Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/7A7-hLa5W1_ZeRicp0Sx1ybhMHk.roa
File: 7A7-hLa5W1_ZeRicp0Sx1ybhMHk.roa (raw, json)
Hash identifier: M4Vv4RczBH+Cf10TlTHdXGRzk9Ryuad5krGpgJTlUpY=
Subject key identifier: EC:0E:FE:84:B6:B9:5B:5F:D9:79:18:9C:A7:44:B1:D7:26:E1:30:79
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0193C210D18EFE145958F3820C0EEFB8313C
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/7A7-hLa5W1_ZeRicp0Sx1ybhMHk.roa
Signing time: Fri 13 Dec 2024 22:08:22 +0000
ROA not before: Fri 13 Dec 2024 22:08:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60223
IP address blocks: 2001:3280::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c2:10:d1:8e:fe:14:59:58:f3:82:0c:0e:ef:b8:31:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Dec 13 22:08:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec0efe84b6b95b5fd979189ca744b1d726e13079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b1:f9:fd:78:12:6a:16:e4:b3:80:ad:9e:c7:
9e:b4:9f:e8:90:bd:39:91:80:5d:a6:c6:9f:d0:42:
65:f0:25:89:cb:a9:6c:48:1f:b4:f2:2f:3d:e3:d2:
ae:cf:fd:58:4b:56:a5:5e:c7:1e:c8:b1:73:65:86:
45:27:2c:4d:c6:66:f0:80:9c:f6:9b:4b:3f:24:2b:
77:fc:13:da:b9:17:15:40:54:18:3a:18:72:b3:74:
8a:8a:3f:8f:32:35:73:44:c7:7b:66:d4:6f:32:04:
e7:17:fb:9f:5c:34:8e:5b:00:0f:d2:1e:a4:41:17:
26:d2:62:20:75:b9:50:e6:46:3b:c2:19:27:e7:ac:
f8:e3:ed:b1:b8:2c:15:29:94:e9:20:11:39:3a:fc:
7e:84:56:bf:56:95:97:0c:f0:24:25:cb:aa:11:34:
cb:8c:44:0f:2e:c2:d5:3c:2d:93:c1:21:97:ab:ab:
26:19:11:43:5e:3a:1b:14:4a:fd:cf:83:c5:11:23:
78:88:38:ff:01:ec:c5:71:d8:bd:28:8a:f5:c7:f0:
02:4d:02:4a:f4:51:f2:4f:a1:e5:b0:1e:a1:4c:7d:
08:b7:76:2f:c4:bd:6b:a6:28:d7:5c:a5:6f:66:a0:
15:c6:a6:b0:81:b5:10:6c:f1:eb:0b:15:97:8a:04:
80:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:0E:FE:84:B6:B9:5B:5F:D9:79:18:9C:A7:44:B1:D7:26:E1:30:79
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/7A7-hLa5W1_ZeRicp0Sx1ybhMHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3280::/29
Signature Algorithm: sha256WithRSAEncryption
0d:ff:4d:54:49:12:6e:dc:9b:fa:16:42:0e:7b:51:c4:b3:67:
b3:b4:96:e6:58:95:e4:a5:b6:c7:4b:3d:11:80:c6:f4:18:6a:
66:8f:c9:16:96:8e:bc:30:13:a8:cb:25:ae:49:3f:5b:f8:db:
90:ee:bf:25:ef:03:69:e3:5c:f8:0e:13:6e:89:9b:23:10:bf:
a7:d7:5b:a2:a8:d4:a8:b2:78:77:d5:5a:e1:a1:6a:3b:3c:e5:
bb:8d:f0:a9:b0:ed:1f:5a:4d:a6:fb:d9:c5:0a:3a:f8:3a:ac:
46:02:a7:95:3e:cf:d0:a1:68:37:1e:d1:05:6d:20:0f:ee:81:
99:63:4e:f7:09:a9:54:0e:3d:11:2a:09:2c:0f:76:2a:9a:5e:
fa:b9:fb:79:ce:6c:11:8a:17:f1:9e:76:ca:19:b1:11:3b:37:
9b:00:e4:77:6e:82:c8:53:2a:f6:07:41:9d:c3:52:b3:36:6d:
87:26:7b:46:cd:93:71:60:88:19:af:f3:34:3a:de:a1:53:58:
b6:f1:fc:7b:52:2e:e0:c5:3a:de:b3:46:85:da:1a:5e:14:5a:
d9:b4:84:8b:3a:24:4a:6d:0f:fa:65:53:c7:42:ac:fa:91:e8:
13:04:f9:c4:65:5c:72:46:40:49:4b:9f:11:66:0f:cf:42:8d:
4d:ef:f1:b6
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZPCENGO/hRZWPOCDA7vuDE8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2Yjk4ZjgzY2NiZGE3YzE5ZjAwNDE1MWM5OGI1N2M1OWQy
NjhmNTQwHhcNMjQxMjEzMjIwODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYzBlZmU4NGI2Yjk1YjVmZDk3OTE4OWNhNzQ0YjFkNzI2ZTEzMDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorH5/XgSahbks4CtnseetJ/okL05
kYBdpsaf0EJl8CWJy6lsSB+08i8949Kuz/1YS1alXsceyLFzZYZFJyxNxmbwgJz2
m0s/JCt3/BPauRcVQFQYOhhys3SKij+PMjVzRMd7ZtRvMgTnF/ufXDSOWwAP0h6k
QRcm0mIgdblQ5kY7whkn56z44+2xuCwVKZTpIBE5Ovx+hFa/VpWXDPAkJcuqETTL
jEQPLsLVPC2TwSGXq6smGRFDXjobFEr9z4PFESN4iDj/AezFcdi9KIr1x/ACTQJK
9FHyT6HlsB6hTH0It3YvxL1rpijXXKVvZqAVxqawgbUQbPHrCxWXigSA5QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOwO/oS2uVtf2XkYnKdEsdcm4TB5MB8GA1UdIwQY
MBaAFFa5j4PMvafBnwBBUcmLV8WdJo9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2Yt
N2FhN2ZjMzU5NjU1LzEvN0E3LWhMYTVXMV9aZVJpY3AwU3gxeWJoTUhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2YtN2FhN2ZjMzU5NjU1
LzEvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDIAEygDAN
BgkqhkiG9w0BAQsFAAOCAQEADf9NVEkSbtyb+hZCDntRxLNns7SW5liV5KW2x0s9
EYDG9BhqZo/JFpaOvDATqMslrkk/W/jbkO6/Je8DaeNc+A4TbombIxC/p9dboqjU
qLJ4d9Va4aFqOzzlu43wqbDtH1pNpvvZxQo6+DqsRgKnlT7P0KFoNx7RBW0gD+6B
mWNO9wmpVA49ESoJLA92Kppe+rn7ec5sEYoX8Z52yhmxETs3mwDkd26CyFMq9gdB
ncNSszZthyZ7Rs2TcWCIGa/zNDreoVNYtvH8e1Iu4MU63rNGhdoaXhRa2bSEizok
Sm0P+mVTx0Ks+pHoEwT5xGVcckZASUufEWYPz0KNTe/xtg==
-----END CERTIFICATE-----
Generated at Thu Apr 17 18:29:54 2025 by rpki-client