Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/R-FzHRJCfKK8QvwBiTog3XFX-VY.roa
File: R-FzHRJCfKK8QvwBiTog3XFX-VY.roa (raw, json)
Hash identifier: u1BAq5H0fCTpHrX0sXBLFtZRWPtxS8fXewbnvbiwM5Q=
Subject key identifier: 47:E1:73:1D:12:42:7C:A2:BC:42:FC:01:89:3A:20:DD:71:57:F9:56
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01905562381CF910823777983F6897132972
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/R-FzHRJCfKK8QvwBiTog3XFX-VY.roa
Signing time: Wed 26 Jun 2024 16:30:18 +0000
ROA not before: Wed 26 Jun 2024 16:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 395954
IP address blocks: 2a0f:e1c5::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 16 Jul 2024 16:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:55:62:38:1c:f9:10:82:37:77:98:3f:68:97:13:29:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 26 16:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47e1731d12427ca2bc42fc01893a20dd7157f956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7e:84:4b:35:9c:ed:36:94:7c:f5:11:1f:51:
4e:fa:19:b5:c1:ea:dd:8c:28:ac:4f:be:c5:a6:ed:
3b:98:17:d7:2f:93:96:2f:f4:58:2e:4f:11:65:60:
28:18:2a:72:9b:ed:1a:76:28:b7:2e:cc:c0:10:00:
98:52:31:25:b2:d2:b7:25:fa:b5:4d:6e:ec:20:aa:
bd:28:ad:1d:93:b2:66:61:fe:34:a9:54:3f:a2:ad:
d4:35:f1:a0:bd:36:9d:4d:6e:c2:0b:6f:82:d9:7f:
4a:b0:b0:98:72:ea:48:d7:df:d1:7f:38:92:f0:a5:
e8:de:75:6c:11:c8:43:34:f4:b3:d7:ea:1a:17:c0:
11:f4:23:7a:94:b0:64:06:f7:39:41:65:0a:93:d9:
24:71:b9:c7:de:65:c8:c3:37:67:86:0d:b8:aa:57:
a7:83:57:3e:01:e8:ff:81:81:84:f3:ed:0b:d8:57:
a5:84:fb:50:6a:9b:13:be:c0:47:c3:2a:f1:f8:46:
95:b3:bb:e9:0e:62:3e:9b:6e:30:23:0e:6b:7f:43:
8c:c6:f7:40:8f:00:90:97:41:bc:e6:80:e6:67:54:
48:36:8a:d7:73:fe:7d:16:e4:1a:13:8f:be:89:ab:
88:55:0c:58:05:88:6b:f9:9d:39:3a:06:37:1a:ae:
99:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E1:73:1D:12:42:7C:A2:BC:42:FC:01:89:3A:20:DD:71:57:F9:56
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/R-FzHRJCfKK8QvwBiTog3XFX-VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e1c5::/32
Signature Algorithm: sha256WithRSAEncryption
70:89:5e:a4:d9:83:9a:23:7d:de:ca:95:f9:85:55:5c:e2:93:
97:2a:2e:9d:83:43:8e:d1:ad:51:34:fe:2f:59:a2:96:5a:9a:
2d:c8:3a:72:f7:3d:da:ce:3c:2e:a7:43:cc:4a:19:8e:55:cb:
6b:ae:82:f8:ca:0f:1b:2f:e7:49:52:c5:2b:6b:4b:65:be:42:
c5:70:e5:5e:ce:ab:c8:49:d2:04:6e:81:36:41:69:94:37:82:
0d:7c:fe:30:12:f5:f6:a2:72:17:75:a0:24:22:4e:48:48:2e:
2c:3c:60:27:4e:8d:b0:48:b0:a1:0a:55:ba:0f:b8:db:10:ca:
f1:00:b5:68:a7:d5:76:92:8e:58:72:e3:26:93:42:2e:93:6b:
db:81:c4:e2:61:d4:25:ca:cf:2e:55:90:fe:84:3f:d2:dc:15:
da:e1:31:be:6e:d2:ff:ce:61:40:fc:02:eb:bb:e7:2a:aa:1f:
4c:12:cc:35:66:71:4a:5c:dc:2b:34:54:a1:5a:b0:b5:44:b4:
60:0d:a0:ce:72:4b:11:df:c2:98:90:a8:b6:d3:97:62:7d:bf:
c4:c3:0d:8a:1b:60:70:c6:0c:9e:6c:86:20:30:c8:51:05:03:
91:c3:6c:95:ea:65:3a:b2:ce:a6:f1:2c:dd:f1:f1:01:bb:45:
ad:f9:d9:b2
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZBVYjgc+RCCN3eYP2iXEylyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwNjI2MTYzMDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0N2UxNzMxZDEyNDI3Y2EyYmM0MmZjMDE4OTNhMjBkZDcxNTdmOTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoX6ESzWc7TaUfPURH1FO+hm1werd
jCisT77Fpu07mBfXL5OWL/RYLk8RZWAoGCpym+0adii3LszAEACYUjElstK3Jfq1
TW7sIKq9KK0dk7JmYf40qVQ/oq3UNfGgvTadTW7CC2+C2X9KsLCYcupI19/RfziS
8KXo3nVsEchDNPSz1+oaF8AR9CN6lLBkBvc5QWUKk9kkcbnH3mXIwzdnhg24qlen
g1c+Aej/gYGE8+0L2FelhPtQapsTvsBHwyrx+EaVs7vpDmI+m24wIw5rf0OMxvdA
jwCQl0G85oDmZ1RINorXc/59FuQaE4++iauIVQxYBYhr+Z05OgY3Gq6ZuwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEfhcx0SQnyivEL8AYk6IN1xV/lWMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvUi1GekhSSkNmS0s4UXZ3QmlUb2czWEZYLVZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg/hxTAN
BgkqhkiG9w0BAQsFAAOCAQEAcIlepNmDmiN93sqV+YVVXOKTlyounYNDjtGtUTT+
L1millqaLcg6cvc92s48LqdDzEoZjlXLa66C+MoPGy/nSVLFK2tLZb5CxXDlXs6r
yEnSBG6BNkFplDeCDXz+MBL19qJyF3WgJCJOSEguLDxgJ06NsEiwoQpVug+42xDK
8QC1aKfVdpKOWHLjJpNCLpNr24HE4mHUJcrPLlWQ/oQ/0twV2uExvm7S/85hQPwC
67vnKqofTBLMNWZxSlzcKzRUoVqwtUS0YA2gznJLEd/CmJCottOXYn2/xMMNihtg
cMYMnmyGIDDIUQUDkcNsleplOrLOpvEs3fHxAbtFrfnZsg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 16:52:32 2025 by rpki-client