Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5rdh7Psy6r318TuS-Vz_pbXLz5w.roa
File: 5rdh7Psy6r318TuS-Vz_pbXLz5w.roa (raw, json)
Hash identifier: xoF9B0AJ9AfEq4obQO+jULdJhf/qyxYgIQS85rUFstw=
Subject key identifier: E6:B7:61:EC:FB:32:EA:BD:F5:F1:3B:92:F9:5C:FF:A5:B5:CB:CF:9C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0191B7EB15F8043814B9A4679F0CB56FA0DC
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5rdh7Psy6r318TuS-Vz_pbXLz5w.roa
Signing time: Tue 03 Sep 2024 12:45:22 +0000
ROA not before: Tue 03 Sep 2024 12:45:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 2a0f:e6c5::/32 maxlen: 32
2a13:7d80::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 29 Sep 2024 19:50:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b7:eb:15:f8:04:38:14:b9:a4:67:9f:0c:b5:6f:a0:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 3 12:45:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6b761ecfb32eabdf5f13b92f95cffa5b5cbcf9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7b:dc:e1:f4:03:d2:56:ca:d6:03:e1:a3:61:
1b:d7:6b:d4:fa:b0:23:21:24:1f:13:c5:c3:e9:c6:
ca:95:cc:49:27:33:67:2b:c6:6f:9c:5e:88:e0:b7:
0a:d9:f3:7b:a7:a4:12:a3:b3:a5:58:d3:69:81:15:
79:67:31:b7:99:9c:fe:97:7a:15:cd:5a:ad:57:c4:
f1:84:2d:5a:a6:74:3c:b3:d0:32:e0:6f:d5:b0:1c:
0b:fc:dc:b7:10:c2:6c:75:47:f5:c1:3c:5c:dc:f1:
36:fc:54:78:c5:1a:dd:15:bf:d9:7b:a8:ac:c6:85:
b2:6c:b9:0a:b0:b9:a5:ec:2f:18:b1:c5:12:77:df:
85:9d:30:13:34:9d:cf:3c:58:b3:ac:41:b8:4a:ef:
49:b0:46:a9:0d:1d:37:a4:09:3a:7c:1c:00:2c:86:
b9:0f:5e:0c:fa:d8:e8:04:e6:24:89:a0:29:16:1b:
ab:8f:bb:7a:a7:84:9a:79:c6:8f:0d:34:54:52:a2:
04:8f:5a:bf:96:d9:30:b1:38:1c:21:00:e1:4c:e8:
57:23:16:9b:16:9b:e6:9f:55:23:ee:74:94:a1:cc:
8d:b8:9c:f9:e2:62:65:58:3b:21:61:d1:54:b2:03:
e6:41:fe:a4:c7:e8:93:45:c6:0a:8e:ec:f5:48:2f:
5e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B7:61:EC:FB:32:EA:BD:F5:F1:3B:92:F9:5C:FF:A5:B5:CB:CF:9C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5rdh7Psy6r318TuS-Vz_pbXLz5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e6c5::/32
2a13:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
2a:4f:e4:d4:f4:23:fb:81:22:de:eb:e9:a7:75:3b:3c:67:70:
46:eb:33:5e:f0:51:0f:80:2e:78:fa:dc:05:a7:9f:ce:62:2f:
5a:23:61:ea:b2:a3:02:3f:5c:99:e0:c1:09:2a:f6:d3:f4:6c:
9f:df:0b:8d:c0:8c:57:5f:27:fe:0f:b6:4a:eb:d3:76:ba:1e:
cd:b3:a5:e9:6b:c9:6f:d5:63:07:a6:25:89:99:07:5b:2c:35:
9d:8c:ad:08:b7:13:ba:cd:25:6a:19:a2:23:38:59:8e:b0:e4:
6b:74:4e:dd:ce:09:dc:54:33:2d:6c:3b:69:d8:a7:93:f1:e9:
15:3a:d9:91:32:f4:a9:bd:29:9d:29:65:2a:72:2c:2a:a1:f9:
60:cd:dc:64:92:83:6e:45:72:b1:af:19:cf:98:af:fb:73:3e:
d8:95:aa:2c:34:af:2d:10:12:52:ff:c0:8c:c4:52:c6:9a:0d:
46:eb:c5:63:ea:30:48:10:83:01:20:65:96:e0:5d:3c:f0:69:
01:16:ed:0b:99:4f:bb:a0:f8:0f:48:9c:b6:82:ec:4d:b1:c9:
6c:d9:b3:9b:85:f1:b6:b3:8a:41:91:f8:a5:a5:d5:68:2d:d4:
d4:35:65:99:58:38:af:3d:97:ef:78:0c:39:65:17:b0:a2:10:
2f:81:ce:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:58:14 2025 by rpki-client