Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/2BqxJuIfkju7MLPAb0Sja-xlXF4.roa
File: 2BqxJuIfkju7MLPAb0Sja-xlXF4.roa (raw, json)
Hash identifier: Dztrqa1fr3yUBG/XeX7sVuJRYrSCEzcg7raJegAwa98=
Subject key identifier: D8:1A:B1:26:E2:1F:92:3B:BB:30:B3:C0:6F:44:A3:6B:EC:65:5C:5E
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 0194258F12C6DC74269647C562E3CB0F5683
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/2BqxJuIfkju7MLPAb0Sja-xlXF4.roa
Signing time: Thu 02 Jan 2025 05:48:40 +0000
ROA not before: Thu 02 Jan 2025 05:48:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209641
IP address blocks: 2a0e:5385::/32 maxlen: 32
2a0e:5387::/32 maxlen: 32
2a0e:5641::/32 maxlen: 32
2a0e:5643::/32 maxlen: 32
2a0e:5645::/32 maxlen: 32
2a0e:5647::/32 maxlen: 32
2a0e:5900::/32 maxlen: 32
2a0e:5905::/32 maxlen: 32
2a0e:5906::/32 maxlen: 32
2a0e:8082::/32 maxlen: 32
2a0e:8084::/32 maxlen: 32
2a0e:8087::/32 maxlen: 32
2a0e:ccc0::/32 maxlen: 32
2a0e:ccc4::/32 maxlen: 32
2a0f:6fc1::/32 maxlen: 32
2a0f:6fc3::/32 maxlen: 32
2a0f:6fc7::/32 maxlen: 32
2a0f:b4c1::/32 maxlen: 32
2a0f:b4c2::/32 maxlen: 32
2a0f:b4c6::/32 maxlen: 32
2a0f:c081::/32 maxlen: 32
2a0f:c085::/32 maxlen: 32
2a0f:c087::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 23 Jan 2025 07:19:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:12:c6:dc:74:26:96:47:c5:62:e3:cb:0f:56:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jan 2 05:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d81ab126e21f923bbb30b3c06f44a36bec655c5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a2:e0:99:95:2f:45:a1:14:09:f9:91:52:ae:
fb:f5:54:21:2b:40:56:20:30:b0:c0:60:6a:a5:aa:
ba:ad:fc:22:37:e7:82:da:7b:26:f2:f2:44:8a:21:
32:a1:f8:34:c6:77:d7:6b:59:7a:b8:c9:3a:fc:3c:
95:cc:96:7d:01:01:10:7a:aa:70:23:37:bd:2c:50:
fd:42:9e:c8:1d:ff:37:18:d9:13:be:29:2e:bc:d4:
2f:18:38:50:c5:11:ae:a1:38:87:6c:9b:c0:13:12:
60:95:6d:b1:d0:05:2e:66:ce:8d:0c:96:b9:7b:ae:
03:af:d5:47:a8:74:b9:e2:09:81:18:18:20:b2:21:
6a:81:b9:07:71:d4:87:83:31:fa:b8:0e:97:d4:9a:
d9:91:ab:28:fe:7a:22:1c:9c:5c:1f:d7:28:49:62:
f0:83:8d:fe:9f:5b:0f:cb:15:4b:c5:b7:4c:ca:d3:
08:9d:0a:d5:61:a9:50:d3:8c:81:04:7b:b5:f7:be:
a8:e7:0f:6a:bf:21:89:83:06:60:db:7c:ba:9a:ba:
32:7b:f0:60:85:7b:c7:42:d1:c6:d7:71:34:47:f6:
09:bd:39:71:45:92:aa:5b:bf:20:ee:db:b9:28:bc:
c9:2e:4a:74:99:96:a5:d6:e5:7c:59:a8:cd:c8:05:
ef:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:1A:B1:26:E2:1F:92:3B:BB:30:B3:C0:6F:44:A3:6B:EC:65:5C:5E
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/2BqxJuIfkju7MLPAb0Sja-xlXF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:5385::/32
2a0e:5387::/32
2a0e:5641::/32
2a0e:5643::/32
2a0e:5645::/32
2a0e:5647::/32
2a0e:5900::/32
2a0e:5905::-2a0e:5906:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:8082::/32
2a0e:8084::/32
2a0e:8087::/32
2a0e:ccc0::/32
2a0e:ccc4::/32
2a0f:6fc1::/32
2a0f:6fc3::/32
2a0f:6fc7::/32
2a0f:b4c1::-2a0f:b4c2:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:b4c6::/32
2a0f:c081::/32
2a0f:c085::/32
2a0f:c087::/32
Signature Algorithm: sha256WithRSAEncryption
1d:fe:16:0d:8b:d6:3f:68:d0:38:fb:19:bb:02:a1:9d:42:20:
60:f7:0a:e6:3e:ad:01:89:48:30:5a:54:b3:78:77:3a:77:78:
1f:a9:6c:38:21:54:f0:7c:8e:af:75:89:17:38:d5:89:56:fd:
fc:d4:1e:24:7b:d6:e0:18:17:be:33:c5:71:13:2b:d5:79:14:
8c:60:a0:9c:e0:80:15:d4:3e:37:50:b0:93:3e:d6:12:df:d4:
87:47:22:ca:d5:55:62:16:33:fd:11:54:0c:11:0a:c5:bd:6c:
1b:ca:01:52:75:cc:77:b9:9b:6d:e3:61:2f:27:2f:bc:65:ea:
88:c0:c6:b7:88:9f:e1:14:96:62:a6:d4:7f:f1:ec:85:3f:87:
b4:38:ef:fe:64:3b:b3:62:a0:7e:f9:f7:c0:e2:22:07:6d:10:
71:44:78:6e:64:c6:bf:80:35:f8:16:f9:05:b2:e6:b3:f1:4f:
5c:68:24:5e:14:01:27:9d:69:a4:e1:9a:cc:df:c2:0b:14:7a:
c9:e7:2b:d4:96:eb:1b:a0:a7:fd:1f:12:c5:01:33:d4:0a:91:
52:62:a2:5b:2f:ea:47:89:88:79:e7:3e:48:aa:b5:51:ea:61:
45:b2:8f:4b:e7:d2:f4:48:cf:13:f5:43:c4:02:e4:88:21:60:
b7:8c:41:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:45:39 2025 by rpki-client