Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TNTgqYBLrNgPM9g7FUxDLUwyayE.roa
File: TNTgqYBLrNgPM9g7FUxDLUwyayE.roa (raw, json)
Hash identifier: utXCLCzarVKSNq4Eb4j3NkzraXSD8bNxWZfBGA8ztuE=
Subject key identifier: 4C:D4:E0:A9:80:4B:AC:D8:0F:33:D8:3B:15:4C:43:2D:4C:32:6B:21
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019371C9CA256E6B19407CF3F109F7FF6580
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TNTgqYBLrNgPM9g7FUxDLUwyayE.roa
Signing time: Thu 28 Nov 2024 08:01:10 +0000
ROA not before: Thu 28 Nov 2024 08:01:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28753
IP address blocks: 2a04:9f40::/29 maxlen: 29
2a06:1184:101::/48 maxlen: 48
2a06:3bc0::/29 maxlen: 29
2a07:8a40::/29 maxlen: 29
2a09:17c1:66::/48 maxlen: 48
2a09:17c1:77::/48 maxlen: 48
2a0a:2d06:102::/48 maxlen: 48
2a0a:2d06:103::/48 maxlen: 48
2a0c:7886:99::/48 maxlen: 48
2a0c:7886:100::/48 maxlen: 48
2a0e:15c7:88::/48 maxlen: 48
2a0e:15c7:99::/48 maxlen: 48
2a0e:1a83:77::/48 maxlen: 48
2a0e:f603:66::/48 maxlen: 48
2a0f:1206:55::/48 maxlen: 48
2a0f:1206:66::/48 maxlen: 48
2a0f:2500::/29 maxlen: 29
2a0f:3d86:88::/48 maxlen: 48
2a0f:3d86:99::/48 maxlen: 48
2a0f:7d06:88::/48 maxlen: 48
2a0f:7d06:99::/48 maxlen: 48
2a0f:d200::/29 maxlen: 29
2a0f:e1c1:22::/48 maxlen: 48
2a0f:e202:44::/48 maxlen: 48
2a0f:e202:55::/48 maxlen: 48
2a0f:e202:100::/48 maxlen: 48
2a0f:e6c6:100::/48 maxlen: 48
2a0f:e6c6:101::/48 maxlen: 48
2a0f:e7c6:66::/48 maxlen: 48
2a0f:e7c6:77::/48 maxlen: 48
2a0f:e7c6:88::/48 maxlen: 48
2a0f:e844:22::/48 maxlen: 48
2a0f:e844:33::/48 maxlen: 48
2a0f:ea44:66::/48 maxlen: 48
2a0f:ea44:77::/48 maxlen: 48
2a12:ac46:77::/48 maxlen: 48
2a12:ecc0:168::/48 maxlen: 48
2a12:ecc0:178::/48 maxlen: 48
2a13:18c6:55::/48 maxlen: 48
2a13:18c6:77::/48 maxlen: 48
2a13:18c6:88::/48 maxlen: 48
2a13:7d80::/29 maxlen: 29
2a13:8c86:10a::/48 maxlen: 48
2a13:8c86:120::/48 maxlen: 48
2a13:8c86:130::/48 maxlen: 48
2a13:c900:88::/48 maxlen: 48
2a13:c900:99::/48 maxlen: 48
2a13:e107:99::/48 maxlen: 48
2a13:e107:9c::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:50:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:71:c9:ca:25:6e:6b:19:40:7c:f3:f1:09:f7:ff:65:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 28 08:01:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4cd4e0a9804bacd80f33d83b154c432d4c326b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:69:59:50:b0:6f:e8:9f:76:03:cc:43:02:f9:
22:24:b9:1a:14:f6:32:ad:8e:4b:b4:9a:bc:5c:c1:
55:89:c7:57:d8:4d:da:06:1d:78:2a:06:88:f0:4c:
3e:57:82:4f:57:19:a7:18:89:e9:e6:e4:fd:ca:25:
