Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/PX8exB5vvRYfEo5RIggBkP0Qcqk.roa
File: PX8exB5vvRYfEo5RIggBkP0Qcqk.roa (raw, json)
Hash identifier: JG20zzluIvGdd/JJ+DOWsuIx1Lgc9+eXHzzTXgkdg74=
Subject key identifier: 3D:7F:1E:C4:1E:6F:BD:16:1F:12:8E:51:22:08:01:90:FD:10:72:A9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018D11B65E17658F3158195DA1695B4DA248
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/PX8exB5vvRYfEo5RIggBkP0Qcqk.roa
Signing time: Tue 16 Jan 2024 09:59:40 +0000
ROA not before: Tue 16 Jan 2024 09:59:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 2a13:2f40::/29 maxlen: 29
2a13:2dc5::/32 maxlen: 32
2a13:2d41::/32 maxlen: 32
2a13:9680::/29 maxlen: 29
2a13:2d42::/32 maxlen: 32
2a13:2dc4::/32 maxlen: 32
2a13:fb00::/29 maxlen: 29
2a13:d100::/29 maxlen: 29
2a13:2d43::/32 maxlen: 32
2a13:2dc7::/32 maxlen: 32
2a13:d706::/32 maxlen: 32
2a13:2d40::/32 maxlen: 32
2a13:c902::/32 maxlen: 32
2a13:2d44::/32 maxlen: 32
2a13:c901::/32 maxlen: 32
2a09:b700::/29 maxlen: 32
2a13:d705::/32 maxlen: 32
2a06:35c0::/30 maxlen: 30
2a0d:a9c0::/29 maxlen: 32
2a13:2d47::/32 maxlen: 32
2a13:2dc6::/32 maxlen: 32
2a13:d905::/32 maxlen: 32
2a13:2dc0::/32 maxlen: 32
2a09:7b00::/29 maxlen: 32
2a13:2dc3::/32 maxlen: 32
2a13:d902::/32 maxlen: 32
2a13:c906::/32 maxlen: 32
2a13:c905::/32 maxlen: 32
2a13:d700::/32 maxlen: 32
2a13:d901::/32 maxlen: 32
2a09:7300::/29 maxlen: 32
2a09:4900::/29 maxlen: 32
2a13:d702::/32 maxlen: 32
2a13:c904::/32 maxlen: 32
2a13:c700::/29 maxlen: 29
2a13:c907::/32 maxlen: 32
2a13:d900::/32 maxlen: 32
2a09:7500::/29 maxlen: 32
2a13:d703::/32 maxlen: 32
2a06:35c4::/30 maxlen: 30
2a13:d903::/32 maxlen: 32
2a13:2d46::/32 maxlen: 32
2a0d:b740::/29 maxlen: 32
2a13:2d45::/32 maxlen: 32
2a13:d704::/32 maxlen: 32
2a13:2dc1::/32 maxlen: 32
2a13:2dc2::/32 maxlen: 32
2a13:d906::/32 maxlen: 32
2a13:9180::/29 maxlen: 29
2a0d:2ac0::/29 maxlen: 32
2a13:d907::/32 maxlen: 32
2a13:d904::/32 maxlen: 32
2a13:c900::/32 maxlen: 32
2a09:4500::/29 maxlen: 32
2a13:d707::/32 maxlen: 32
2a13:c903::/32 maxlen: 32
2a13:d701::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 18 Jan 2024 14:10:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:11:b6:5e:17:65:8f:31:58:19:5d:a1:69:5b:4d:a2:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 16 09:59:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d7f1ec41e6fbd161f128e5122080190fd1072a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1c:5a:a4:38:37:70:ef:d0:f9:b9:21:93:82:
