Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/mJTAPHVb8voHF1x_I-fwdaZN3Ic.roa
File: mJTAPHVb8voHF1x_I-fwdaZN3Ic.roa (raw, json)
Hash identifier: 4Ncdbb705Vp47DUH62/uPJm6wjLuPNGZUsapwJcsewY=
Subject key identifier: 98:94:C0:3C:75:5B:F2:FA:07:17:5C:7F:23:E7:F0:75:A6:4D:DC:87
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 019426D988740202DB13A295D5DE458415DB
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/mJTAPHVb8voHF1x_I-fwdaZN3Ic.roa
Signing time: Thu 02 Jan 2025 11:49:37 +0000
ROA not before: Thu 02 Jan 2025 11:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209652
IP address blocks: 2a03:5840:f1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Jan 2025 16:44:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:88:74:02:02:db:13:a2:95:d5:de:45:84:15:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 2 11:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9894c03c755bf2fa07175c7f23e7f075a64ddc87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:23:9e:1e:a6:b8:29:6c:e6:5c:c9:b0:f6:44:
1f:46:45:26:d1:43:a6:38:04:38:77:5b:76:17:21:
46:0b:d7:3a:0c:80:b3:3e:40:17:0e:01:07:16:e5:
6e:94:eb:86:25:dd:f1:0b:cf:0c:65:29:62:03:78:
ac:67:d8:fa:f7:d5:9d:da:85:62:37:26:0e:0f:ca:
a1:22:e9:75:2d:9b:9c:e2:5f:7d:3c:79:c0:76:6e:
88:c7:ae:c1:55:a8:bd:a2:05:77:5d:9a:f0:a5:b5:
a1:c0:0a:20:74:59:18:2f:d8:33:35:16:0e:11:92:
91:48:54:a8:b2:ed:2b:98:b8:04:31:a1:6e:7e:57:
53:c8:9b:58:ec:86:cc:ff:82:9c:16:61:9d:97:04:
4b:92:bc:d5:f8:7b:1b:64:8e:27:13:09:dd:31:2a:
01:8a:b4:d2:03:48:87:a0:71:82:c7:2b:9a:89:7e:
94:24:dc:1a:61:27:03:94:ef:aa:e6:2d:d8:9a:00:
12:90:6d:30:a0:14:84:12:63:69:c6:f4:f3:47:f2:
f2:92:fc:84:20:77:08:42:57:57:58:6c:c2:1e:8c:
bd:29:de:a2:d3:88:33:91:05:e3:06:59:df:fc:1d:
4d:56:ed:78:68:2b:c0:10:4c:a7:dd:0f:c4:ff:ae:
44:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:94:C0:3C:75:5B:F2:FA:07:17:5C:7F:23:E7:F0:75:A6:4D:DC:87
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/mJTAPHVb8voHF1x_I-fwdaZN3Ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:f1::/48
Signature Algorithm: sha256WithRSAEncryption
2d:73:a3:a1:1c:71:c7:5d:c4:00:05:f4:16:bf:ef:9c:28:a1:
e5:06:13:48:a7:b5:19:ea:82:c6:ed:89:56:0f:c5:74:48:5c:
77:15:45:a4:ed:03:15:3b:12:e6:3f:69:62:ce:8d:f6:ac:2d:
2b:a9:fc:98:e9:ff:3b:91:5d:9b:52:78:12:02:28:02:7e:50:
be:d5:e7:dd:08:11:6d:83:3f:aa:62:59:90:c9:a3:f7:37:48:
64:53:46:7a:74:78:ef:6e:15:ee:6b:4e:07:6d:cb:24:ed:a1:
1f:68:38:25:bf:61:6a:b1:5e:93:00:d3:e3:6b:0c:45:3a:74:
42:5e:b9:cf:3e:b2:5d:3c:3c:ce:2b:39:ea:d8:9a:c9:a9:2c:
6f:96:c7:81:67:da:c8:84:52:1b:2c:f2:73:04:28:b8:b8:6d:
76:56:b1:d2:f8:16:b6:ee:25:72:5d:b8:87:d3:61:a2:07:d7:
35:02:0a:a5:33:c4:7f:c4:85:16:dc:de:e3:f8:c1:6c:ad:38:
34:03:7e:5b:49:a1:51:c9:fe:31:96:1c:43:dc:87:c1:d2:8c:
22:16:0c:70:59:33:9f:29:a9:48:94:0a:92:24:b2:be:67:d3:
86:e4:e5:47:5e:a3:eb:34:0c:e7:6b:de:df:08:96:80:d1:16:
4c:5e:6f:67
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQm2Yh0AgLbE6KV1d5FhBXbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3NzcwNWU4OWJiNjViNDcyZTRlMDE4NGQ2ZmU5YmZiOGM1
ODYzNWEwHhcNMjUwMTAyMTE0OTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODk0YzAzYzc1NWJmMmZhMDcxNzVjN2YyM2U3ZjA3NWE2NGRkYzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmyOeHqa4KWzmXMmw9kQfRkUm0UOm
OAQ4d1t2FyFGC9c6DICzPkAXDgEHFuVulOuGJd3xC88MZSliA3isZ9j699Wd2oVi
NyYOD8qhIul1LZuc4l99PHnAdm6Ix67BVai9ogV3XZrwpbWhwAogdFkYL9gzNRYO
EZKRSFSosu0rmLgEMaFufldTyJtY7IbM/4KcFmGdlwRLkrzV+HsbZI4nEwndMSoB
irTSA0iHoHGCxyuaiX6UJNwaYScDlO+q5i3YmgASkG0woBSEEmNpxvTzR/LykvyE
IHcIQldXWGzCHoy9Kd6i04gzkQXjBlnf/B1NVu14aCvAEEyn3Q/E/65ElwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJiUwDx1W/L6BxdcfyPn8HWmTdyHMB8GA1UdIwQY
MBaAFPd3BeibtltHLk4BhNb+m/uMWGNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYt
NmNiODk3OTFkN2ZkLzEvbUpUQVBIVmI4dm9IRjF4X0ktZndkYVpOM0ljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYtNmNiODk3OTFkN2Zk
LzEvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgNYQADx
MA0GCSqGSIb3DQEBCwUAA4IBAQAtc6OhHHHHXcQABfQWv++cKKHlBhNIp7UZ6oLG
7YlWD8V0SFx3FUWk7QMVOxLmP2lizo32rC0rqfyY6f87kV2bUngSAigCflC+1efd
CBFtgz+qYlmQyaP3N0hkU0Z6dHjvbhXua04Hbcsk7aEfaDglv2FqsV6TANPjawxF
OnRCXrnPPrJdPDzOKznq2JrJqSxvlseBZ9rIhFIbLPJzBCi4uG12VrHS+Ba27iVy
XbiH02GiB9c1AgqlM8R/xIUW3N7j+MFsrTg0A35bSaFRyf4xlhxD3IfB0owiFgxw
WTOfKalIlAqSJLK+Z9OG5OVHXqPrNAzna97fCJaA0RZMXm9n
-----END CERTIFICATE-----
Generated at Fri Apr 18 15:01:23 2025 by rpki-client