Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7bzEFD0o2H_j61hNIZZAagaeWyk.roa
File: 7bzEFD0o2H_j61hNIZZAagaeWyk.roa (raw, json)
Hash identifier: mvQzZ7gBPGsw71nvkbE26BtsBM6vhkHlXzGSQs9eA2w=
Subject key identifier: ED:BC:C4:14:3D:28:D8:7F:E3:EB:58:4D:21:96:40:6A:06:9E:5B:29
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01930155D14976258E2386C59F93031C8B71
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7bzEFD0o2H_j61hNIZZAagaeWyk.roa
Signing time: Wed 06 Nov 2024 11:57:01 +0000
ROA not before: Wed 06 Nov 2024 11:57:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214734
IP address blocks: 2a10:3440::/29 maxlen: 29
2a11:6d40::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 28 Nov 2024 15:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:01:55:d1:49:76:25:8e:23:86:c5:9f:93:03:1c:8b:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 6 11:57:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=edbcc4143d28d87fe3eb584d2196406a069e5b29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4e:78:40:56:45:c9:5d:49:71:a7:16:9f:b9:
df:dd:03:fa:91:54:91:f5:42:fd:c6:af:98:1b:6a:
a2:a6:ec:61:22:fc:11:ee:e7:cd:95:3c:d4:4e:ea:
95:58:4c:fd:13:7f:80:16:d1:6b:0b:bd:01:7c:be:
f4:6f:42:e7:bd:39:03:8e:49:5e:00:fc:34:ef:91:
30:9e:20:93:92:61:22:f5:63:c2:23:ab:a1:ed:d2:
a1:2f:ce:a7:dd:09:ba:80:cf:fa:e0:67:98:6d:fa:
44:24:c7:a4:7c:c9:1e:a6:a1:93:a7:44:25:0f:83:
d7:bf:85:c7:ec:62:d9:60:e1:6f:69:8a:4d:a6:d2:
b6:30:49:1d:3f:d0:bb:90:38:ee:5a:a0:62:45:4b:
81:c8:3a:91:54:ba:7a:22:40:96:ac:05:a6:df:98:
ba:fb:75:db:6d:1a:9d:e1:98:e0:40:61:9a:9d:94:
bf:7f:6c:38:cd:16:ec:75:0e:ea:2d:c2:0c:3f:9b:
4d:5b:82:09:44:55:20:22:dd:b9:03:94:02:09:d6:
79:1d:62:40:f3:20:7e:e6:f1:a6:b7:78:df:aa:97:
68:17:12:ec:51:01:e3:e0:11:e4:db:bf:21:dc:ae:
04:a7:25:3e:2f:5e:38:b0:0a:0b:a9:3f:6b:81:e9:
25:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:BC:C4:14:3D:28:D8:7F:E3:EB:58:4D:21:96:40:6A:06:9E:5B:29
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7bzEFD0o2H_j61hNIZZAagaeWyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:3440::/29
2a11:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
90:f9:bd:a4:c4:a4:7e:04:9c:66:9f:67:d3:8b:a5:88:3e:0f:
ba:d6:c6:ce:bc:3a:f4:62:5e:49:56:9c:93:a2:4b:03:20:ae:
46:46:a7:dd:39:44:f4:ca:fa:f5:2b:b3:5b:c2:cb:e4:fb:c1:
aa:81:83:5f:95:f2:69:0a:cf:47:89:ea:af:d0:ba:dd:1c:98:
18:6f:66:1f:31:3d:64:fd:9a:81:2e:d1:8a:8b:0d:87:41:42:
99:e2:a1:70:06:cb:ce:81:b4:34:75:29:c5:b2:98:a4:a2:e9:
b9:84:6f:52:7a:f6:5a:a3:b9:c1:93:64:c0:b7:d7:66:eb:02:
b2:eb:d4:fb:a4:c9:1d:b0:10:bf:86:37:6b:d8:d5:61:b7:48:
6d:c4:41:c3:c7:22:64:81:59:44:89:60:62:2c:e2:d8:de:78:
6a:73:da:b9:4c:94:58:15:42:b5:3c:a9:c0:e5:1a:56:f8:6e:
56:dc:a0:9a:94:82:32:2f:db:42:af:55:eb:33:89:aa:45:99:
12:67:ea:15:4c:7c:4e:76:dc:f8:57:89:c6:94:b4:3c:1c:59:
ea:94:d0:f2:6b:98:cb:a3:44:b4:e8:4a:1e:24:21:71:3f:a3:
b2:f0:fc:7e:40:8d:f3:af:8f:b3:fe:f6:5d:db:83:a4:9d:03:
9f:de:d8:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:47 2025 by rpki-client