Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/VgU6lG3Osm8OfMN0k9rHeCguOIg.roa
File: VgU6lG3Osm8OfMN0k9rHeCguOIg.roa (raw, json)
Hash identifier: 5+Ox76vsYWuvrLUGhU39dkEnrqBMomjNI7UDYRljyyw=
Subject key identifier: 56:05:3A:94:6D:CE:B2:6F:0E:7C:C3:74:93:DA:C7:78:28:2E:38:88
Certificate issuer: /CN=ea46963cc479dadbe3c52234ab9fabaa8122d25b
Certificate serial: 0193682B04CC7FDD0123EE5F0F33AEEA4E5F
Authority key identifier: EA:46:96:3C:C4:79:DA:DB:E3:C5:22:34:AB:9F:AB:AA:81:22:D2:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6kaWPMR52tvjxSI0q5-rqoEi0ls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/VgU6lG3Osm8OfMN0k9rHeCguOIg.roa
Signing time: Tue 26 Nov 2024 11:11:09 +0000
ROA not before: Tue 26 Nov 2024 11:11:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200291
IP address blocks: 2a00:fe00:6000::/36 maxlen: 36
2a00:fe00:6000::/38 maxlen: 38
2a00:fe00:6800::/38 maxlen: 38
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:2b:04:cc:7f:dd:01:23:ee:5f:0f:33:ae:ea:4e:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea46963cc479dadbe3c52234ab9fabaa8122d25b
Validity
Not Before: Nov 26 11:11:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56053a946dceb26f0e7cc37493dac778282e3888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:eb:07:58:e2:ab:d5:cb:80:7a:42:ca:45:26:
74:7d:98:c5:ed:3d:4c:8e:10:48:f7:51:d1:37:af:
73:44:3c:73:09:fb:48:6a:d1:3a:86:5d:5b:38:e8:
d0:40:96:a0:0f:a7:6c:99:dd:4b:a8:a1:9d:01:c6:
d5:9d:5e:8f:6f:18:54:e7:e6:a6:4c:83:12:68:3c:
ac:2d:d5:c3:c6:86:c5:05:77:55:d7:da:18:76:6e:
e6:a0:3c:5a:e4:1a:40:06:c7:e4:72:fd:77:56:7d:
74:cd:ca:f8:3f:88:be:33:a8:0f:6c:8c:29:b6:b6:
fe:15:7d:56:8a:60:33:f5:5c:30:6f:f0:2a:51:0f:
91:61:dc:ca:19:a2:4e:b0:30:28:ef:09:42:d2:2f:
3e:6e:64:6d:e6:23:21:12:97:7a:5c:ee:a3:c6:d5:
8c:94:38:e2:27:e7:6e:f4:58:ce:a3:2e:26:6e:ad:
13:b1:8b:71:6d:04:97:8b:10:70:60:8e:a5:07:d8:
8e:2f:2f:c6:77:3a:81:60:89:cf:c8:da:b8:85:28:
f4:d7:7c:70:be:e3:27:09:17:17:c2:e5:3c:e0:81:
f7:68:55:0d:45:d0:60:fb:59:20:70:46:38:a6:09:
6f:e1:d2:11:43:d1:85:96:21:fe:b1:99:4f:cd:f7:
ee:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:05:3A:94:6D:CE:B2:6F:0E:7C:C3:74:93:DA:C7:78:28:2E:38:88
X509v3 Authority Key Identifier:
keyid:EA:46:96:3C:C4:79:DA:DB:E3:C5:22:34:AB:9F:AB:AA:81:22:D2:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kaWPMR52tvjxSI0q5-rqoEi0ls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/VgU6lG3Osm8OfMN0k9rHeCguOIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/6kaWPMR52tvjxSI0q5-rqoEi0ls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:fe00:6000::/36
Signature Algorithm: sha256WithRSAEncryption
72:66:ea:c2:24:a4:b3:6d:f2:0b:3f:e5:68:0a:6f:36:19:59:
66:f1:cb:39:bb:5d:29:a7:b8:e7:a1:8e:1b:21:ba:16:59:5a:
48:aa:1b:d3:33:89:15:95:c7:59:fd:48:72:c6:f7:59:93:b9:
46:bd:44:f4:a9:89:5e:79:c8:79:3d:69:5f:b5:1d:13:d1:a7:
b8:64:ad:63:31:b0:af:5a:e5:87:a5:07:6d:5d:c3:58:cf:12:
4b:da:96:14:29:20:60:12:62:ca:dd:f9:0c:1f:e4:5c:2d:61:
d2:74:fe:ed:1c:9e:3f:fc:73:db:6f:cb:9f:54:05:e4:ec:a1:
70:8f:c7:ec:34:99:ce:1d:90:f2:ba:33:30:f6:e1:88:98:f0:
f1:48:c7:bf:9f:b3:e4:b9:e8:c3:5e:0a:c0:4e:da:93:1a:fc:
7c:2f:c8:af:51:80:cc:7b:eb:d1:1e:97:55:53:1e:f8:ea:7d:
17:c9:59:e2:ba:ca:21:a8:1b:23:73:80:fc:c1:9d:f7:e6:fc:
d1:3d:57:62:05:6b:2d:10:4d:0e:03:f4:68:eb:c8:63:f4:c5:
b5:b7:20:5b:f3:82:39:ab:e0:15:17:8a:07:21:af:4b:40:4f:
e8:c9:7e:7e:13:47:f5:2f:2b:46:e0:0d:df:52:1f:c7:38:51:
ad:25:7d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:12:18 2025 by rpki-client