Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/M8uWOYpgW3buJqOy8xHrjJ__q9Q.roa
File: M8uWOYpgW3buJqOy8xHrjJ__q9Q.roa (raw, json)
Hash identifier: HP79j5jMWZ4KVobf5iFKLDrdADSnE873JyFwAsqPP8A=
Subject key identifier: 33:CB:96:39:8A:60:5B:76:EE:26:A3:B2:F3:11:EB:8C:9F:FF:AB:D4
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019108DF68F21A1A2571256C8A3D8BF20C1B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/M8uWOYpgW3buJqOy8xHrjJ__q9Q.roa
Signing time: Wed 31 Jul 2024 12:59:04 +0000
ROA not before: Wed 31 Jul 2024 12:59:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214466
IP address blocks: 2a0a:2d06:66::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 09 Aug 2024 16:25:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:df:68:f2:1a:1a:25:71:25:6c:8a:3d:8b:f2:0c:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 31 12:59:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33cb96398a605b76ee26a3b2f311eb8c9fffabd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f4:28:60:e4:d2:a0:73:b0:17:6d:59:1b:57:
d8:fc:29:ef:52:e5:ea:e3:bc:0c:82:77:16:48:00:
8e:2c:26:86:39:d5:93:35:e6:65:68:28:4d:b3:00:
cf:c3:3d:0c:4b:38:8c:70:88:b3:7b:1b:ed:9b:29:
98:38:65:ce:df:5f:15:2c:fc:33:9f:0d:80:84:dd:
87:7d:50:92:b2:10:d4:9f:ce:88:dd:a0:73:db:2f:
3e:35:e8:04:4f:30:6f:ca:01:dd:00:e9:c0:a9:4f:
45:10:28:6b:06:c5:d9:d7:1c:46:c4:de:f3:02:d1:
dd:1e:24:ad:a3:d3:e2:fa:dd:59:0a:f1:a0:86:c1:
bd:3e:e1:d8:46:0d:83:e2:60:ae:3a:70:3d:eb:eb:
a1:f6:bf:9f:b0:a6:cc:5f:22:99:92:fc:db:d0:2b:
f5:65:b0:4b:78:29:3e:97:91:24:78:e2:74:99:c2:
c2:1d:5e:c4:06:1f:1c:de:7d:c2:32:5b:df:3e:6d:
f6:64:42:b7:1b:8d:39:ac:7c:6a:ef:bb:5e:12:e7:
fc:42:56:16:d5:e5:26:7d:f3:72:3a:09:e0:d5:de:
75:8d:86:8c:47:41:da:4a:1d:dd:f6:ea:10:79:c9:
b7:4d:25:a8:2c:f9:23:94:07:79:02:69:52:26:37:
c4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CB:96:39:8A:60:5B:76:EE:26:A3:B2:F3:11:EB:8C:9F:FF:AB:D4
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/M8uWOYpgW3buJqOy8xHrjJ__q9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2d06:66::/48
Signature Algorithm: sha256WithRSAEncryption
79:36:6b:46:77:08:5f:e7:7c:9e:af:33:e4:68:75:19:97:9e:
f4:d6:3f:5e:67:26:7b:2e:a8:7a:93:0a:ea:a6:fe:d9:8c:d1:
ad:25:61:75:c3:78:cd:7f:a9:7e:93:ad:2f:d2:e4:5c:e4:d8:
c0:66:56:b2:2f:a3:e2:c1:5d:ee:9f:c2:09:d7:b6:92:45:10:
98:49:08:28:27:dd:11:c6:0b:50:87:6a:8b:0c:c8:f7:8e:0c:
9e:ec:72:08:04:6a:e4:33:79:d1:30:33:43:1b:0b:cd:fb:e3:
b3:29:b9:d6:68:35:09:29:64:a6:37:f9:9f:d0:c4:2b:2d:3c:
57:36:99:4c:1e:3e:12:62:39:8f:e4:c3:c1:a9:ee:f9:43:44:
f4:92:5a:f3:ce:a8:2b:69:8f:0c:5c:8b:c3:4c:6a:ea:5e:d6:
89:77:b8:f3:7e:00:88:7a:3a:66:b7:44:b5:ac:91:ed:58:fc:
b3:9b:bc:27:a2:37:f0:3c:f8:b2:db:d7:c7:9a:f7:48:ea:55:
3f:85:a8:73:0e:6f:8e:78:1d:ef:f8:05:e8:a8:1f:67:39:ee:
eb:42:74:00:de:53:47:b7:19:b6:b6:13:9c:04:9a:86:be:52:
17:3a:92:82:77:e8:52:6a:fd:9f:00:49:75:f8:2d:20:f8:a3:
f8:a9:80:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:14:53 2025 by rpki-client