Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/A-vDANga6kXd6sreEJ4SugjZDl0.roa
File: A-vDANga6kXd6sreEJ4SugjZDl0.roa (raw, json)
Hash identifier: cGZw8l62BozBWSZIbCvzwDNfa6WtfQbLHg64eZlZ1Do=
Subject key identifier: 03:EB:C3:00:D8:1A:EA:45:DD:EA:CA:DE:10:9E:12:BA:08:D9:0E:5D
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0194B88E630C136BDE461656F8ED043D67A9
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/A-vDANga6kXd6sreEJ4SugjZDl0.roa
Signing time: Thu 30 Jan 2025 18:52:06 +0000
ROA not before: Thu 30 Jan 2025 18:52:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207108
IP address blocks: 2a0c:8340::/29 maxlen: 29
2a14:72c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 25 Mar 2025 20:58:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b8:8e:63:0c:13:6b:de:46:16:56:f8:ed:04:3d:67:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Jan 30 18:52:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=03ebc300d81aea45ddeacade109e12ba08d90e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:94:22:21:c2:e5:a1:c0:b4:a3:0e:e3:12:8d:
16:ce:70:8f:27:6c:a1:e8:dc:d2:39:80:23:bb:f5:
87:55:81:b5:a9:cf:2d:76:a6:cf:0b:44:5a:fe:4b:
da:d0:c2:c9:d1:f5:d7:b8:88:e5:44:22:62:df:a4:
cc:10:ec:07:e3:c3:1f:15:f1:46:34:85:f5:af:84:
7b:24:41:14:0d:08:60:c6:bb:88:6c:15:35:92:d2:
b1:74:18:52:1d:fd:6a:db:fd:8f:6f:4f:5f:8c:49:
c2:07:11:91:f5:e4:90:d3:00:d6:87:07:8e:1b:2e:
0d:3f:91:82:d9:47:23:90:c0:71:b7:50:c1:d0:76:
4b:5d:46:06:11:b8:96:01:e8:c1:2e:c8:7a:dd:b3:
ee:72:87:f6:6e:98:e1:ef:af:86:03:64:94:34:d4:
f8:bd:75:d6:21:28:ab:b3:e6:7a:07:4f:5f:89:c6:
99:1e:2c:81:26:67:f5:bb:2c:c9:94:4e:7b:5c:26:
83:6a:86:62:b4:91:03:07:e4:27:10:ed:14:38:e2:
19:27:e7:d8:81:ee:db:27:6a:6e:f0:f2:4c:bf:27:
bf:d7:57:fd:3a:00:cf:a0:99:b7:ad:b7:a5:3f:d6:
82:32:03:d4:38:e9:31:a1:f0:05:05:05:b4:66:0f:
10:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EB:C3:00:D8:1A:EA:45:DD:EA:CA:DE:10:9E:12:BA:08:D9:0E:5D
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/A-vDANga6kXd6sreEJ4SugjZDl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:8340::/29
2a14:72c0::/29
Signature Algorithm: sha256WithRSAEncryption
25:50:b0:81:f5:20:3d:21:c4:8d:e4:d7:27:ea:92:09:a3:e8:
86:6e:37:31:de:34:f1:44:31:77:53:2e:50:73:ae:9b:b6:e6:
04:3b:48:20:85:4f:18:52:ce:84:2a:17:e6:bd:43:99:d3:32:
0c:0a:39:48:23:b7:ed:f2:e4:76:5a:db:2a:65:62:73:c0:40:
f6:f7:67:74:6f:d2:62:36:68:0d:ff:08:f4:25:a4:0a:fa:46:
ac:28:99:40:34:25:32:a3:a6:69:ba:3b:f9:8b:b9:51:04:ea:
60:e1:ca:70:e4:53:b5:fa:98:8d:24:09:7b:c7:f1:8b:8d:2b:
e6:1f:7c:d4:fa:19:cf:5a:f3:ad:4a:22:1b:c0:7f:ff:4c:a5:
26:d2:f1:d9:31:32:f8:50:dc:f9:20:fe:42:93:58:72:26:4b:
20:1e:07:25:18:da:6b:eb:14:5e:92:1b:a8:5e:fc:6b:51:3c:
eb:07:48:38:b2:d8:b5:62:db:f7:69:2c:f0:ec:bd:a1:0a:93:
5f:05:d9:32:16:d4:ea:12:aa:4d:f1:7e:3d:e3:cd:1d:56:81:
c2:e6:a8:22:d1:a7:59:7c:b5:66:c4:84:fd:50:52:2b:f5:79:
b5:82:61:8b:23:3d:27:06:e7:01:3b:28:f0:17:df:a4:c0:08:
99:c2:9e:40
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZS4jmMME2veRhZW+O0EPWepMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2Yjk4ZjgzY2NiZGE3YzE5ZjAwNDE1MWM5OGI1N2M1OWQy
NjhmNTQwHhcNMjUwMTMwMTg1MjA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwM2ViYzMwMGQ4MWFlYTQ1ZGRlYWNhZGUxMDllMTJiYTA4ZDkwZTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5QiIcLlocC0ow7jEo0WznCPJ2yh
6NzSOYAju/WHVYG1qc8tdqbPC0Ra/kva0MLJ0fXXuIjlRCJi36TMEOwH48MfFfFG
NIX1r4R7JEEUDQhgxruIbBU1ktKxdBhSHf1q2/2Pb09fjEnCBxGR9eSQ0wDWhweO
Gy4NP5GC2UcjkMBxt1DB0HZLXUYGEbiWAejBLsh63bPucof2bpjh76+GA2SUNNT4
vXXWISirs+Z6B09ficaZHiyBJmf1uyzJlE57XCaDaoZitJEDB+QnEO0UOOIZJ+fY
ge7bJ2pu8PJMvye/11f9OgDPoJm3rbelP9aCMgPUOOkxofAFBQW0Zg8QxQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFAPrwwDYGupF3erK3hCeEroI2Q5dMB8GA1UdIwQY
MBaAFFa5j4PMvafBnwBBUcmLV8WdJo9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2Yt
N2FhN2ZjMzU5NjU1LzEvQS12REFOZ2E2a1hkNnNyZUVKNFN1Z2paRGwwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2YtN2FhN2ZjMzU5NjU1
LzEvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKgyDQAMF
AyoUcsAwDQYJKoZIhvcNAQELBQADggEBACVQsIH1ID0hxI3k1yfqkgmj6IZuNzHe
NPFEMXdTLlBzrpu25gQ7SCCFTxhSzoQqF+a9Q5nTMgwKOUgjt+3y5HZa2yplYnPA
QPb3Z3Rv0mI2aA3/CPQlpAr6RqwomUA0JTKjpmm6O/mLuVEE6mDhynDkU7X6mI0k
CXvH8YuNK+YffNT6Gc9a861KIhvAf/9MpSbS8dkxMvhQ3Pkg/kKTWHImSyAeByUY
2mvrFF6SG6he/GtRPOsHSDiy2LVi2/dpLPDsvaEKk18F2TIW1OoSqk3xfj3jzR1W
gcLmqCLRp1l8tWbEhP1QUiv1ebWCYYsjPScG5wE7KPAX36TACJnCnkA=
-----END CERTIFICATE-----
Generated at Thu Apr 17 18:16:31 2025 by rpki-client