2a:88:b1:fa:2a:ed:2f:dc:9d:80:2d:26:a5:52:a1:
81:48:fd:18:93:ab:c5:b8:f6:d6:3a:fc:35:ea:e0:
c5:1f:f1:17:c6:b4:7c:83:0b:1d:8d:61:7b:da:d5:
cd:2a:66:52:f1:97:6f:57:f9:20:e7:c7:cc:76:74:
1c:27:ff:30:93:a1:0c:58:0a:81:d4:7e:c4:21:34:
e4:f5:3f:23:13:f2:82:8b:11:53:e7:67:c1:20:65:
c6:fe:bb:34:b8:e7:26:6a:60:9a:fc:8d:41:cf:1b:
7c:03:18:5a:a4:43:ce:75:59:d0:71:70:d5:64:66:
ef:44:7b:5e:82:96:fb:71:21:fc:77:f6:0a:ea:52:
dc:c3:85:58:d8:af:af:e5:b6:c0:a8:d9:90:27:74:
26:2c:45:56:79:0d:d3:72:93:bb:25:f3:03:e9:a0:
3b:40:6d:ad:ce:43:fb:9c:d2:2b:bc:e0:07:17:d5:
73:ec:ef:f9:0f:e5:f7:ba:a4:b1:fc:4d:8a:92:0e:
e9:1a:b3:a3:2f:38:59:29:0f:9e:95:0b:40:f0:de:
e6:0f:af:18:f5:4b:87:3f:b0:d0:52:57:f7:39:45:
99:6a:3c:81:33:f5:06:dd:ef:19:e5:72:72:13:8e:
12:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:7F:1E:C4:1E:6F:BD:16:1F:12:8E:51:22:08:01:90:FD:10:72:A9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/PX8exB5vvRYfEo5RIggBkP0Qcqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:35c0::/29
2a09:4500::/29
2a09:4900::/29
2a09:7300::/29
2a09:7500::/29
2a09:7b00::/29
2a09:b700::/29
2a0d:2ac0::/29
2a0d:a9c0::/29
2a0d:b740::/29
2a13:2d40::/29
2a13:2dc0::/29
2a13:2f40::/29
2a13:9180::/29
2a13:9680::/29
2a13:c700::/29
2a13:c900::/29
2a13:d100::/29
2a13:d700::/29
2a13:d900::/29
2a13:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
3e:6b:72:62:d5:79:ad:20:74:cf:b1:44:f5:e5:a4:de:93:25:
22:0b:b2:b8:fa:8f:71:9e:1f:48:4b:3c:e6:0e:6e:72:35:f1:
cd:7e:13:2c:3d:5c:e3:f6:17:96:06:2c:3e:37:91:20:6f:62:
d3:e4:93:cc:75:80:7b:56:d4:ce:98:b3:e5:2b:77:8b:82:1f:
0b:63:b2:3b:83:3b:34:02:18:73:52:41:9c:7d:26:39:59:86:
d9:e4:57:07:5a:9d:67:66:47:6a:34:31:35:9a:86:10:4e:5d:
82:bb:35:ea:a5:7a:c5:01:53:5f:06:08:63:26:66:d2:ee:ee:
4e:a1:89:4f:a3:e2:6f:5c:e9:cf:14:ec:7d:84:a9:f7:89:d5:
99:c6:93:e6:df:e2:af:a6:67:5a:1c:02:1d:da:0b:43:ff:f6:
44:89:31:d0:91:02:65:be:73:73:64:c6:12:cf:8a:32:d9:ce:
cf:67:f3:d2:25:25:09:a2:52:98:c2:12:d3:63:15:fc:43:2f:
3b:83:e7:14:a2:d9:04:ac:ef:9a:ed:fa:05:14:26:27:cf:e4:
63:68:7e:b9:01:4c:5b:3a:21:5c:4b:d7:60:76:26:4c:98:bb:
d5:05:cf:a6:de:58:24:cd:57:3c:18:a5:3e:b6:ca:e7:f9:2e:
b3:fd:60:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:21:12 2025 by rpki-client