Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4CiRs82kdozwPimi7X9-bg-ll9k.roa
File: 4CiRs82kdozwPimi7X9-bg-ll9k.roa (raw, json)
Hash identifier: NS2YkNAfHJghLkqY9u7ykOhVBUbmT0oevtN9jTOBnKo=
Subject key identifier: E0:28:91:B3:CD:A4:76:8C:F0:3E:29:A2:ED:7F:7E:6E:0F:A5:97:D9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01929BFCECC9D49535F0E36CF0900B209CF3
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4CiRs82kdozwPimi7X9-bg-ll9k.roa
Signing time: Thu 17 Oct 2024 19:38:17 +0000
ROA not before: Thu 17 Oct 2024 19:38:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28753
IP address blocks: 2a06:1184:100::/48 maxlen: 48
2a06:1184:101::/48 maxlen: 48
2a09:17c1:66::/48 maxlen: 48
2a09:17c1:77::/48 maxlen: 48
2a0a:2d06:102::/48 maxlen: 48
2a0a:2d06:103::/48 maxlen: 48
2a0c:7886:99::/48 maxlen: 48
2a0c:7886:100::/48 maxlen: 48
2a0e:15c7:88::/48 maxlen: 48
2a0e:15c7:99::/48 maxlen: 48
2a0e:1a83:77::/48 maxlen: 48
2a0e:f603:66::/48 maxlen: 48
2a0f:1206:55::/48 maxlen: 48
2a0f:1206:66::/48 maxlen: 48
2a0f:2500::/29 maxlen: 29
2a0f:3d86:88::/48 maxlen: 48
2a0f:3d86:99::/48 maxlen: 48
2a0f:7d06:88::/48 maxlen: 48
2a0f:7d06:99::/48 maxlen: 48
2a0f:d200::/29 maxlen: 29
2a0f:e1c1:22::/48 maxlen: 48
2a0f:e202:44::/48 maxlen: 48
2a0f:e202:55::/48 maxlen: 48
2a0f:e202:100::/48 maxlen: 48
2a0f:e6c6:100::/48 maxlen: 48
2a0f:e6c6:101::/48 maxlen: 48
2a0f:e7c6:66::/48 maxlen: 48
2a0f:e7c6:77::/48 maxlen: 48
2a0f:e7c6:88::/48 maxlen: 48
2a0f:e844:22::/48 maxlen: 48
2a0f:e844:33::/48 maxlen: 48
2a0f:ea44:66::/48 maxlen: 48
2a0f:ea44:77::/48 maxlen: 48
2a12:ac46:77::/48 maxlen: 48
2a12:ecc0:168::/48 maxlen: 48
2a12:ecc0:178::/48 maxlen: 48
2a13:18c6:55::/48 maxlen: 48
2a13:18c6:77::/48 maxlen: 48
2a13:18c6:88::/48 maxlen: 48
2a13:7d80::/29 maxlen: 29
2a13:8c86:10a::/48 maxlen: 48
2a13:8c86:120::/48 maxlen: 48
2a13:8c86:130::/48 maxlen: 48
2a13:c900:88::/48 maxlen: 48
2a13:c900:99::/48 maxlen: 48
2a13:e107:99::/48 maxlen: 48
2a13:e107:9c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 20 Nov 2024 11:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9b:fc:ec:c9:d4:95:35:f0:e3:6c:f0:90:0b:20:9c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 17 19:38:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e02891b3cda4768cf03e29a2ed7f7e6e0fa597d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:1e:61:7f:cf:0c:66:4e:b9:3b:92:4a:7a:88:
a7:d4:49:cf:68:ca:82:e0:9e:b9:ab:3a:4e:3c:6f:
60:6f:1b:b6:9a:d8:05:d5:09:58:48:ee:2e:d9:e5:
73:13:a9:cc:c1:67:2a:61:48:de:71:f2:5d:85:46:
