.roa (raw, json)
Hash identifier: qzozMgmsA5wg3UqW7xBSTNMiImVjeNrxhWCbKKObecw=
Subject key identifier: 35:56:15:0F:41:4D:05:EE:3A:42:E1:8B:65:4E:16:14:85:C7:7F:0B
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 019586826199CEBB7D01FFC25A28020600C3
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/NVYVD0FNBe46QuGLZU4WFIXHfws.roa
Signing time: Tue 11 Mar 2025 18:40:46 +0000
ROA not before: Tue 11 Mar 2025 18:40:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204490
IP address blocks: 2a06:d644::/32 maxlen: 32
2a09:2984::/32 maxlen: 32
2a09:a806::/32 maxlen: 32
2a09:bc05::/32 maxlen: 32
2a09:cf03::/32 maxlen: 32
2a09:d704::/32 maxlen: 32
2a09:dd02::/32 maxlen: 32
2a09:e304::/32 maxlen: 32
2a09:e307::/32 maxlen: 32
2a09:ef06::/32 maxlen: 32
2a0d:3c47::/32 maxlen: 32
2a0d:95c0::/32 maxlen: 32
2a0d:afc1::/32 maxlen: 32
2a0d:afc5::/32 maxlen: 32
2a0d:afc7::/32 maxlen: 32
2a0d:c100::/32 maxlen: 32
2a0d:c102::/32 maxlen: 32
2a0d:fcc5::/32 maxlen: 32
2a0f:3104::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 12 Mar 2025 15:56:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:86:82:61:99:ce:bb:7d:01:ff:c2:5a:28:02:06:00:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Mar 11 18:40:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3556150f414d05ee3a42e18b654e161485c77f0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:29:68:20:04:08:44:4d:eb:1b:bd:45:ad:aa:
11:c5:a9:53:28:ed:92:0c:d7:b3:f4:79:1b:ce:25:
23:3e:c8:20:52:09:5e:b6:17:55:e2:fc:c2:98:e9:
c4:c0:80:fb:4a:e1:c5:87:c6:b2:c1:f3:0b:ca:de:
61:05:7c:a1:bb:dd:49:65:65:25:3b:2a:6b:af:d1:
b9:65:71:04:27:f4:eb:bc:ae:fe:dc:b4:9b:94:ec:
44:06:f0:33:a8:73:73:e8:cb:9c:ec:99:e3:56:9f:
f0:24:d4:94:57:d3:a5:94:90:c7:c1:89:f7:94:54:
0b:e8:8f:27:aa:85:23:ce:0d:46:aa:30:ad:22:6f:
09:df:2a:f2:16:94:4a:3e:b6:2e:ad:ab:f5:d0:81:
c6:39:80:47:c2:14:d6:ea:44:be:a5:13:ae:97:d9:
1e:3f:ae:10:6e:6a:94:65:f7:1f:9c:b7:de:a9:de:
97:1c:f1:25:72:65:eb:86:9b:1f:30:d3:07:3e:ec:
77:5c:6b:6b:22:4e:d0:ad:9f:1f:4d:0d:8b:bc:0c:
19:84:c3:aa:ca:1d:72:ce:4b:7d:75:11:c5:9b:fb:
d5:a0:7b:f6:15:0e:75:8f:fd:c7:89:5e:31:8a:44:
a2:75:62:d9:73:e3:ba:0f:7d:38:cb:6d:90:9c:ef:
a8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:56:15:0F:41:4D:05:EE:3A:42:E1:8B:65:4E:16:14:85:C7:7F:0B
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/NVYVD0FNBe46QuGLZU4WFIXHfws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:d644::/32
2a09:2984::/32
2a09:a806::/32
2a09:bc05::/32
2a09:cf03::/32
2a09:d704::/32
2a09:dd02::/32
2a09:e304::/32
2a09:e307::/32
2a09:ef06::/32
2a0d:3c47::/32
2a0d:95c0::/32
2a0d:afc1::/32
2a0d:afc5::/32
2a0d:afc7::/32
2a0d:c100::/32
2a0d:c102::/32
2a0d:fcc5::/32
2a0f:3104::/32
Signature Algorithm: sha256WithRSAEncryption