1f:07:94:c2:a5:68:0a:1f:49:38:0c:8b:05:83:44:
e8:d3:54:5d:78:53:f5:68:ee:1d:28:22:d3:b3:3b:
c1:41:41:81:84:d2:64:16:28:84:1d:55:14:4a:65:
82:a8:7b:b8:54:c9:5a:a6:1c:f9:43:3c:b2:6c:cb:
44:34:16:f6:5b:2f:84:b1:59:e4:14:13:d3:37:41:
ed:57:75:8c:a9:55:50:65:21:50:84:0b:57:7b:44:
c1:19:08:05:a0:b5:a8:f0:0c:d1:da:5f:6f:db:ae:
a8:ab:d8:63:ec:26:4e:cc:e9:31:63:0f:96:9f:04:
9a:b6:00:55:e5:9d:ed:71:84:56:3e:24:68:8d:0b:
23:e3:89:8d:3f:ab:60:04:a7:96:42:5a:d7:2e:40:
f6:9c:20:f8:86:46:f3:15:ee:fc:5e:69:e6:33:3d:
24:f1:52:9b:b8:7c:1e:71:0b:7c:1e:f1:0d:29:c8:
ad:a2:72:33:76:33:11:f4:f2:46:f3:d9:3a:47:a8:
fc:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D4:E0:A9:80:4B:AC:D8:0F:33:D8:3B:15:4C:43:2D:4C:32:6B:21
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TNTgqYBLrNgPM9g7FUxDLUwyayE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:9f40::/29
2a06:1184:101::/48
2a06:3bc0::/29
2a07:8a40::/29
2a09:17c1:66::/48
2a09:17c1:77::/48
2a0a:2d06:102::/47
2a0c:7886:99::/48
2a0c:7886:100::/48
2a0e:15c7:88::/48
2a0e:15c7:99::/48
2a0e:1a83:77::/48
2a0e:f603:66::/48
2a0f:1206:55::/48
2a0f:1206:66::/48
2a0f:2500::/29
2a0f:3d86:88::/48
2a0f:3d86:99::/48
2a0f:7d06:88::/48
2a0f:7d06:99::/48
2a0f:d200::/29
2a0f:e1c1:22::/48
2a0f:e202:44::/48
2a0f:e202:55::/48
2a0f:e202:100::/48
2a0f:e6c6:100::/47
2a0f:e7c6:66::/48
2a0f:e7c6:77::/48
2a0f:e7c6:88::/48
2a0f:e844:22::/48
2a0f:e844:33::/48
2a0f:ea44:66::/48
2a0f:ea44:77::/48
2a12:ac46:77::/48
2a12:ecc0:168::/48
2a12:ecc0:178::/48
2a13:18c6:55::/48
2a13:18c6:77::/48
2a13:18c6:88::/48
2a13:7d80::/29
2a13:8c86:10a::/48
2a13:8c86:120::/48
2a13:8c86:130::/48
2a13:c900:88::/48
2a13:c900:99::/48
2a13:e107:99::/48
2a13:e107:9c::/48
Signature Algorithm: sha256WithRSAEncryption
bf:7f:4c:10:d2:bc:bb:5a:cc:77:d4:b5:db:1b:56:76:b8:a8:
fc:7c:1a:15:0f:b7:a3:ec:02:7a:d6:d2:be:ef:f2:e0:a5:83:
22:c3:e0:a2:5e:20:93:5e:dc:51:5a:69:d4:0c:2c:5f:d1:35:
5d:74:ef:70:69:5a:63:42:a2:0f:df:49:bd:2a:94:37:72:e6:
90:76:27:7f:0c:bd:fd:6d:5e:83:37:9a:94:4d:39:51:14:32:
e4:09:87:23:9e:a2:fc:f2:c8:fd:f2:03:3c:43:c5:5b:d6:73:
84:e5:e3:98:07:78:bd:95:28:1c:c3:4e:fc:51:1a:9b:c3:c5:
f4:89:c8:ad:4a:fb:12:6e:12:0d:cc:0d:9c:94:da:62:97:d0:
e4:0d:df:89:a1:70:e2:5c:9e:0c:73:56:c7:3d:77:8d:e6:4c:
88:3e:97:e0:e4:90:f7:94:9b:1b:61:78:1e:69:6b:cc:ed:00:
2e:be:a4:2f:23:75:4f:61:db:a8:96:6e:8c:ae:dc:b2:90:eb:
a9:10:2c:e7:24:4c:fb:d7:58:b6:0a:4b:2c:dd:e3:9d:69:0d:
37:55:3a:dc:27:eb:35:59:e5:15:6d:34:73:1f:b0:da:63:fa:
72:4f:50:d2:84:70:57:79:64:91:3b:3b:31:8f:70:63:3c:df:
f8:a6:0e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:59:13 2025 by rpki-client