Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/SVvd26irPUWlcLnBiQraKdJSIVg.roa
File: SVvd26irPUWlcLnBiQraKdJSIVg.roa (raw, json)
Hash identifier: VmaQagPGcHWbEiuQl3CbLHjw1KpG7vjvfiwpAy4D0R4=
Subject key identifier: 49:5B:DD:DB:A8:AB:3D:45:A5:70:B9:C1:89:0A:DA:29:D2:52:21:58
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018D3B27F8EFA272FF3542C2B36CFB9FEDD0
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/SVvd26irPUWlcLnBiQraKdJSIVg.roa
Signing time: Wed 24 Jan 2024 11:08:11 +0000
ROA not before: Wed 24 Jan 2024 11:08:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2a0a:2d02::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 02 Feb 2024 07:48:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:3b:27:f8:ef:a2:72:ff:35:42:c2:b3:6c:fb:9f:ed:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 24 11:08:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=495bdddba8ab3d45a570b9c1890ada29d2522158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a1:fe:a2:4b:c7:64:99:ac:2e:a8:5e:70:3b:
da:2e:25:f5:2b:49:fa:5b:81:e2:57:6a:21:f7:c9:
01:50:9f:28:1e:c3:a3:5f:17:99:75:d8:bb:9a:08:
37:fc:4e:5a:3d:2c:f9:fa:c2:a9:62:5f:0f:6a:a9:
33:20:57:b4:fb:bf:ff:c7:16:be:96:b7:ba:1b:a9:
da:09:ac:71:06:ed:3b:cf:30:3c:a7:d2:e6:dc:b5:
0d:01:51:56:8b:90:d9:4c:91:ff:26:63:30:28:67:
3c:0a:32:90:a1:62:84:2a:30:85:aa:b9:db:df:28:
82:80:11:c1:30:78:db:e9:e5:82:99:a9:75:25:57:
ce:44:e9:96:08:33:0d:71:b7:e2:a7:4d:09:c0:6b:
27:c4:99:71:2c:2c:9c:a4:a4:3e:5d:48:9b:39:73:
4d:2b:99:c4:c2:1b:50:43:48:5a:a7:a6:fc:dc:b3:
4c:1b:6b:c7:8e:21:b9:13:86:92:16:1a:1f:b0:08:
a9:05:4e:e2:6c:09:23:f3:48:86:ed:81:e3:df:4f:
7e:a5:2d:c4:87:14:f9:01:80:cf:50:ad:10:56:e0:
3f:40:93:61:76:4a:f0:77:d9:d9:d8:d0:7e:fb:2f:
d6:69:42:f8:70:86:b3:3f:4a:ea:03:aa:a8:af:cc:
47:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:5B:DD:DB:A8:AB:3D:45:A5:70:B9:C1:89:0A:DA:29:D2:52:21:58
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/SVvd26irPUWlcLnBiQraKdJSIVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2d02::/32
Signature Algorithm: sha256WithRSAEncryption
3f:3e:9a:58:e2:10:23:c6:74:e2:48:1e:be:95:c8:9d:55:a3:
4e:ea:1d:86:52:37:1e:a2:e8:57:40:82:af:58:64:81:ec:0b:
61:f4:44:b8:4f:b6:4d:65:80:b2:41:c2:58:ed:fc:0e:c5:72:
fb:eb:bd:33:19:82:00:d4:b6:e1:83:e2:63:af:d6:53:c8:7c:
99:e8:ec:6f:3a:cc:f0:68:28:23:b0:09:f5:47:b5:fc:da:e1:
19:3a:71:e7:64:a9:28:16:30:cd:12:2d:3f:c3:17:e9:05:a3:
2a:9c:b7:ae:66:f5:6c:51:b9:86:1b:c9:69:09:66:f8:05:62:
47:70:a4:41:d5:b2:5c:fe:d6:9d:a4:12:86:de:f7:fe:b5:67:
8c:ec:30:09:68:5c:2c:a1:ea:cb:5b:d0:85:c9:d2:30:24:51:
cf:d5:48:6d:68:21:e9:40:89:6f:3f:55:5f:cd:a4:42:3a:02:
31:9f:2d:16:ad:49:a1:19:d8:70:0c:0b:08:3e:30:08:02:2b:
29:5b:60:62:b5:94:2c:7b:5e:2e:be:4f:17:ce:bb:b4:7a:0a:
1c:dd:a6:1b:58:d9:94:05:12:b5:3c:75:c2:6b:33:9c:9b:e4:
12:cd:fe:b0:80:02:60:33:37:0b:b8:b8:0d:e6:d8:4a:d4:42:
c6:4c:a4:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:27 2025 by rpki-client