Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KumqZWLbUPXbnVB-7eGndQ3Rpqc.roa
File: KumqZWLbUPXbnVB-7eGndQ3Rpqc.roa (raw, json)
Hash identifier: yrS30PoBPl+Ju48gE92aHYxaNC8LIbyv/Eq7HfMH4Js=
Subject key identifier: 2A:E9:AA:65:62:DB:50:F5:DB:9D:50:7E:ED:E1:A7:75:0D:D1:A6:A7
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018E0E2CB1CC23385F65A2797253BB6A7033
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KumqZWLbUPXbnVB-7eGndQ3Rpqc.roa
Signing time: Tue 05 Mar 2024 10:33:13 +0000
ROA not before: Tue 05 Mar 2024 10:33:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197992
IP address blocks: 2a06:dfc0::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a0e:2240::/29 maxlen: 29
2a0e:5a80::/29 maxlen: 29
2a0e:f500::/29 maxlen: 29
2a0f:a00::/29 maxlen: 29
2a0f:6d80::/29 maxlen: 29
2a0f:7f00::/29 maxlen: 29
2a0f:8100::/29 maxlen: 29
2a0f:8300::/29 maxlen: 29
2a0f:9e00::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:b400::/29 maxlen: 29
2a0f:da40::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0f:de40::/29 maxlen: 29
2a0f:e0c0::/29 maxlen: 29
2a0f:e140::/29 maxlen: 29
2a0f:e4c0::/29 maxlen: 29
2a0f:e540::/29 maxlen: 29
2a0f:e5c0::/29 maxlen: 29
2a0f:e640::/29 maxlen: 29
2a0f:e9c0::/29 maxlen: 29
2a0f:ec00::/29 maxlen: 29
2a0f:ee00::/29 maxlen: 29
2a0f:fc00::/29 maxlen: 29
2a10:67c0::/29 maxlen: 29
2a12:d540::/29 maxlen: 29
2a12:eb40::/29 maxlen: 29
2a13:200::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 24 Jun 2024 08:54:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0e:2c:b1:cc:23:38:5f:65:a2:79:72:53:bb:6a:70:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 5 10:33:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ae9aa6562db50f5db9d507eede1a7750dd1a6a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:42:79:49:d1:03:01:23:e7:90:1f:aa:e7:fd:
bb:82:76:ee:eb:0b:d7:3b:34:5d:20:2e:37:bc:b5:
21:c6:02:9e:84:1a:2d:74:f8:98:09:c3:e3:19:f5:
9a:e5:1c:19:6a:d5:5a:b0:fb:4f:5b:92:6d:c3:23:
8a:84:d0:8b:21:b3:d9:43:f9:6c:49:4c:81:ec:b8:
0a:2d:14:6b:df:23:ef:de:dc:71:d1:b2:c5:17:c6:
f0:a0:d1:50:1b:2a:8e:1b:57:9a:46:09:d2:13:25:
56:9c:e1:9d:6d:e9:73:72:d2:c9:78:bf:88:3a:57:
7e:51:b5:89:db:c7:8f:ac:66:1d:76:94:9e:60:22:
31:b6:71:f5:67:9a:63:c0:8e:2c:9d:14:fe:be:ca:
7a:a0:8c:01:12:f7:1c:4b:71:25:c9:4e:4d:25:11:
76:d7:a6:6b:fc:d3:73:35:5c:c4:eb:67:8d:d9:5f:
74:e8:b4:d5:30:f9:83:38:01:20:98:b5:d9:ae:b8:
f3:41:35:91:df:97:e8:4d:56:16:da:9a:18:bd:a9:
20:4a:40:5c:2d:69:77:bf:aa:0e:03:3e:76:0b:bb:
f2:bd:8e:d3:35:0c:50:e1:54:a9:b5:2b:d5:0c:b6:
58:11:be:b4:8b:fa:1d:e6:f9:35:25:6d:27:ad:fb:
6c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E9:AA:65:62:DB:50:F5:DB:9D:50:7E:ED:E1:A7:75:0D:D1:A6:A7
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/KumqZWLbUPXbnVB-7eGndQ3Rpqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:dfc0::/29
2a0c:4880::/29
2a0e:2240::/29
2a0e:5a80::/29
2a0e:f500::/29
2a0f:a00::/29
2a0f:6d80::/29
2a0f:7f00::/29
2a0f:8100::/29
2a0f:8300::/29
2a0f:9e00::/29
2a0f:a200::/29
2a0f:b400::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:de40::/29
2a0f:e0c0::/29
2a0f:e140::/29
2a0f:e4c0::/29
2a0f:e540::/29
2a0f:e5c0::/29
2a0f:e640::/29
2a0f:e9c0::/29
2a0f:ec00::/29
2a0f:ee00::/29
2a0f:fc00::/29
2a10:67c0::/29
2a12:d540::/29
2a12:eb40::/29
2a13:200::/29
Signature Algorithm: sha256WithRSAEncryption
91:a4:05:d3:1f:98:42:00:4b:e6:61:b5:93:44:8d:6e:0a:cd:
1e:73:4a:47:5b:92:87:11:e0:7b:ae:4f:e9:af:34:c9:af:53:
24:93:df:a6:2d:97:c1:eb:00:5a:85:c6:d3:65:8d:14:8e:72:
35:35:bc:1b:5d:b0:0a:bb:d3:00:d4:76:3d:7f:26:44:bf:83:
6f:a3:a0:f4:cc:65:ee:d4:42:54:43:c9:51:bd:29:f9:29:10:
37:a1:89:e6:6a:f1:c0:45:3a:cb:2a:07:a0:1c:39:b5:2b:ec:
99:1f:34:8f:99:2f:bc:25:3e:96:cd:d2:f3:5e:33:b4:c9:20:
b8:14:02:91:9f:92:3f:e0:1f:ec:d9:20:ff:7b:33:0e:76:e2:
c2:c6:cf:b3:21:ea:43:d2:11:92:c1:ff:2b:f5:34:ae:71:5e:
f2:23:44:ce:17:a9:09:4e:f3:1a:95:41:57:43:70:b6:57:f4:
97:96:cd:e5:cf:62:43:34:1e:39:00:45:89:4e:de:e6:c6:50:
06:01:bb:95:ab:d4:30:6d:d6:a2:35:28:2c:18:b1:f0:e2:1b:
60:9e:a4:88:71:c7:72:91:1d:c2:72:bc:e4:e5:e5:36:24:4f:
fe:10:e4:b3:4c:78:ac:94:8d:f7:1e:0c:af:25:ce:7e:c0:bd:
b0:ab:20:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:17 2025 by rpki-client