Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/7MebVIxjuhIYDpbeJccCIFmv-HA.roa
File: 7MebVIxjuhIYDpbeJccCIFmv-HA.roa (raw, json)
Hash identifier: q3kcL8bor+mGTNriC6/q61eQj6jM0JGFmPluoZW31nk=
Subject key identifier: EC:C7:9B:54:8C:63:BA:12:18:0E:96:DE:25:C7:02:20:59:AF:F8:70
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 01941364C6A73274CBFA9F6F9D030F2DF77E
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/7MebVIxjuhIYDpbeJccCIFmv-HA.roa
Signing time: Sun 29 Dec 2024 17:09:18 +0000
ROA not before: Sun 29 Dec 2024 17:09:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207108
IP address blocks: 2a0c:8340::/29 maxlen: 29
2a14:72c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:13:64:c6:a7:32:74:cb:fa:9f:6f:9d:03:0f:2d:f7:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Dec 29 17:09:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ecc79b548c63ba12180e96de25c7022059aff870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:82:75:b6:2f:3d:b4:a9:c2:23:e6:20:19:82:
1f:7f:06:b3:a3:1f:89:a8:55:c2:b8:22:e1:f3:96:
ba:64:a2:64:d1:51:2d:36:b7:a3:89:35:85:85:16:
4b:e1:33:5e:77:62:37:01:26:f5:00:2d:18:6e:2c:
08:2b:ba:af:2a:78:64:31:6d:16:39:81:78:e4:10:
95:fc:23:4b:56:54:56:b5:ef:cd:0a:49:f5:c7:07:
a8:5b:c5:6b:94:c0:00:31:e2:2a:8c:19:fd:c7:db:
d3:df:45:fb:d9:17:24:4e:e0:b8:d8:51:7a:aa:52:
1f:96:39:47:e1:1b:ca:5e:fc:76:8a:69:4f:2a:54:
66:3d:a3:bf:2e:1d:b0:39:59:9e:d0:7c:ff:fe:00:
65:ea:c8:9d:14:83:9a:21:e3:79:de:e6:5c:a2:ab:
3b:ce:92:44:db:c6:9f:51:ee:3c:4a:d8:a0:fb:6e:
fe:8d:25:63:35:93:4b:8d:ab:d2:a8:64:70:01:42:
d3:9c:6a:ca:1a:24:5d:4b:3c:f2:34:9a:24:9c:b3:
ca:44:78:13:d8:fd:b8:bc:f4:7d:4b:7e:17:ca:05:
d0:b1:d3:74:62:da:2e:5a:b5:6d:9d:ca:00:31:b8:
46:45:9c:ef:ae:b0:89:62:45:c4:e3:cc:b7:a7:5e:
72:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C7:9B:54:8C:63:BA:12:18:0E:96:DE:25:C7:02:20:59:AF:F8:70
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/7MebVIxjuhIYDpbeJccCIFmv-HA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:8340::/29
2a14:72c0::/29
Signature Algorithm: sha256WithRSAEncryption
3d:46:d7:eb:90:fe:26:b9:22:17:03:48:d0:5a:7d:3e:39:4f:
c8:8a:1c:26:27:71:17:e2:4c:d7:29:5b:51:34:8c:d0:07:d3:
91:c8:4b:96:9d:63:d4:d7:5c:b0:5e:2d:24:4b:92:3f:ed:19:
99:6a:fc:49:53:02:cb:a0:f6:47:06:ef:37:09:1e:d6:ee:e7:
bd:a4:cd:97:9f:20:ed:e3:a9:19:46:52:3e:7f:bd:5d:da:76:
61:fd:66:29:3c:5c:c2:af:49:a2:76:50:08:af:08:a0:68:a7:
27:d6:ae:7b:50:51:9a:55:a9:a4:36:9c:0a:7d:cc:8a:30:d3:
0a:47:db:ba:2b:84:d9:c4:3d:7d:f0:62:59:0c:f8:00:88:ab:
b4:8b:fd:38:83:bb:74:08:fb:47:cf:a5:2c:84:bf:81:d0:78:
66:aa:9c:97:a3:16:f2:fe:c2:34:2a:9f:cb:09:00:36:bd:a6:
5f:1e:63:7b:88:49:32:01:0a:d2:64:5e:84:9c:9c:26:66:14:
c1:c1:d6:f8:c5:b7:63:0d:e9:96:e0:4b:26:d3:b1:e7:2e:68:
c1:6b:12:dc:a4:39:dc:b8:cc:7b:c3:84:04:80:5b:1f:9b:a7:
90:73:d6:b2:02:d2:46:ba:44:3e:96:d7:ad:c5:f2:96:29:a4:
7c:aa:a7:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:24:59 2025 by rpki-client