Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/A80R6mxiBReqvGKiMM1XbX0NVw0.roa
File: A80R6mxiBReqvGKiMM1XbX0NVw0.roa (raw, json)
Hash identifier: oz2dtb0Sn4Dr05bU/N9h0lJoPq4rF/D4lk0C1Ari5Ys=
Subject key identifier: 03:CD:11:EA:6C:62:05:17:AA:BC:62:A2:30:CD:57:6D:7D:0D:57:0D
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0191D77F96D0948BADACB122B2FC9E753BA9
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/A80R6mxiBReqvGKiMM1XbX0NVw0.roa
Signing time: Mon 09 Sep 2024 15:55:48 +0000
ROA not before: Mon 09 Sep 2024 15:55:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214402
IP address blocks: 2a0f:ea43:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 11 Sep 2024 20:15:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d7:7f:96:d0:94:8b:ad:ac:b1:22:b2:fc:9e:75:3b:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 9 15:55:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03cd11ea6c620517aabc62a230cd576d7d0d570d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e2:4f:a2:04:85:02:6e:ae:25:af:76:e4:93:
34:b1:3e:e3:7a:52:68:f5:a6:cf:e4:75:7f:0f:4e:
9b:c6:47:5a:aa:74:ec:b9:e4:3e:61:87:c5:49:3a:
cd:f3:b9:5a:94:32:2b:2a:f1:99:97:b9:11:1b:18:
68:a2:cd:5c:8c:21:a0:29:23:bb:ce:38:38:59:c5:
a5:af:a9:7f:c5:3e:d6:9b:ba:c8:60:6b:50:f2:0c:
31:7a:18:fb:b9:27:15:49:c2:52:51:fd:54:bf:59:
3e:10:b9:54:12:57:82:71:59:60:c4:a3:84:38:82:
02:50:3f:84:a5:ac:6b:32:a3:20:8c:9c:ba:36:9b:
09:6d:d2:8c:78:d1:a6:c5:87:9b:f3:a9:bd:e3:95:
fa:7f:5c:e2:28:54:d8:0b:5e:ad:e1:31:75:07:22:
dd:21:5f:2e:8f:8e:6a:b0:7a:64:25:d9:3e:ab:5a:
59:aa:f0:88:e2:b1:4b:f3:76:66:f5:72:73:b3:49:
07:a2:19:fa:3d:81:c4:23:ff:d4:35:16:56:fa:3a:
ed:c7:b5:86:c5:bd:0c:0b:4c:a2:2d:d1:79:c7:ba:
45:f0:41:a1:a2:76:6b:55:ba:58:d7:03:c1:dc:ce:
15:9f:06:2a:13:e4:09:ee:3d:1b:ec:f1:bd:63:c0:
9b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CD:11:EA:6C:62:05:17:AA:BC:62:A2:30:CD:57:6D:7D:0D:57:0D
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/A80R6mxiBReqvGKiMM1XbX0NVw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ea43:2::/48
Signature Algorithm: sha256WithRSAEncryption
07:20:98:98:87:71:8d:6d:6a:36:b5:d7:36:d1:1a:df:15:90:
d7:31:87:4f:bb:70:cb:11:ef:19:e2:71:64:8f:f8:6c:bd:54:
ac:3e:61:d3:69:d6:66:ac:c3:af:50:32:a8:4e:a8:0e:cc:d4:
c3:59:81:91:17:3a:b2:59:4b:e1:71:81:9f:1f:58:a7:ea:c3:
40:51:11:9e:1d:78:16:8d:ed:ea:23:34:30:71:84:8f:36:0b:
91:99:6c:a8:00:17:18:c9:24:d1:25:2b:67:8a:2a:c1:66:7e:
9c:80:74:94:c3:e0:e8:c5:06:58:1c:66:7b:68:4f:0d:98:48:
3c:b2:76:fa:a4:7a:78:1d:41:ca:17:68:cc:7f:9d:00:c8:63:
f6:e3:5a:88:9b:5e:13:b2:3c:9a:ae:72:49:49:58:34:5d:53:
72:27:41:f4:98:d8:e9:ac:33:2f:01:d7:72:33:2e:61:a3:15:
a2:cb:66:8d:f6:4b:b1:7b:5c:99:4f:8b:8e:82:21:fe:e6:25:
3d:90:33:0a:03:ba:4d:ed:58:f7:84:ea:54:2f:e6:6a:36:11:
19:a1:67:88:d6:f2:37:1b:76:f5:b9:10:2d:e5:09:d9:0b:53:
02:28:de:25:5a:ec:db:8e:aa:db:bc:c0:df:65:5e:c9:dd:6f:
a0:28:6e:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:14:49 2025 by rpki-client