Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/C1Ug5MPl3tIPAjrs5ux8zoRUTJU.roa
File: C1Ug5MPl3tIPAjrs5ux8zoRUTJU.roa (raw, json)
Hash identifier: udJaU8owAFAzIdtcpjI/IMak+Y9VIr2DDqK5mJoXXvQ=
Subject key identifier: 0B:55:20:E4:C3:E5:DE:D2:0F:02:3A:EC:E6:EC:7C:CE:84:54:4C:95
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0193BF26D2E3905FA0D5CC1B5FB60273A9DD
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/C1Ug5MPl3tIPAjrs5ux8zoRUTJU.roa
Signing time: Fri 13 Dec 2024 08:33:32 +0000
ROA not before: Fri 13 Dec 2024 08:33:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214481
IP address blocks: 2a0f:1540::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 23 Dec 2024 17:36:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bf:26:d2:e3:90:5f:a0:d5:cc:1b:5f:b6:02:73:a9:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 13 08:33:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b5520e4c3e5ded20f023aece6ec7cce84544c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:12:98:9c:9f:0a:bc:8e:05:fd:d7:53:96:75:
7d:b3:36:46:a1:84:26:2e:9f:19:a7:18:1e:ed:61:
ec:77:b6:2c:14:7a:a7:31:fe:1f:41:2f:e1:41:6b:
c7:dd:43:2e:1d:ef:7c:93:04:19:30:e2:0f:4c:84:
76:3e:4c:6a:6c:53:69:35:48:44:98:50:c5:b7:a0:
1b:31:6a:40:f5:48:ed:25:47:a1:0d:1e:5f:0c:15:
6b:33:5f:c9:e2:6f:d2:7e:2e:a0:80:39:bb:1d:c7:
b2:fa:0f:22:8e:f0:7e:7f:ef:3b:bf:7d:b8:ff:ee:
b5:2b:e9:8d:db:78:6b:e1:7d:41:1e:2c:48:b3:2e:
30:8a:b4:90:8f:8f:aa:8a:1f:ab:0d:c3:e8:b0:3a:
d3:ed:4a:10:64:0c:42:4f:d5:3e:66:a6:d9:9f:a8:
1c:1f:df:99:9c:5b:1a:b7:f3:bf:84:5f:b9:4c:b7:
2c:26:f7:32:7f:76:ce:a3:a4:e1:db:1d:33:c5:07:
02:53:2e:7a:c0:fa:a2:52:7e:33:af:81:79:e3:92:
ba:f0:63:be:39:9a:b0:ec:76:d9:1e:89:9a:8d:d7:
35:49:6b:34:18:6e:9e:74:83:ea:b8:4e:fb:7b:e3:
f8:ba:b5:34:9c:a9:ad:05:f6:71:6e:27:09:91:89:
b8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:55:20:E4:C3:E5:DE:D2:0F:02:3A:EC:E6:EC:7C:CE:84:54:4C:95
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/C1Ug5MPl3tIPAjrs5ux8zoRUTJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:1540::/29
Signature Algorithm: sha256WithRSAEncryption
d0:5f:3e:56:79:f3:fd:c1:ba:b4:cb:29:56:db:2f:59:a4:d0:
51:e1:52:16:00:5b:72:ce:ac:e4:18:d5:e1:45:c9:25:0b:2f:
27:6e:a1:0e:b0:98:ac:73:79:3b:5a:19:4e:7f:0e:53:f3:0f:
d9:a7:0e:0e:d8:06:1f:6e:75:2b:35:f7:e0:5a:c2:80:a2:aa:
63:b8:de:b1:6a:2b:22:d5:f5:b7:d5:d8:72:0b:1c:d3:21:b2:
f1:aa:2e:e6:f0:35:2b:54:a2:d4:f6:f4:4a:8a:1c:3a:a6:3c:
04:65:54:c6:e8:97:34:71:33:c8:59:26:77:58:df:35:f6:12:
cc:77:5b:d6:69:56:39:5c:5e:8c:c4:40:b5:99:48:6f:9c:ea:
87:5e:59:e8:6e:cb:1e:2d:c5:69:e2:6b:66:d0:46:69:11:11:
8e:d2:a0:c7:3c:34:7b:63:c9:b8:8a:5a:be:a7:8e:51:02:68:
a4:de:f4:a0:6f:4d:3c:b0:eb:31:21:ee:71:24:5d:d3:a1:e6:
7b:dc:25:91:d2:03:a3:d5:4c:da:46:21:8c:4a:c6:7e:f7:ec:
3f:0d:da:b7:b9:35:d1:0b:d9:90:a1:66:ea:49:23:31:ad:a8:
1a:ce:45:ed:f8:3f:30:f4:94:23:0c:3f:e5:8a:95:3d:e6:63:
ae:4d:17:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:09:33 2025 by rpki-client