Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FW_7nxEYZDLNyCZRWz66jUwYRzk.roa
File: FW_7nxEYZDLNyCZRWz66jUwYRzk.roa (raw, json)
Hash identifier: IR/kgRVpjTeYpwvSC87rGo32Hsp3e41qBRkt/86xCzk=
Subject key identifier: 15:6F:FB:9F:11:18:64:32:CD:C8:26:51:5B:3E:BA:8D:4C:18:47:39
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018CF3D08EF85ED54C01C868BF718C0ED1AD
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FW_7nxEYZDLNyCZRWz66jUwYRzk.roa
Signing time: Wed 10 Jan 2024 14:39:40 +0000
ROA not before: Wed 10 Jan 2024 14:39:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 2a13:2dc5::/32 maxlen: 32
2a13:2d41::/32 maxlen: 32
2a13:2d42::/32 maxlen: 32
2a13:2dc4::/32 maxlen: 32
2a13:2d43::/32 maxlen: 32
2a13:2dc7::/32 maxlen: 32
2a13:d706::/32 maxlen: 32
2a13:2d40::/32 maxlen: 32
2a13:c902::/32 maxlen: 32
2a13:2d44::/32 maxlen: 32
2a13:c901::/32 maxlen: 32
2a09:b700::/29 maxlen: 32
2a13:d705::/32 maxlen: 32
2a06:35c0::/30 maxlen: 30
2a0d:a9c0::/29 maxlen: 32
2a13:2d47::/32 maxlen: 32
2a13:2dc6::/32 maxlen: 32
2a13:d905::/32 maxlen: 32
2a13:2dc0::/32 maxlen: 32
2a09:7b00::/29 maxlen: 32
2a13:2dc3::/32 maxlen: 32
2a13:d902::/32 maxlen: 32
2a13:c906::/32 maxlen: 32
2a13:c905::/32 maxlen: 32
2a13:d700::/32 maxlen: 32
2a13:d901::/32 maxlen: 32
2a09:7300::/29 maxlen: 32
2a09:4900::/29 maxlen: 32
2a13:d702::/32 maxlen: 32
2a13:c904::/32 maxlen: 32
2a13:c907::/32 maxlen: 32
2a13:d900::/32 maxlen: 32
2a09:7500::/29 maxlen: 32
2a13:d703::/32 maxlen: 32
2a06:35c4::/30 maxlen: 30
2a13:d903::/32 maxlen: 32
2a13:2d46::/32 maxlen: 32
2a0d:b740::/29 maxlen: 32
2a13:2d45::/32 maxlen: 32
2a13:d704::/32 maxlen: 32
2a13:2dc1::/32 maxlen: 32
2a13:2dc2::/32 maxlen: 32
2a13:d906::/32 maxlen: 32
2a0d:2ac0::/29 maxlen: 32
2a13:d907::/32 maxlen: 32
2a13:d904::/32 maxlen: 32
2a13:c900::/32 maxlen: 32
2a09:4500::/29 maxlen: 32
2a13:d707::/32 maxlen: 32
2a13:c903::/32 maxlen: 32
2a13:d701::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 15 Jan 2024 07:47:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:d0:8e:f8:5e:d5:4c:01:c8:68:bf:71:8c:0e:d1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 10 14:39:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=156ffb9f11186432cdc826515b3eba8d4c184739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:07:e9:cb:1b:e0:f5:f3:18:3a:51:78:8a:f1:
03:1e:7d:bf:4d:dc:e9:e7:8c:ea:b3:85:7b:51:75:
1b:78:46:d3:46:72:02:8a:2c:2e:2e:f1:26:b7:1e:
b7:d3:b3:71:13:71:0b:15:61:c0:c3:ab:bc:d0:0c:
53:19:ae:52:f8:19:e5:1d:cd:72:8d:e8:cf:eb:ac:
da:97:47:70:4a:25:55:59:06:ff:3e:09:f1:48:cf:
2e:96:c2:97:3f:51:0f:d7:56:2a:7c:b6:51:a6:f1:
cf:22:37:36:bb:89:c9:c6:28:95:20:c9:3a:fe:f4:
e7:27:2e:9d:1f:5d:ec:0b:d8:d7:46:26:da:b8:4f:
91:1c:ca:6c:85:d5:46:41:f2:83:3e:77:bf:28:69:
3e:e1:e4:2a:e0:91:e2:1a:c9:33:c8:db:aa:dc:2b:
d3:ac:83:e3:30:2d:6c:c3:1f:66:a2:d4:94:6c:1f:
0b:10:8e:3c:73:61:82:1f:c6:1f:40:8d:1e:6e:87:
e1:52:1c:5d:e0:f9:72:08:0f:04:0d:ce:45:79:a5:
71:f2:6a:80:86:6a:d3:1a:03:16:ad:0a:f4:a6:a4:
5e:6b:68:02:7d:75:bc:ab:f3:4b:e7:91:0c:92:d8:
aa:c0:e6:e5:d1:9a:31:07:43:65:45:c2:84:d1:ab:
cb:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:6F:FB:9F:11:18:64:32:CD:C8:26:51:5B:3E:BA:8D:4C:18:47:39
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/FW_7nxEYZDLNyCZRWz66jUwYRzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:35c0::/29
2a09:4500::/29
2a09:4900::/29
2a09:7300::/29
2a09:7500::/29
2a09:7b00::/29
2a09:b700::/29
2a0d:2ac0::/29
2a0d:a9c0::/29
2a0d:b740::/29
2a13:2d40::/29
2a13:2dc0::/29
2a13:c900::/29
2a13:d700::/29
2a13:d900::/29
Signature Algorithm: sha256WithRSAEncryption
2b:37:ce:ab:87:c3:fc:f8:03:13:e1:a7:8b:4d:0e:38:48:7f:
e0:08:e8:9f:44:2b:2e:6c:68:03:b0:f3:ac:b7:fe:e6:75:06:
0a:5a:dc:c2:3d:21:ff:1c:72:d7:37:7e:5c:f8:8b:41:d9:7e:
4e:d4:7a:07:36:e3:4d:14:e8:11:fb:8e:84:44:10:ac:4d:e8:
1b:9a:78:d1:94:86:b7:5e:46:3d:82:9f:cd:07:15:04:c3:43:
00:3c:8b:a3:5f:fd:0b:63:7f:ed:24:f4:93:31:1b:b7:77:50:
4e:05:4b:0e:b7:5e:eb:07:29:8c:80:78:02:a0:66:ab:75:43:
ba:5e:1c:6d:53:b7:50:2a:52:4d:99:bf:9a:35:5f:9d:59:7d:
20:17:54:af:b7:f9:5c:e7:4e:e5:33:bf:0b:4a:52:96:f6:c7:
de:b6:0c:ad:90:7e:04:a0:b4:7e:94:2d:8c:9d:1c:33:be:d5:
e9:34:6f:22:f6:4c:a2:03:c4:a2:75:ba:15:a9:17:fb:67:5c:
a4:6c:e4:2f:ca:78:7b:c3:77:2d:46:36:e5:d3:0b:5a:82:23:
11:cb:f6:e1:cf:b9:a1:f5:ac:a0:d7:a9:ac:64:19:2e:56:14:
2a:07:11:63:a4:b9:ff:d5:74:dc:7c:a4:95:6d:b9:fb:da:8d:
62:d1:c4:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:04:58 2025 by rpki-client