0f:16:69:4e:99:07:f1:9d:e3:65:b2:3b:73:d5:22:
56:7e:a1:56:43:c7:0a:e3:4a:59:b2:66:91:b6:b4:
83:f8:85:5b:5f:e7:d2:5f:1c:33:6e:a6:3e:ef:8c:
14:1e:51:77:d1:b4:09:58:c3:71:29:68:2b:95:b8:
d1:6f:0d:09:ca:7c:f1:e5:38:29:50:f4:8a:16:91:
2e:e0:3b:e9:5f:40:56:16:7e:dc:cb:2a:c0:82:93:
8d:e1:f6:20:e8:cb:e2:a1:50:c8:e9:1f:7c:fe:5d:
ef:d0:37:de:94:98:91:44:11:6f:c8:70:0f:84:7e:
fb:75:fd:55:7c:64:d8:ae:33:9c:43:18:3c:62:77:
85:de:8c:74:15:50:2d:72:b9:59:47:ef:54:cb:48:
38:31:92:e3:35:87:cf:16:03:ec:ca:bc:40:2d:80:
66:e9:1f:88:bb:b7:02:ef:10:d3:d2:df:b7:8b:d6:
6c:6c:75:4c:a7:ea:72:d4:22:81:4d:33:a9:ed:94:
41:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:28:91:B3:CD:A4:76:8C:F0:3E:29:A2:ED:7F:7E:6E:0F:A5:97:D9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4CiRs82kdozwPimi7X9-bg-ll9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1184:100::/47
2a09:17c1:66::/48
2a09:17c1:77::/48
2a0a:2d06:102::/47
2a0c:7886:99::/48
2a0c:7886:100::/48
2a0e:15c7:88::/48
2a0e:15c7:99::/48
2a0e:1a83:77::/48
2a0e:f603:66::/48
2a0f:1206:55::/48
2a0f:1206:66::/48
2a0f:2500::/29
2a0f:3d86:88::/48
2a0f:3d86:99::/48
2a0f:7d06:88::/48
2a0f:7d06:99::/48
2a0f:d200::/29
2a0f:e1c1:22::/48
2a0f:e202:44::/48
2a0f:e202:55::/48
2a0f:e202:100::/48
2a0f:e6c6:100::/47
2a0f:e7c6:66::/48
2a0f:e7c6:77::/48
2a0f:e7c6:88::/48
2a0f:e844:22::/48
2a0f:e844:33::/48
2a0f:ea44:66::/48
2a0f:ea44:77::/48
2a12:ac46:77::/48
2a12:ecc0:168::/48
2a12:ecc0:178::/48
2a13:18c6:55::/48
2a13:18c6:77::/48
2a13:18c6:88::/48
2a13:7d80::/29
2a13:8c86:10a::/48
2a13:8c86:120::/48
2a13:8c86:130::/48
2a13:c900:88::/48
2a13:c900:99::/48
2a13:e107:99::/48
2a13:e107:9c::/48
Signature Algorithm: sha256WithRSAEncryption
36:27:96:5c:82:d3:32:2c:3e:ac:16:4b:82:58:6c:0b:9d:54:
b3:a8:3b:1f:9a:a2:81:b9:ae:5d:79:5f:41:c0:ae:f1:6e:a9:
35:d3:94:ed:0d:aa:1b:d3:b1:4d:ab:45:7d:fd:94:15:4a:0b:
5b:32:fe:f0:e5:9a:0b:b2:54:bf:b6:79:1e:f2:76:70:d7:ee:
c9:bd:ab:fb:4a:07:74:ca:82:1c:1d:d9:06:24:6c:45:3e:de:
46:59:5b:53:96:a3:be:0e:c4:b2:24:90:8c:1f:1f:94:e6:86:
98:7b:df:98:54:3a:5c:cf:cf:c3:6c:9e:5c:7a:1c:10:6d:19:
fb:1f:04:90:83:eb:ae:44:72:d4:a4:c3:2b:a0:d5:1e:f7:71:
00:28:50:af:ad:a5:3c:93:96:9d:f4:5d:b9:6b:f9:ae:db:08:
23:17:2c:91:b4:83:0e:f1:2b:39:d6:d5:02:45:56:99:ea:0f:
06:be:a0:b3:43:38:87:8d:7e:15:56:a2:4e:a2:4f:5a:fb:eb:
f8:5d:5f:83:e4:0d:1e:65:6b:c5:63:48:c9:3d:9f:d6:78:dc:
ce:49:db:f9:f9:11:74:b3:70:8f:ae:1c:d4:9f:85:c7:9b:d8:
26:9c:a9:cd:cd:e8:71:dc:75:37:52:9d:51:20:b8:ef:13:08:
7b:52:d3:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:04:34 2025 by rpki-client