Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KNkaI1w-L8Ul90MzAE4EnF2ABZc.roa
File: KNkaI1w-L8Ul90MzAE4EnF2ABZc.roa (raw, json)
Hash identifier: JOBjTfHFEdVdt8hBcCZYu6uAJWrT8DdIQRHieTXNYKo=
Subject key identifier: 28:D9:1A:23:5C:3E:2F:C5:25:F7:43:33:00:4E:04:9C:5D:80:05:97
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01920A4BBEACC0692A22E65825A481D1FD9C
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KNkaI1w-L8Ul90MzAE4EnF2ABZc.roa
Signing time: Thu 19 Sep 2024 12:39:48 +0000
ROA not before: Thu 19 Sep 2024 12:39:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 2a0a:2d02::/32 maxlen: 48
2a12:ecc2::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 03 Oct 2024 11:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0a:4b:be:ac:c0:69:2a:22:e6:58:25:a4:81:d1:fd:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 19 12:39:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28d91a235c3e2fc525f74333004e049c5d800597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b0:fd:d6:f4:fa:97:77:7b:8a:a6:90:a5:49:
0c:d3:37:1e:12:4c:aa:13:bb:94:2e:82:ce:60:05:
bc:37:d7:4f:43:87:3c:4e:33:bc:c2:26:10:5b:21:
fd:0f:8a:d7:a8:2a:2f:13:e9:aa:25:8a:d8:50:3a:
0c:53:38:71:bc:35:66:30:17:2a:9b:0a:fd:6c:db:
f0:cd:cb:c5:45:29:dc:d2:af:fa:61:f3:4d:6e:2d:
82:90:94:e1:0d:df:d3:01:8f:4f:1d:7b:24:cc:10:
13:69:b4:64:91:4a:aa:af:ec:02:91:d7:57:b0:a3:
ce:9a:e5:4c:ba:21:45:b1:4c:f0:2e:c5:ca:21:a3:
3d:2f:a5:e1:cc:6e:f7:63:f1:a6:fa:d8:cf:84:4d:
b2:f8:8c:71:58:d5:b5:d7:e1:b0:72:25:8e:3d:d0:
95:88:26:cb:45:af:55:fe:2e:0f:66:b3:b5:0a:38:
9e:8d:a1:e6:1e:c2:10:87:77:32:f2:6b:59:a1:7f:
c7:b1:4a:02:10:c7:ba:0a:ad:c5:64:8b:71:37:cf:
81:4b:41:85:e8:42:f5:fd:86:e9:df:0d:47:cd:c0:
4a:02:12:df:dc:35:e8:ed:2b:41:18:86:29:98:fa:
b8:e6:b7:c2:05:6a:1f:15:5e:08:64:d0:19:30:7a:
68:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D9:1A:23:5C:3E:2F:C5:25:F7:43:33:00:4E:04:9C:5D:80:05:97
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KNkaI1w-L8Ul90MzAE4EnF2ABZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2d02::/32
2a12:ecc2::/32
Signature Algorithm: sha256WithRSAEncryption
cc:58:f1:95:77:74:9a:88:b8:22:2c:5e:ee:fb:48:b0:bf:91:
17:5a:73:3d:44:c3:a9:b9:fb:53:52:6c:bc:d8:9c:b0:b0:90:
74:98:e8:43:cd:b1:59:c4:b2:53:0a:61:b3:b1:59:97:7a:78:
16:23:67:4a:97:8b:29:93:4b:8c:70:dc:5a:9f:96:3e:8a:80:
71:e1:75:90:a8:8e:31:44:b1:58:ad:60:fd:7b:9b:b9:31:be:
6c:d1:70:2a:21:16:d9:02:1a:b6:e6:d0:95:b7:a2:2a:ca:d4:
31:35:27:86:2f:d3:d4:16:62:ef:cf:35:ea:c2:17:e1:9d:68:
00:ba:da:d1:bc:60:d8:8e:53:f0:bd:39:54:ce:d2:28:33:d4:
9f:43:8c:79:d7:f6:dc:80:e1:8f:de:96:28:6f:6f:d2:18:10:
ab:04:e2:5f:60:76:e0:4e:ca:29:99:ae:06:3e:22:0c:95:7d:
30:db:57:b1:da:22:14:58:2a:6f:c9:31:80:6e:b3:6f:dc:c3:
22:f1:2c:2a:d1:4d:d5:ac:32:38:9b:9e:7d:b1:af:36:9f:8c:
21:bf:fc:a4:71:e0:9c:aa:84:ef:85:44:0b:6b:16:f5:d1:6f:
d7:99:d8:2e:b8:eb:67:1c:0e:7f:34:00:82:43:19:83:e6:3a:
09:d6:e8:f3
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZIKS76swGkqIuZYJaSB0f2cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwOTE5MTIzOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOGQ5MWEyMzVjM2UyZmM1MjVmNzQzMzMwMDRlMDQ5YzVkODAwNTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbD91vT6l3d7iqaQpUkM0zceEkyq
E7uULoLOYAW8N9dPQ4c8TjO8wiYQWyH9D4rXqCovE+mqJYrYUDoMUzhxvDVmMBcq
mwr9bNvwzcvFRSnc0q/6YfNNbi2CkJThDd/TAY9PHXskzBATabRkkUqqr+wCkddX
sKPOmuVMuiFFsUzwLsXKIaM9L6XhzG73Y/Gm+tjPhE2y+IxxWNW11+GwciWOPdCV
iCbLRa9V/i4PZrO1CjiejaHmHsIQh3cy8mtZoX/HsUoCEMe6Cq3FZItxN8+BS0GF
6EL1/Ybp3w1HzcBKAhLf3DXo7StBGIYpmPq45rfCBWofFV4IZNAZMHpoWwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFCjZGiNcPi/FJfdDMwBOBJxdgAWXMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvS05rYUkxdy1MOFVsOTBNekFFNEVuRjJBQlpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKgotAgMF
ACoS7MIwDQYJKoZIhvcNAQELBQADggEBAMxY8ZV3dJqIuCIsXu77SLC/kRdacz1E
w6m5+1NSbLzYnLCwkHSY6EPNsVnEslMKYbOxWZd6eBYjZ0qXiymTS4xw3Fqflj6K
gHHhdZCojjFEsVitYP17m7kxvmzRcCohFtkCGrbm0JW3oirK1DE1J4Yv09QWYu/P
NerCF+GdaAC62tG8YNiOU/C9OVTO0igz1J9DjHnX9tyA4Y/elihvb9IYEKsE4l9g
duBOyimZrgY+IgyVfTDbV7HaIhRYKm/JMYBus2/cwyLxLCrRTdWsMjibnn2xrzaf
jCG//KRx4JyqhO+FRAtrFvXRb9eZ2C6462ccDn80AIJDGYPmOgnW6PM=
-----END CERTIFICATE-----
Generated at Mon Apr 21 15:06:54 2025 by rpki-client