Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0XvWEP4LAWB_-Nt9uSZC7UQoF4s.roa
File: 0XvWEP4LAWB_-Nt9uSZC7UQoF4s.roa (raw, json)
Hash identifier: IBbKfFwCLgDCbu/tEmauqLMgjN8smKezT7bmuF/f45M=
Subject key identifier: D1:7B:D6:10:FE:0B:01:60:7F:F8:DB:7D:B9:26:42:ED:44:28:17:8B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0191745AF169A1DC500437354CF0F70C5396
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0XvWEP4LAWB_-Nt9uSZC7UQoF4s.roa
Signing time: Wed 21 Aug 2024 09:53:22 +0000
ROA not before: Wed 21 Aug 2024 09:53:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53667
IP address blocks: 2a10:7900::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 12 Sep 2024 13:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:74:5a:f1:69:a1:dc:50:04:37:35:4c:f0:f7:0c:53:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 21 09:53:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d17bd610fe0b01607ff8db7db92642ed4428178b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ba:2c:85:fb:93:22:ac:60:13:1a:c2:a7:91:
11:30:c8:05:63:c7:7a:11:0b:77:c0:63:b1:d9:59:
bb:e5:e6:99:9e:7f:d1:f2:2e:40:25:d6:00:bc:47:
47:21:fa:d1:c9:8c:09:cc:c9:6c:21:f6:dd:16:06:
cc:94:a6:4f:48:ad:7f:b4:90:c3:15:6f:1d:d6:78:
10:19:b8:cb:fb:81:75:33:d2:6f:4f:2f:6e:a4:13:
20:71:04:5e:43:ce:f2:f2:13:5d:e2:77:e1:25:37:
b3:f6:1e:56:36:03:a3:80:55:9a:60:26:5e:21:d5:
4d:f7:2c:f5:8d:23:3a:c0:2e:43:0d:71:c6:97:c5:
5b:2b:09:eb:d4:29:1d:ff:48:f9:30:c2:da:fa:03:
4a:1b:46:b6:70:ac:a1:7e:2c:5a:4c:03:51:88:af:
83:bc:5e:10:ec:c2:82:df:e5:ae:f1:4f:5c:2d:79:
2d:8a:bb:0c:67:80:64:cb:fc:7f:99:71:54:90:b1:
e0:91:82:62:e1:e2:41:cb:09:0d:5e:a1:90:ff:b7:
a8:1e:9f:af:48:d6:b1:9b:75:73:6d:2a:5f:47:4a:
62:12:9f:2f:f6:ad:f9:2d:a1:95:2f:54:3b:c0:0d:
01:ad:9a:8f:16:90:72:6f:ba:0f:85:5b:71:3f:ca:
5e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:7B:D6:10:FE:0B:01:60:7F:F8:DB:7D:B9:26:42:ED:44:28:17:8B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0XvWEP4LAWB_-Nt9uSZC7UQoF4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:7900::/29
Signature Algorithm: sha256WithRSAEncryption
98:02:56:72:1f:b9:cb:9b:db:d5:55:6b:81:a3:f1:57:66:a2:
88:a5:82:43:98:1a:64:8b:ae:3b:60:c7:02:ed:0f:33:37:81:
43:3b:c1:3d:ae:5a:df:2a:79:e3:13:ac:d3:9e:e2:51:c3:b1:
94:eb:f0:21:fd:60:e5:6f:11:44:cf:7a:ac:db:f2:37:08:aa:
05:96:ec:14:cd:02:cc:33:7f:27:72:66:df:33:49:9e:b9:9d:
7f:24:fe:8a:59:d6:2a:2d:fa:9f:ab:55:82:b6:c4:2a:89:bb:
3b:9b:17:3b:13:87:44:ab:47:da:13:ba:a1:dd:7a:50:31:90:
a0:d6:72:c0:50:27:7b:ed:5f:f1:d8:f3:df:4c:1d:18:17:ea:
e0:f6:91:d1:03:79:7e:b3:65:8a:26:5c:c1:72:0c:39:9b:dc:
ae:ba:5e:d7:3f:99:9e:5f:c3:0e:3c:01:df:75:09:fc:33:ee:
b5:a9:76:62:0f:e6:cf:62:64:c5:72:84:a0:11:53:cc:5d:e0:
01:0e:ec:ea:7c:8e:7d:f2:2b:63:fb:12:71:39:60:b6:73:1d:
76:86:ea:ca:eb:10:04:57:a0:0c:88:50:f9:a6:cf:d7:f0:f3:
8f:da:f0:9a:34:92:1c:a5:62:ee:10:e8:ee:d3:72:12:7d:d0:
29:c3:bd:c3
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZF0WvFpodxQBDc1TPD3DFOWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwODIxMDk1MzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTdiZDYxMGZlMGIwMTYwN2ZmOGRiN2RiOTI2NDJlZDQ0MjgxNzhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6boshfuTIqxgExrCp5ERMMgFY8d6
EQt3wGOx2Vm75eaZnn/R8i5AJdYAvEdHIfrRyYwJzMlsIfbdFgbMlKZPSK1/tJDD
FW8d1ngQGbjL+4F1M9JvTy9upBMgcQReQ87y8hNd4nfhJTez9h5WNgOjgFWaYCZe
IdVN9yz1jSM6wC5DDXHGl8VbKwnr1Ckd/0j5MMLa+gNKG0a2cKyhfixaTANRiK+D
vF4Q7MKC3+Wu8U9cLXktirsMZ4Bky/x/mXFUkLHgkYJi4eJBywkNXqGQ/7eoHp+v
SNaxm3VzbSpfR0piEp8v9q35LaGVL1Q7wA0BrZqPFpByb7oPhVtxP8peqwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFNF71hD+CwFgf/jbfbkmQu1EKBeLMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvMFh2V0VQNExBV0JfLU50OXVTWkM3VVFvRjRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhB5ADAN
BgkqhkiG9w0BAQsFAAOCAQEAmAJWch+5y5vb1VVrgaPxV2aiiKWCQ5gaZIuuO2DH
Au0PMzeBQzvBPa5a3yp54xOs057iUcOxlOvwIf1g5W8RRM96rNvyNwiqBZbsFM0C
zDN/J3Jm3zNJnrmdfyT+ilnWKi36n6tVgrbEKom7O5sXOxOHRKtH2hO6od16UDGQ
oNZywFAne+1f8djz30wdGBfq4PaR0QN5frNliiZcwXIMOZvcrrpe1z+Znl/DDjwB
33UJ/DPutal2Yg/mz2JkxXKEoBFTzF3gAQ7s6nyOffIrY/sScTlgtnMddobqyusQ
BFegDIhQ+abP1/Dzj9rwmjSSHKVi7hDo7tNyEn3QKcO9ww==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:06:35 2025 by rpki-client