Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/7C_rZoLEwA18lQzdhYng7QXT0o4.roa
File: 7C_rZoLEwA18lQzdhYng7QXT0o4.roa (raw, json)
Hash identifier: icDNThJfOnlFzHh7x64dYi8UCTUA7aD2PfZJZqqpJek=
Subject key identifier: EC:2F:EB:66:82:C4:C0:0D:7C:95:0C:DD:85:89:E0:ED:05:D3:D2:8E
Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de
Certificate serial: 019155580E48685F30E9E29E165203B50B08
Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/7C_rZoLEwA18lQzdhYng7QXT0o4.roa
Signing time: Thu 15 Aug 2024 09:21:59 +0000
ROA not before: Thu 15 Aug 2024 09:21:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2a02:3040:43:ff00::/56 maxlen: 56
2a02:3040:4e::/48 maxlen: 48
2a02:3040:4f::/50 maxlen: 50
2a02:3040:4f:8000::/50 maxlen: 50
2a02:3040:4f:c000::/50 maxlen: 50
2a02:3040:50::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 03 Sep 2024 06:24:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:55:58:0e:48:68:5f:30:e9:e2:9e:16:52:03:b5:0b:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de
Validity
Not Before: Aug 15 09:21:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec2feb6682c4c00d7c950cdd8589e0ed05d3d28e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e5:59:bd:65:af:d5:a4:af:34:a7:58:d8:ac:
94:17:85:4f:a3:f9:6d:d1:39:87:80:e4:48:f4:57:
2d:68:a0:f4:0f:89:29:76:54:09:de:6f:c1:28:d0:
a3:8c:08:bb:7a:40:ed:1f:59:38:5b:0d:8d:74:1a:
1c:ed:77:fa:21:28:5b:81:63:f6:04:e0:b9:05:ef:
24:e9:2f:13:1d:bc:71:c0:12:e0:19:a9:8b:48:08:
05:e9:47:85:7e:1c:ef:3b:59:cb:09:20:a0:43:03:
9d:42:3a:ba:a8:d6:44:5d:9e:e4:ab:b3:b6:2a:fd:
06:fb:d9:99:55:d9:33:f2:16:a2:7c:22:0c:ca:b2:
0e:97:6e:4b:70:97:bd:71:e3:b5:09:c1:f7:54:55:
a2:0f:b8:e3:ef:93:45:0a:71:f0:04:83:8f:e3:c3:
e4:cf:ad:ae:6b:27:46:6e:89:3a:5c:08:36:f1:63:
67:51:1f:22:43:70:61:2a:0e:58:40:b9:3d:2a:1b:
64:b3:a9:85:23:08:e8:31:16:80:01:7b:c7:16:f0:
3c:91:0f:d3:05:79:93:2e:f0:f9:b0:37:9c:69:54:
e9:ac:0e:5d:70:db:48:25:a5:99:7a:6b:e9:78:43:
4d:1d:29:ef:48:e7:ec:15:00:19:33:cd:26:86:c4:
9f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:2F:EB:66:82:C4:C0:0D:7C:95:0C:DD:85:89:E0:ED:05:D3:D2:8E
X509v3 Authority Key Identifier:
keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/7C_rZoLEwA18lQzdhYng7QXT0o4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:3040:43:ff00::/56
2a02:3040:4e::-2a02:3040:4f:3fff:ffff:ffff:ffff:ffff
2a02:3040:4f:8000::-2a02:3040:50:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
