Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AQvjXKjNYQQsKhq24_-4a41mPmA.roa
File: AQvjXKjNYQQsKhq24_-4a41mPmA.roa (raw, json)
Hash identifier: An6VF1Ldp7UDYJix5svQx7l9nYDFRsYteHHhM1dgC1k=
Subject key identifier: 01:0B:E3:5C:A8:CD:61:04:2C:2A:1A:B6:E3:FF:B8:6B:8D:66:3E:60
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018CC9BC29B0521E08EBCB5AEA7F1C448109
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AQvjXKjNYQQsKhq24_-4a41mPmA.roa
Signing time: Tue 02 Jan 2024 10:33:20 +0000
ROA not before: Tue 02 Jan 2024 10:33:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205544
IP address blocks: 2a0f:e6c6:1::/48 maxlen: 48
2a13:e101:1::/48 maxlen: 48
2a09:17c0::/48 maxlen: 48
2a12:ecc0:1::/48 maxlen: 48
2a13:3380:1::/48 maxlen: 48
2a0f:e6c7:1::/48 maxlen: 48
2a12:ecc0:f::/48 maxlen: 48
2a0f:e440::/29 maxlen: 29
2a13:e101:2::/48 maxlen: 48
2a0f:e1c0:2::/48 maxlen: 48
2a0f:e1c0:1::/48 maxlen: 48
2a13:c700:1::/48 maxlen: 48
2a09:17c1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 09 Jan 2024 13:37:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:29:b0:52:1e:08:eb:cb:5a:ea:7f:1c:44:81:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 2 10:33:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=010be35ca8cd61042c2a1ab6e3ffb86b8d663e60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f2:55:71:1e:91:cf:34:59:d9:e1:eb:f0:63:
30:7b:ad:f6:f6:75:d3:9f:9e:d6:85:51:6e:ec:63:
63:5f:fe:f6:2c:3e:63:76:c7:72:47:73:a4:54:a6:
e6:e7:2e:eb:83:0a:e4:94:be:4e:c1:6b:63:04:db:
35:b1:67:ed:a6:e8:ad:78:d9:5c:08:ed:ac:7a:13:
10:f8:ff:79:bb:71:6c:d2:bc:1d:78:59:d6:18:9f:
b5:86:c6:46:5c:57:9a:99:cd:5d:46:9d:cd:74:57:
31:c0:a2:08:dd:a8:c5:d2:0e:c8:6b:a2:7e:3c:c5:
44:89:4a:b8:01:7d:a7:16:b3:0f:90:16:9b:d8:ea:
f0:ec:31:a5:bc:87:51:f6:36:06:7d:ae:1e:73:53:
7e:6b:cf:a7:0c:b5:16:63:4f:b0:2f:30:db:ba:4e:
59:b5:ab:0b:a0:cf:d7:12:f2:72:d2:57:ee:5f:c0:
84:65:ff:21:86:4b:59:5f:f9:0f:ab:7e:c7:11:c6:
36:e0:0d:04:1d:b8:cb:44:81:a3:4e:d1:1e:61:97:
3b:21:eb:a2:b0:01:be:47:1d:6e:31:21:38:d8:c4:
6c:ca:b7:84:45:23:53:1d:d7:ec:c8:62:39:a3:d4:
96:bd:32:83:7e:08:dd:80:2a:65:70:ae:ba:a3:79:
ab:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:0B:E3:5C:A8:CD:61:04:2C:2A:1A:B6:E3:FF:B8:6B:8D:66:3E:60
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AQvjXKjNYQQsKhq24_-4a41mPmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:17c0::/48
2a09:17c1::/48
2a0f:e1c0:1::-2a0f:e1c0:2:ffff:ffff:ffff:ffff:ffff
2a0f:e440::/29
2a0f:e6c6:1::/48
2a0f:e6c7:1::/48
2a12:ecc0:1::/48
2a12:ecc0:f::/48
2a13:3380:1::/48
2a13:c700:1::/48
2a13:e101:1::-2a13:e101:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
74:b8:d9:ca:ff:f2:d6:84:2e:f7:57:d3:07:86:41:f6:b9:8f:
ac:ba:ec:64:eb:fc:71:10:67:0d:7e:7c:98:e9:86:af:76:c4:
db:d1:fb:19:c7:5b:40:37:4e:79:69:aa:f7:f1:1d:c1:46:99:
35:53:e4:2d:f5:bd:56:76:ec:00:d1:31:8b:d5:ef:d2:91:e0:
3a:91:a0:20:c8:9b:e2:27:0f:2e:0e:73:0b:5f:fd:55:e0:29:
38:25:c7:c3:36:d7:f7:c3:18:84:33:69:ad:8c:88:f4:d1:f3:
42:95:99:99:cc:06:db:d8:1f:85:6e:e1:47:b2:6c:f1:bc:4f:
d4:9f:97:f2:06:af:b6:4c:2c:0e:36:1b:e3:6d:9e:38:80:ce:
30:2a:5a:ab:4c:0c:05:13:0d:51:37:dd:32:d2:25:cb:e4:64:
1d:1d:9f:31:45:00:f3:07:a5:8b:90:78:54:bd:ed:dd:2f:9f:
e9:8d:f1:58:a5:55:6c:8a:6a:e6:8e:04:9c:76:51:33:dd:b0:
aa:e4:7f:ef:99:fe:8d:08:39:1f:08:7f:e8:cf:58:02:80:9d:
23:62:03:5b:ab:67:18:eb:24:9e:d4:24:fa:87:62:6f:a4:e9:
9f:c2:93:52:0d:09:c4:8b:44:8e:a3:ec:73:d6:9e:fb:5b:6e:
ac:c7:e8:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:01:43 2025 by rpki-client