Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/7sTMwPi1vdEKOF0O-PxpqVFmAjM.roa
File: 7sTMwPi1vdEKOF0O-PxpqVFmAjM.roa (raw, json)
Hash identifier: wqnUMGtOJ7RDdA24KSpv6MGdxmtx/+L7AkbH935OFjQ=
Subject key identifier: EE:C4:CC:C0:F8:B5:BD:D1:0A:38:5D:0E:F8:FC:69:A9:51:66:02:33
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 019425FDE542012F7B32ECA96C93C4A8AA05
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/7sTMwPi1vdEKOF0O-PxpqVFmAjM.roa
Signing time: Thu 02 Jan 2025 07:49:43 +0000
ROA not before: Thu 02 Jan 2025 07:49:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207748
IP address blocks: 2a06:e881:7100::/46 maxlen: 48
Validation: Failed, certificate revoked on Sat 15 Feb 2025 13:18:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:e5:42:01:2f:7b:32:ec:a9:6c:93:c4:a8:aa:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 07:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eec4ccc0f8b5bdd10a385d0ef8fc69a951660233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ed:70:eb:2b:9c:1c:e1:5c:c2:8b:00:70:8f:
c4:66:e8:ef:6d:92:d9:97:89:44:7e:71:76:cc:ad:
6a:0c:65:28:92:dd:aa:d8:7e:63:3a:fa:4c:c2:ed:
41:13:29:69:ac:21:d0:7b:a0:d9:5d:0e:23:47:b4:
c0:e0:5e:b5:0e:7b:64:cf:3a:7f:95:ef:87:af:19:
7b:31:b4:b5:bd:09:67:2b:9b:82:ba:31:90:d5:0c:
b4:9f:34:71:c8:44:53:39:71:9f:92:45:cb:a3:c7:
70:c2:1f:f4:88:f9:f6:ba:54:db:79:7d:78:30:5d:
04:f3:bb:2a:24:9d:db:3b:5d:83:cf:6c:72:28:35:
9e:3f:22:80:4f:34:98:7e:f3:b3:ce:67:56:ce:27:
00:25:40:be:37:9a:97:e5:2d:b6:6d:c5:2f:b5:5b:
13:b5:44:72:4e:45:3a:7d:76:74:96:1d:93:10:09:
01:65:7a:d3:59:f1:24:63:96:c2:78:b3:8c:e4:0f:
fd:fd:e4:b9:71:8c:f3:2d:19:1e:7d:ee:23:28:62:
34:f5:62:93:11:3f:aa:86:57:1b:ec:f1:3f:ab:f9:
49:83:93:db:52:6b:07:2a:b5:ed:ea:38:87:3c:0f:
27:d7:0a:68:f8:1e:21:a6:bf:3c:01:e2:2c:29:af:
77:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:C4:CC:C0:F8:B5:BD:D1:0A:38:5D:0E:F8:FC:69:A9:51:66:02:33
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/7sTMwPi1vdEKOF0O-PxpqVFmAjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:7100::/46
Signature Algorithm: sha256WithRSAEncryption
67:32:67:8e:7e:d7:d1:15:d7:31:ce:80:f9:35:c7:dd:97:ec:
bc:ea:9b:9d:25:97:1b:ff:d7:07:b9:16:da:fd:8c:9f:a9:9f:
5d:ba:7d:29:a9:0b:ff:11:30:2c:9c:e9:aa:e5:d1:51:38:d9:
d9:85:2a:83:e6:56:dc:54:be:3e:15:bf:d4:23:40:bf:df:a8:
ed:a2:75:85:df:50:0e:39:67:2f:f2:38:dd:c5:42:d6:d4:13:
53:4d:72:96:44:9b:d7:26:56:7f:de:2e:49:17:ff:25:da:05:
be:55:5e:1b:a4:c5:b2:49:21:64:c6:40:be:77:59:37:f3:df:
f4:96:76:b0:ca:cf:4b:33:b0:2e:ee:01:fe:df:1f:01:49:00:
43:a9:42:88:08:2e:94:40:f8:22:3f:61:49:8c:b7:09:0f:ec:
bf:cb:b2:4d:01:57:36:e8:7e:77:ec:31:6a:16:6e:80:50:5e:
e3:47:1e:eb:0d:38:3a:b8:ff:c1:d8:dc:7d:9b:df:01:3c:56:
99:34:f0:f5:85:05:e4:6c:0f:dd:eb:ff:89:4a:4e:dc:1e:a4:
4e:5b:4f:18:ee:b5:bc:b2:7c:cf:42:ce:6f:12:36:ea:e2:8d:
ed:22:ec:9f:72:2f:00:06:cf:40:d4:96:4a:d2:16:95:e5:66:
1b:ec:98:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:13:42 2025 by rpki-client