Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4Q406AuCeAi6iWoQLD4tlkkTQHU.roa
File: 4Q406AuCeAi6iWoQLD4tlkkTQHU.roa (raw, json)
Hash identifier: mop9pLKLMpVnZESF+LhNIWmHg6uucBOU2uO7jYALWU0=
Subject key identifier: E1:0E:34:E8:0B:82:78:08:BA:89:6A:10:2C:3E:2D:96:49:13:40:75
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01909286512EA8E5A13C906A0534F9B1D764
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4Q406AuCeAi6iWoQLD4tlkkTQHU.roa
Signing time: Mon 08 Jul 2024 13:26:34 +0000
ROA not before: Mon 08 Jul 2024 13:26:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151814
IP address blocks: 2a0f:2100::/29 maxlen: 29
2a0f:dec0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 14 Jul 2024 15:46:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:92:86:51:2e:a8:e5:a1:3c:90:6a:05:34:f9:b1:d7:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 8 13:26:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e10e34e80b827808ba896a102c3e2d9649134075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:01:3c:6a:37:f6:b9:fa:3d:cf:2b:39:9e:07:
2f:0f:d2:70:29:73:b9:d3:e9:66:5e:3f:22:f8:4d:
66:9b:26:c2:48:19:f6:bf:5a:1a:82:65:90:26:10:
a5:19:69:a5:f8:17:18:cb:08:4a:2e:36:52:94:b3:
81:5a:f1:c7:0b:86:b5:e3:24:55:97:70:2f:d8:0a:
5e:f1:af:6a:97:7b:bd:c2:86:fe:03:5d:6a:a4:9b:
3f:71:31:b2:f6:87:88:3d:e0:30:a0:bb:f6:6c:16:
c3:cd:da:3e:5e:0d:19:1b:e3:84:41:e4:cf:0b:e8:
a2:20:f5:df:96:54:ff:6d:7a:00:aa:05:b2:77:8b:
fd:e4:f0:a4:ab:2c:5a:00:7c:64:51:c5:d7:db:42:
2f:19:54:dc:52:c1:36:ed:36:c2:84:f4:98:4e:cc:
0d:c3:a5:49:31:b9:c3:9a:8b:3d:13:22:92:4d:69:
51:44:9a:3d:81:c6:86:41:8c:d0:a9:93:17:23:01:
d1:7e:78:57:4d:09:92:1c:e5:df:24:61:8a:93:15:
c1:8e:27:25:0e:cb:65:51:11:25:9b:15:60:1a:9f:
55:bf:5c:62:81:52:97:5c:fe:30:d0:98:b4:45:9a:
fb:05:7c:e2:31:da:d0:49:6a:13:a6:d9:91:9b:ed:
7f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0E:34:E8:0B:82:78:08:BA:89:6A:10:2C:3E:2D:96:49:13:40:75
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/4Q406AuCeAi6iWoQLD4tlkkTQHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:2100::/29
2a0f:dec0::/29
Signature Algorithm: sha256WithRSAEncryption
0c:3b:01:27:e2:77:7c:54:f8:04:09:a6:7c:93:e9:97:8a:12:
0e:d5:f0:3e:ee:d7:08:99:58:e1:b8:fa:de:08:f4:0b:82:ca:
29:e1:14:ff:10:01:0a:28:5e:b8:82:03:71:5d:ed:9c:15:c2:
26:32:26:48:2a:ae:31:c3:3b:d3:17:06:ab:e5:6e:29:cd:2d:
b5:b0:bc:3f:5b:a2:45:49:04:23:f2:0d:22:56:4f:84:1c:30:
24:1d:e0:31:ad:27:39:8f:5c:d4:8d:d1:8f:71:c3:8a:3f:ee:
d7:c5:36:3b:aa:0c:c2:00:3e:de:58:e7:42:52:23:a1:d9:69:
43:5c:15:07:a7:02:65:81:44:a5:20:58:b8:c7:3e:d9:fa:11:
c8:1c:0f:49:d1:66:4c:df:6c:27:5c:b9:26:41:c2:7f:ef:5e:
4a:69:b3:b4:cf:2d:3a:15:29:64:eb:7a:89:d1:4d:f9:ac:19:
b2:9c:e3:a3:87:dd:c9:b3:ac:68:72:93:57:3d:f5:42:c9:92:
d7:b0:70:b4:47:b0:53:27:0f:cd:d7:d8:49:89:fc:c5:22:c4:
09:e3:c6:9c:c3:ab:6f:3d:cf:cb:29:e2:ac:9c:5f:c8:58:4f:
a1:7f:12:41:da:79:89:b8:05:d9:14:68:a4:a9:7c:74:dd:aa:
18:e8:38:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:30:38 2025 by rpki-client