Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0kIFc6lI4mW1yUT-EWLlJCCRZp0.roa
File: 0kIFc6lI4mW1yUT-EWLlJCCRZp0.roa (raw, json)
Hash identifier: aBDgs6YBs87qGevT2QsaqiMugKmmnVhblEsfGouQm5M=
Subject key identifier: D2:42:05:73:A9:48:E2:65:B5:C9:44:FE:11:62:E5:24:20:91:66:9D
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0191A257B5EB628B1C4A0F0509C44418F0BD
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0kIFc6lI4mW1yUT-EWLlJCCRZp0.roa
Signing time: Fri 30 Aug 2024 08:12:22 +0000
ROA not before: Fri 30 Aug 2024 08:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 2a07:8a40::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 27 Sep 2024 10:32:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a2:57:b5:eb:62:8b:1c:4a:0f:05:09:c4:44:18:f0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 30 08:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2420573a948e265b5c944fe1162e5242091669d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:80:19:8c:67:72:0a:cb:d8:02:13:16:f8:20:
88:71:65:d4:52:70:45:e5:f4:80:52:f5:76:d1:35:
6e:49:6e:03:a1:de:45:3c:c0:88:3a:4b:19:ff:6b:
92:67:ce:25:b1:70:60:cf:e5:7d:2c:77:a2:22:85:
4a:f8:3c:9a:17:e6:28:5e:3c:7b:eb:ba:20:8d:48:
9c:77:63:ea:1b:7f:65:c2:74:55:e6:c8:4d:a2:c2:
62:ae:2b:ec:e9:e5:99:79:f6:d0:9b:5a:fa:36:19:
f5:47:cf:f2:6b:13:ea:e3:4f:65:c8:56:a4:94:26:
cb:26:3d:69:86:03:62:31:c0:5e:8c:c3:e9:93:f9:
c9:93:0d:fc:e1:34:8d:c1:67:bd:b2:64:c2:44:ca:
a7:04:09:b2:e7:8a:bd:56:1f:21:1a:54:b5:3c:9d:
1c:9c:de:5b:1e:6b:45:89:a9:b0:c4:7d:28:f0:69:
6f:be:a8:37:ed:1e:45:83:af:b6:be:19:bd:a4:e8:
f7:00:87:de:cb:5a:0b:fe:55:c7:2e:5b:4c:86:dd:
f1:e5:48:75:77:97:ed:80:4b:10:47:a7:c7:c8:a8:
02:f1:b0:60:43:38:ee:8c:66:85:09:3d:4c:f6:0d:
5a:3c:2b:8e:09:24:9a:36:59:bf:10:31:6a:8b:1b:
c7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:42:05:73:A9:48:E2:65:B5:C9:44:FE:11:62:E5:24:20:91:66:9D
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/0kIFc6lI4mW1yUT-EWLlJCCRZp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:8a40::/29
Signature Algorithm: sha256WithRSAEncryption
c7:32:04:18:17:03:5e:23:f6:4a:4b:95:d8:ea:69:a3:af:8f:
a6:d8:e5:2c:62:1b:9a:7c:87:0b:7f:1a:ec:ad:ab:d7:8b:b1:
d7:a8:e9:89:a0:ae:93:58:ba:d1:cc:ab:5b:44:55:57:17:73:
16:c2:29:be:05:c7:c7:4e:f8:2e:61:cf:7b:f0:1e:64:00:67:
50:0b:6c:83:2b:55:a2:e2:df:8f:d0:9e:cc:3a:54:08:de:e0:
91:e0:9e:1b:c7:ff:56:2b:cb:00:b9:43:b3:5b:e5:5a:9d:da:
a3:c2:ce:07:2f:3e:a9:0e:53:c7:c6:7f:1b:91:a0:41:e8:3c:
b6:bd:93:26:76:fd:20:43:74:e9:00:11:1f:b8:f6:17:c3:72:
8d:5a:85:b6:96:b9:f5:26:ca:61:e0:7c:b2:08:f6:2b:d2:cf:
96:b8:66:8e:6f:6a:de:10:d5:68:90:01:ec:13:f1:f9:dd:ec:
7d:5f:b7:25:b1:5c:ba:46:19:03:51:6b:e5:03:54:c3:60:82:
9e:8c:f2:cc:57:f2:40:36:39:e1:ec:8d:aa:42:d1:a5:6d:2b:
c4:23:6e:69:e0:eb:87:bd:a0:c7:e1:9f:cc:15:05:8b:97:53:
cb:bf:13:2f:04:91:24:00:a0:86:3f:03:95:0c:48:a3:0a:ba:
2d:50:20:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:45 2025 by rpki-client