04:b3:4d:5d:dd:bd:1c:ce:9a:d3:a5:61:a3:cf:d5:30:03:14:
0b:c0:48:9e:11:5b:d2:bb:e8:7a:de:90:84:15:00:9f:16:9b:
7b:0c:87:e7:42:9a:d9:71:28:31:93:d8:4a:25:e6:f7:7d:3f:
2b:3d:e2:98:4e:aa:92:fe:3a:ba:a7:8f:a4:01:44:df:26:82:
2d:e0:cb:af:d6:ab:74:33:f5:42:80:ce:f0:80:22:88:e1:7d:
68:13:02:6b:0b:7e:b2:9d:99:55:fb:c4:67:65:3d:7d:8e:7b:
fe:05:cb:b5:28:ac:13:ff:7b:a7:b4:2b:13:73:31:51:38:35:
d8:58:dd:e0:8e:8c:94:16:9d:84:10:ac:52:88:9f:ec:8d:1a:
16:0c:88:21:0c:37:f8:37:b1:fc:e4:22:0f:2a:1a:e3:be:cb:
ca:7d:c3:6e:73:cb:0b:07:a8:7e:b7:c4:3c:9a:c2:ae:d3:02:
8a:d4:a8:64:97:75:b7:29:95:a7:50:37:b2:22:87:a4:94:a3:
51:b7:f6:6d:9e:79:54:a2:be:ef:1e:0d:ad:5f:b0:ac:a6:02:
5d:fa:d0:03:82:b8:cb:3f:c8:11:c3:78:3d:3e:36:88:2d:87:
a7:06:e7:11:c9:3c:01:87:10:43:07:5b:a6:19:14:13:a5:93:
74:a7:72:34
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgISAZFVWA5IaF8w6eKeFlIDtQsIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYWE2MGNiMDAyNDMzMmEyZGI2ODk5M2YzMzU3MTU4YWY2
MGM4ZGUwHhcNMjQwODE1MDkyMTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzJmZWI2NjgyYzRjMDBkN2M5NTBjZGQ4NTg5ZTBlZDA1ZDNkMjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1uVZvWWv1aSvNKdY2KyUF4VPo/lt
0TmHgORI9FctaKD0D4kpdlQJ3m/BKNCjjAi7ekDtH1k4Ww2NdBoc7Xf6IShbgWP2
BOC5Be8k6S8THbxxwBLgGamLSAgF6UeFfhzvO1nLCSCgQwOdQjq6qNZEXZ7kq7O2
Kv0G+9mZVdkz8haifCIMyrIOl25LcJe9ceO1CcH3VFWiD7jj75NFCnHwBIOP48Pk
z62uaydGbok6XAg28WNnUR8iQ3BhKg5YQLk9Khtks6mFIwjoMRaAAXvHFvA8kQ/T
BXmTLvD5sDecaVTprA5dcNtIJaWZemvpeENNHSnvSOfsFQAZM80mhsSfiQIDAQAB
o4ICNzCCAjMwHQYDVR0OBBYEFOwv62aCxMANfJUM3YWJ4O0F09KOMB8GA1UdIwQY
MBaAFCCqYMsAJDMqLbaJk/M1cVivYMjeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYt
NzNmN2QxMTBiODJhLzEvN0NfclpvTEV3QTE4bFF6ZGhZbmc3UVhUMG80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYtNzNmN2QxMTBiODJh
LzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAAjA0AwgAKgIwQABD
/zATAwcBKgIwQABOAwgGKgIwQABPADATAwgHKgIwQABPgAMHACoCMEAAUDANBgkq
hkiG9w0BAQsFAAOCAQEABLNNXd29HM6a06Vho8/VMAMUC8BInhFb0rvoet6QhBUA
nxabewyH50Ka2XEoMZPYSiXm930/Kz3imE6qkv46uqePpAFE3yaCLeDLr9ardDP1
QoDO8IAiiOF9aBMCawt+sp2ZVfvEZ2U9fY57/gXLtSisE/97p7QrE3MxUTg12Fjd
4I6MlBadhBCsUoif7I0aFgyIIQw3+Dex/OQiDyoa477Lyn3DbnPLCweofrfEPJrC
rtMCitSoZJd1tymVp1A3siKHpJSjUbf2bZ55VKK+7x4NrV+wrKYCXfrQA4K4yz/I
EcN4PT42iC2HpwbnEck8AYcQQwdbphkUE6WTdKdyNA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:43 2025 by rpki-client