d5:0c:07:05:8c:a4:8b:3d:f3:03:08:2d:23:f7:57:a6:bc:95:
0a:62:18:34:72:04:cf:6c:a8:12:90:16:a6:80:14:22:61:45:
a5:04:ed:da:ed:f3:42:68:4b:c0:d9:4c:5d:2f:40:0b:1c:66:
84:4c:1a:20:a3:a0:54:95:96:c6:7a:98:2f:08:cf:aa:13:50:
43:9f:52:05:07:c6:2b:f4:3b:be:9a:0c:2a:19:de:78:09:2c:
3c:70:4b:15:25:94:31:a4:f3:f0:9c:d6:f0:f3:fb:d1:20:d4:
1f:1c:82:19:12:5b:c1:d1:56:7e:27:f1:4a:ed:51:28:99:d0:
e1:ab:cd:06:a1:ad:f2:ac:e3:9c:8b:96:f4:23:a2:73:f1:06:
7a:24:a6:ef:b1:21:97:4e:01:c0:72:6c:63:17:ad:41:25:de:
35:12:eb:6c:44:de:a0:cc:d7:23:7f:bb:64:4a:95:3e:e7:0f:
65:e2:aa:a5:d7:3a:19:4f:bd:ec:60:ef:c9:4a:65:37:72:54:
dc:51:c9:bf:da:5e:98:0c:d2:68:73:2b:b6:27:9b:2e:b0:1b:
99:d2:98:68:f4:b3:47:af:7a:39:a5:d2:76:cc:31:1f:d5:15:
39:c8:bd:91:e5:0a:7f:d0:df:46:9f:08:a8:10:a8:10:56:f8:
76:5a:cd:12
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgISAZWGgmGZzrt9Af/CWigCBgDDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjZDc2MTU5YmZkOWUzMzc1MjNlZTkzMGYzZGYxMTFkNmJh
ZTczMDYwHhcNMjUwMzExMTg0MDQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNTU2MTUwZjQxNGQwNWVlM2E0MmUxOGI2NTRlMTYxNDg1Yzc3ZjBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzCloIAQIRE3rG71FraoRxalTKO2S
DNez9HkbziUjPsggUglethdV4vzCmOnEwID7SuHFh8aywfMLyt5hBXyhu91JZWUl
Oyprr9G5ZXEEJ/TrvK7+3LSblOxEBvAzqHNz6Muc7JnjVp/wJNSUV9OllJDHwYn3
lFQL6I8nqoUjzg1GqjCtIm8J3yryFpRKPrYurav10IHGOYBHwhTW6kS+pROul9ke
P64QbmqUZfcfnLfeqd6XHPElcmXrhpsfMNMHPux3XGtrIk7QrZ8fTQ2LvAwZhMOq
yh1yzkt9dRHFm/vVoHv2FQ51j/3HiV4xikSidWLZc+O6D304y22QnO+oKwIDAQAB
o4ICjTCCAokwHQYDVR0OBBYEFDVWFQ9BTQXuOkLhi2VOFhSFx38LMB8GA1UdIwQY
MBaAFMzXYVm/2eM3Uj7pMPPfER1rrnMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvek5kaFdiX1o0emRTUHVrdzg5OFJIV3V1Y3dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC9mNmFkYTEtN2U4YS00YjNlLWI3ZTgt
Zjg1ODlmNjgyNjkxLzEvTlZZVkQwRk5CZTQ2UXVHTFpVNFdGSVhIZndzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC9mNmFkYTEtN2U4YS00YjNlLWI3ZTgtZjg1ODlmNjgyNjkx
LzEvek5kaFdiX1o0emRTUHVrdzg5OFJIV3V1Y3dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGiBggrBgEFBQcBBwEB/wSBkjCBjzCBjAQCAAIwgYUDBQAq
BtZEAwUAKgkphAMFACoJqAYDBQAqCbwFAwUAKgnPAwMFACoJ1wQDBQAqCd0CAwUA
KgnjBAMFACoJ4wcDBQAqCe8GAwUAKg08RwMFACoNlcADBQAqDa/BAwUAKg2vxQMF
ACoNr8cDBQAqDcEAAwUAKg3BAgMFACoN/MUDBQAqDzEEMA0GCSqGSIb3DQEBCwUA
A4IBAQDVDAcFjKSLPfMDCC0j91emvJUKYhg0cgTPbKgSkBamgBQiYUWlBO3a7fNC
aEvA2UxdL0ALHGaETBogo6BUlZbGepgvCM+qE1BDn1IFB8Yr9Du+mgwqGd54CSw8
cEsVJZQxpPPwnNbw8/vRINQfHIIZElvB0VZ+J/FK7VEomdDhq80Goa3yrOOci5b0
I6Jz8QZ6JKbvsSGXTgHAcmxjF61BJd41EutsRN6gzNcjf7tkSpU+5w9l4qql1zoZ
T73sYO/JSmU3clTcUcm/2l6YDNJocyu2J5susBuZ0pho9LNHr3o5pdJ2zDEf1RU5
yL2R5Qp/0N9GnwioEKgQVvh2Ws0S
-----END CERTIFICATE-----
Generated at Sun Apr 20 03:14:13 2025 by rpki-client