Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/L0L6H9jxMZ5sCR443_mltGpFQck.roa
File: L0L6H9jxMZ5sCR443_mltGpFQck.roa (raw, json)
Hash identifier: 96ub+2cbxW6a6mLBYeNjgmWgudQdInxsetpuCuQzEW8=
Subject key identifier: 2F:42:FA:1F:D8:F1:31:9E:6C:09:1E:38:DF:F9:A5:B4:6A:45:41:C9
Certificate issuer: /CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Certificate serial: 0193F80F7ED1204BE317B152C187CEAFDD4C
Authority key identifier: E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/L0L6H9jxMZ5sCR443_mltGpFQck.roa
Signing time: Tue 24 Dec 2024 09:46:25 +0000
ROA not before: Tue 24 Dec 2024 09:46:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20649
IP address blocks: 2a0b:9800::/32 maxlen: 32
2a0b:9801::/32 maxlen: 32
2a0b:9802::/32 maxlen: 32
2a0b:9803::/32 maxlen: 32
2a0b:9804::/32 maxlen: 32
2a0b:9805::/32 maxlen: 32
2a0b:9806::/32 maxlen: 32
2a0b:9807::/32 maxlen: 32
2a14:4080::/32 maxlen: 32
2a14:4081::/32 maxlen: 32
2a14:4082::/32 maxlen: 32
2a14:4083::/32 maxlen: 32
2a14:4084::/32 maxlen: 32
2a14:4085::/32 maxlen: 32
2a14:4086::/32 maxlen: 32
2a14:4087::/32 maxlen: 32
2a14:4380::/32 maxlen: 32
2a14:4381::/32 maxlen: 32
2a14:4382::/32 maxlen: 32
2a14:4383::/32 maxlen: 32
2a14:4384::/32 maxlen: 32
2a14:4385::/32 maxlen: 32
2a14:4386::/32 maxlen: 32
2a14:4387::/32 maxlen: 32
2a14:4480::/32 maxlen: 32
2a14:4481::/32 maxlen: 32
2a14:4482::/32 maxlen: 32
2a14:4483::/32 maxlen: 32
2a14:4484::/32 maxlen: 32
2a14:4485::/32 maxlen: 32
2a14:4486::/32 maxlen: 32
2a14:4487::/32 maxlen: 32
2a14:4980::/32 maxlen: 32
2a14:4981::/32 maxlen: 32
2a14:4982::/32 maxlen: 32
2a14:4983::/32 maxlen: 32
2a14:4984::/32 maxlen: 32
2a14:4985::/32 maxlen: 32
2a14:4986::/32 maxlen: 32
2a14:4987::/32 maxlen: 32
2a14:4a80::/32 maxlen: 32
2a14:4a81::/32 maxlen: 32
2a14:4a82::/32 maxlen: 32
2a14:4a83::/32 maxlen: 32
2a14:4a84::/32 maxlen: 32
2a14:4a85::/32 maxlen: 32
2a14:4a86::/32 maxlen: 32
2a14:4a87::/32 maxlen: 32
2a14:4b80::/32 maxlen: 32
2a14:4b81::/32 maxlen: 32
2a14:4b82::/32 maxlen: 32
2a14:4b83::/32 maxlen: 32
2a14:4b84::/32 maxlen: 32
2a14:4b85::/32 maxlen: 32
2a14:4b86::/32 maxlen: 32
2a14:4b87::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:47:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f8:0f:7e:d1:20:4b:e3:17:b1:52:c1:87:ce:af:dd:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Validity
Not Before: Dec 24 09:46:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f42fa1fd8f1319e6c091e38dff9a5b46a4541c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:95:1d:60:32:f8:78:26:55:cf:a5:6b:31:51:
0a:0c:5b:65:ab:6e:7c:64:e6:a8:db:ae:22:7c:b5:
0e:ac:d6:b3:1d:09:a2:f8:36:9a:74:da:3a:61:aa:
7d:00:ad:59:ab:eb:ba:b1:ac:5c:98:f0:f4:29:60:
ff:96:45:9d:a2:e2:5a:af:1c:82:99:0e:cd:93:aa:
30:e5:38:31:45:b8:26:f6:cb:49:10:d6:23:3b:42:
93:80:8c:f0:2e:c5:4a:8e:dc:ab:3e:2b:4a:b1:9a:
00:5b:fa:8b:91:17:b2:16:a9:dc:13:48:80:a2:1b:
4a:e1:3b:d8:0c:06:6c:fb:31:d8:3d:93:83:a6:9f:
dd:aa:d5:38:b9:33:3b:fb:9c:d2:3f:17:60:f0:3f:
be:d3:6e:d1:00:65:d9:ae:db:c8:3b:a5:90:39:5c:
0d:b3:6e:d1:9f:81:57:b5:33:76:18:ac:4d:ca:77:
b0:75:2d:ef:8f:9c:c6:49:64:36:5c:2f:45:9c:79:
53:be:d9:ca:6d:c6:ba:f5:77:61:2f:1c:4a:e3:68:
e0:fe:78:48:4f:8d:1f:88:dc:59:9c:f7:bb:b6:4f:
82:62:2f:f2:73:31:74:4e:8b:6d:62:93:40:da:fb:
bc:9e:76:96:cf:c6:05:28:00:39:40:18:0d:f9:0f:
2d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:42:FA:1F:D8:F1:31:9E:6C:09:1E:38:DF:F9:A5:B4:6A:45:41:C9
X509v3 Authority Key Identifier:
keyid:E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/L0L6H9jxMZ5sCR443_mltGpFQck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:9800::/29
2a14:4080::/29
2a14:4380::/29
2a14:4480::/29
2a14:4980::/29
2a14:4a80::/29
2a14:4b80::/29
Signature Algorithm: sha256WithRSAEncryption
a6:8e:35:cd:8a:da:1b:c2:a8:87:1d:25:b4:64:9b:1f:04:57:
56:70:05:b6:c5:51:74:92:e7:e4:fb:33:47:ce:15:4c:33:cd:
0e:91:92:a0:33:c3:52:92:81:de:c9:d0:1f:e8:ba:b5:5a:41:
35:37:14:b6:42:be:2f:2b:0c:5e:11:33:c9:55:08:c5:88:68:
f1:55:6c:03:01:6b:fb:8b:20:a2:e3:93:03:5f:4b:ba:d5:8c:
e6:1c:42:4e:88:ab:df:ce:da:04:f8:0b:96:dd:01:3d:de:e1:
05:10:38:b5:31:13:c4:3c:bf:ff:61:cf:11:a1:2c:f0:fd:7f:
42:d2:39:a2:a1:b7:a5:06:73:1a:ed:54:b5:db:c2:8b:ed:01:
2c:74:93:a9:7d:41:19:3e:88:50:fe:f6:9d:fe:2e:4d:8d:43:
5b:bb:1b:18:25:ff:c9:04:b0:be:bc:af:9a:06:ed:bd:6c:f6:
6d:a4:e3:0c:65:7f:1c:bc:e0:f8:31:b9:58:12:6f:e1:c9:67:
29:8d:7d:3c:14:9b:48:1b:41:6e:28:3f:d8:bf:33:e3:b3:e3:
91:06:57:1f:98:80:0a:b4:83:b4:dc:36:3e:33:5a:04:33:0e:
80:fc:83:2c:b9:61:f2:3d:7f:45:9a:8c:1b:ff:75:f8:ab:8d:
c8:e0:17:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 23:25:54 2025 by rpki-client