Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b41a9f-348d-4b24-bba0-27647bcef4b0/1/7_vw33pmGIoluAxR5zJfbrJUbXs.roa
File: 7_vw33pmGIoluAxR5zJfbrJUbXs.roa (raw, json)
Hash identifier: BH60JCkHmy6uMoDfZfkpY7eNZGPabf8tHsV3iRaXvGM=
Subject key identifier: EF:FB:F0:DF:7A:66:18:8A:25:B8:0C:51:E7:32:5F:6E:B2:54:6D:7B
Certificate issuer: /CN=da6e6f392271951b35347facd513f932fe67a0c1
Certificate serial: 019427B36B9E95EF9E4629FBB2D2A1C69D57
Authority key identifier: DA:6E:6F:39:22:71:95:1B:35:34:7F:AC:D5:13:F9:32:FE:67:A0:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2m5vOSJxlRs1NH-s1RP5Mv5noME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b41a9f-348d-4b24-bba0-27647bcef4b0/1/7_vw33pmGIoluAxR5zJfbrJUbXs.roa
Signing time: Thu 02 Jan 2025 15:47:37 +0000
ROA not before: Thu 02 Jan 2025 15:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1103
IP address blocks: 131.211.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Fri 17 Jan 2025 10:10:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:6b:9e:95:ef:9e:46:29:fb:b2:d2:a1:c6:9d:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6e6f392271951b35347facd513f932fe67a0c1
Validity
Not Before: Jan 2 15:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=effbf0df7a66188a25b80c51e7325f6eb2546d7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0a:f7:7a:36:1e:11:af:9d:11:bf:d3:b4:75:
71:4d:97:d4:19:a3:24:cb:1c:d5:f3:4e:f6:ad:c1:
11:ab:08:2a:b2:d6:f7:fc:f1:17:cd:d9:21:1d:0e:
0c:ce:7a:9d:bc:7f:9d:d1:e3:70:75:e3:37:64:4f:
24:27:b2:a1:39:c9:e7:b7:a3:94:b8:12:17:b0:25:
5e:94:4f:f7:68:19:0d:95:1d:4d:2f:33:0e:c1:6a:
f4:fc:d7:ca:bd:23:fc:fe:81:07:ba:9f:b1:42:4c:
4c:6f:12:6c:7a:c5:d0:9f:99:11:9f:51:3e:f6:62:
7f:f9:54:ec:31:c7:5f:61:2d:24:c6:f7:50:6f:61:
02:e8:1c:48:a2:0a:17:33:65:54:cd:d5:f8:22:9e:
e7:ce:17:8f:2d:ab:95:49:0c:6f:2e:2a:51:cf:2b:
bb:3e:12:a7:d0:4f:12:ef:68:65:bf:bd:b2:48:08:
5b:f1:52:62:61:4c:2e:19:22:5c:24:7f:9b:2a:ec:
98:1b:dd:92:8d:c9:b5:97:0e:f1:8c:ce:1b:ab:43:
e6:91:78:d8:3a:73:5e:e0:ec:95:02:3f:e2:af:a2:
00:fe:6b:f7:e9:76:c9:2e:74:6a:6b:19:11:4f:32:
14:ea:76:db:79:2d:69:3c:4b:62:36:01:37:e7:5a:
9b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:FB:F0:DF:7A:66:18:8A:25:B8:0C:51:E7:32:5F:6E:B2:54:6D:7B
X509v3 Authority Key Identifier:
keyid:DA:6E:6F:39:22:71:95:1B:35:34:7F:AC:D5:13:F9:32:FE:67:A0:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2m5vOSJxlRs1NH-s1RP5Mv5noME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b41a9f-348d-4b24-bba0-27647bcef4b0/1/7_vw33pmGIoluAxR5zJfbrJUbXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b41a9f-348d-4b24-bba0-27647bcef4b0/1/2m5vOSJxlRs1NH-s1RP5Mv5noME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.211.0.0/16
Signature Algorithm: sha256WithRSAEncryption
90:f7:d4:69:a8:67:b2:ef:09:c1:fe:cc:09:f5:c2:e0:7f:15:
0d:44:75:97:72:d2:13:b1:b5:8b:70:63:72:82:ae:66:bb:2f:
fb:fc:cb:10:b9:e0:48:c5:44:e6:db:9e:32:80:16:90:ad:cc:
6b:85:00:0b:22:08:ba:74:11:f8:2e:4f:9d:53:76:a9:4a:91:
0c:87:2b:8d:5a:e6:e6:6e:26:7c:6a:19:d1:da:74:55:71:63:
e0:61:7e:7a:54:9c:92:03:e6:74:ed:9c:37:99:0e:be:d8:a8:
23:ca:37:f8:06:6b:e9:64:48:c4:a5:4f:ed:ba:74:00:9c:79:
62:6a:16:fd:90:da:46:72:98:d5:6a:56:ec:ca:8f:5c:72:1d:
df:27:42:ef:f7:50:bf:40:91:7c:11:92:3f:a7:57:1a:69:6f:
c3:ca:a9:38:8d:fd:2c:8f:b3:90:13:59:de:e1:54:ad:b5:f6:
ab:35:b6:86:eb:70:a8:58:ca:c2:a2:6d:81:0d:94:23:db:44:
4c:fe:de:9a:a3:06:aa:32:87:16:28:fb:c8:8b:09:21:01:9d:
5a:ba:f0:67:18:4a:9c:5a:08:4f:69:da:78:aa:90:80:af:51:
36:7d:57:02:e1:00:12:b8:b6:2d:8f:77:d3:a0:0c:5b:29:d2:
3d:ad:b3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:14:17 2025 by rpki-client