Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0DoE7UjfE3py41zM-BPQvhhZ-Gc.roa
File: 0DoE7UjfE3py41zM-BPQvhhZ-Gc.roa (raw, json)
Hash identifier: JhI8os8EqhJbXJs0SwrbZTrTAAgiv2svSqE1YG1L03s=
Subject key identifier: D0:3A:04:ED:48:DF:13:7A:72:E3:5C:CC:F8:13:D0:BE:18:59:F8:67
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0191716E0A6D3E34D92EA247F60C5FC423F9
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0DoE7UjfE3py41zM-BPQvhhZ-Gc.roa
Signing time: Tue 20 Aug 2024 20:15:22 +0000
ROA not before: Tue 20 Aug 2024 20:15:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28753
IP address blocks: 2a06:1184:100::/48 maxlen: 48
2a09:17c1:66::/48 maxlen: 48
2a0a:2d06:102::/48 maxlen: 48
2a0c:7886:99::/48 maxlen: 48
2a0c:7886:100::/48 maxlen: 48
2a0e:15c7:88::/48 maxlen: 48
2a0e:15c7:99::/48 maxlen: 48
2a0e:f603:66::/48 maxlen: 48
2a0f:1206:55::/48 maxlen: 48
2a0f:1206:66::/48 maxlen: 48
2a0f:1584:77::/48 maxlen: 48
2a0f:7d06:88::/48 maxlen: 48
2a0f:e1c1:22::/48 maxlen: 48
2a0f:e202:44::/48 maxlen: 48
2a0f:e6c6:100::/48 maxlen: 48
2a0f:e6c6:101::/48 maxlen: 48
2a0f:e7c6:66::/48 maxlen: 48
2a0f:e7c6:77::/48 maxlen: 48
2a0f:ea44:66::/48 maxlen: 48
2a0f:ea44:77::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 20 Aug 2024 20:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:71:6e:0a:6d:3e:34:d9:2e:a2:47:f6:0c:5f:c4:23:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 20 20:15:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d03a04ed48df137a72e35cccf813d0be1859f867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cb:2e:5c:c7:da:be:5e:3b:83:f4:02:2c:bc:
42:1a:aa:3b:41:44:54:c4:09:fc:37:d5:56:f8:b0:
f4:36:e6:cb:57:98:a1:b9:1a:f5:4e:d0:eb:23:38:
7c:85:9d:fd:fb:2b:14:f0:e7:b5:e8:16:0c:12:fc:
e0:21:04:d0:20:ad:b9:11:f9:6a:fb:26:70:0d:c9:
9a:d9:34:cd:c1:f2:38:d8:95:71:c2:a1:7f:82:53:
6c:1a:ec:02:c5:49:e6:8b:1b:06:36:a4:5b:55:46:
42:fa:06:8c:69:c8:85:d8:37:34:f4:c0:63:2b:e5:
0f:fc:1f:c2:2c:1c:f3:1b:1d:1a:ae:e6:c2:2e:63:
91:45:84:6e:8e:d1:a6:a2:a9:f1:12:31:4e:e3:b4:
9c:c7:b9:c7:21:6e:8f:b7:0a:a5:b7:99:2e:66:c1:
59:1d:4a:56:8b:77:75:4b:92:5e:ff:b5:bf:4a:ad:
8c:18:5c:0c:29:ca:f7:39:59:b8:07:72:65:f2:c3:
56:e9:98:3e:51:a6:58:0f:43:83:bf:6a:77:99:9a:
f8:65:c8:fe:44:ba:05:ee:a0:56:61:58:33:a1:20:
0f:cd:7b:be:ad:77:56:8e:d2:11:57:29:61:0e:f7:
40:de:ba:85:88:46:88:ff:97:a0:4b:24:e9:d6:8e:
91:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:3A:04:ED:48:DF:13:7A:72:E3:5C:CC:F8:13:D0:BE:18:59:F8:67
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0DoE7UjfE3py41zM-BPQvhhZ-Gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1184:100::/48
2a09:17c1:66::/48
2a0a:2d06:102::/48
2a0c:7886:99::/48
2a0c:7886:100::/48
2a0e:15c7:88::/48
2a0e:15c7:99::/48
2a0e:f603:66::/48
2a0f:1206:55::/48
2a0f:1206:66::/48
2a0f:1584:77::/48
2a0f:7d06:88::/48
2a0f:e1c1:22::/48
2a0f:e202:44::/48
2a0f:e6c6:100::/47
2a0f:e7c6:66::/48
2a0f:e7c6:77::/48
2a0f:ea44:66::/48
2a0f:ea44:77::/48
Signature Algorithm: sha256WithRSAEncryption
6b:23:ad:e2:ab:5e:32:e8:b8:bc:23:ae:2e:8d:8b:d0:c2:20:
a1:a2:01:2a:ea:f0:04:8b:65:23:15:35:b3:f7:dc:c1:09:bf:
1d:53:ed:fb:4c:b6:40:23:ea:a5:38:29:bd:fb:c1:3d:8f:73:
e0:8c:6a:64:69:a2:f2:c7:f4:a0:5b:30:d0:11:fa:ee:24:d8:
23:5d:19:5c:85:88:49:62:e5:6b:1f:5c:b5:62:7c:5b:19:c2:
90:ae:4b:2d:6b:88:ac:73:17:c2:8f:de:93:5a:c0:2a:e0:9a:
21:4b:16:ea:53:2a:54:84:ef:16:80:e0:0b:7f:31:82:94:8f:
04:c0:eb:ef:31:04:e8:70:fd:7b:96:0a:b9:d0:1d:7c:43:84:
fb:e2:c0:84:ba:84:b7:38:7f:c1:11:b7:83:bf:ef:f2:c2:b9:
56:ed:48:51:79:a0:33:6c:3d:ec:c4:54:ec:f0:b0:3f:78:cc:
22:ce:cb:7f:5c:6f:10:3d:8f:c4:dd:31:21:5c:6d:91:7a:27:
02:b8:b5:b0:42:57:9c:de:9c:da:b1:e9:3c:a5:80:4e:a4:99:
c2:f0:70:c2:ee:c1:13:9e:17:30:f0:20:d8:c5:c9:b3:e9:84:
9a:48:1b:a5:85:2f:57:28:d6:6d:9b:25:0a:1c:61:eb:2b:a9:
26:d6:4b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:09:15 2025 by rpki-client