Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Uu4lkkCXGDRIXMHZH73b-GQyZTY.roa
File: Uu4lkkCXGDRIXMHZH73b-GQyZTY.roa (raw, json)
Hash identifier: 9PlxJDQKhlXvoFt3g/Ps1lQmEHra8GNLKb/lau1xG5c=
Subject key identifier: 52:EE:25:92:40:97:18:34:48:5C:C1:D9:1F:BD:DB:F8:64:32:65:36
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0190F382F72481242911F3770E005068D752
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Uu4lkkCXGDRIXMHZH73b-GQyZTY.roa
Signing time: Sat 27 Jul 2024 09:26:04 +0000
ROA not before: Sat 27 Jul 2024 09:26:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60647
IP address blocks: 2a0f:3d84::/32 maxlen: 32
2a12:ecc0:271::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 29 Jul 2024 17:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f3:82:f7:24:81:24:29:11:f3:77:0e:00:50:68:d7:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 27 09:26:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52ee259240971834485cc1d91fbddbf864326536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:19:66:1a:15:b9:54:42:2f:d8:1f:36:6b:54:
ec:4a:c8:ec:41:7f:4f:ec:fb:9e:b0:76:d3:8c:e6:
a8:2e:3d:52:5a:07:1c:b7:55:94:d2:ae:2e:6e:86:
23:47:b3:80:70:de:bc:06:00:d8:01:14:96:55:49:
df:c7:43:36:fc:80:84:b5:7b:05:28:d5:69:fe:b6:
e8:de:04:17:08:1e:77:69:56:d6:75:88:1e:c7:4e:
7e:4b:52:e2:2f:f9:f8:2e:74:17:f0:4e:aa:e8:a4:
33:ad:e2:77:9c:1a:f1:71:29:a1:81:b8:a8:98:c9:
1f:bc:c4:d6:4f:f3:d9:03:90:59:c0:57:cd:31:84:
30:0f:8f:7b:f6:7f:9c:0b:4f:36:d9:40:87:15:12:
18:6c:5d:a6:61:1d:55:e5:76:f8:80:84:fe:75:bf:
8a:68:07:d3:e5:5d:c1:f7:aa:54:97:cc:34:ab:fc:
38:dd:4d:0c:e1:66:d6:eb:24:1a:3b:c5:ff:2b:87:
41:f9:e8:a1:fb:32:9a:e4:40:de:a0:42:de:ea:99:
80:32:72:6f:52:dd:7e:2e:8b:be:a0:e5:33:b8:20:
59:d4:7d:1a:23:8b:77:49:32:42:40:ca:8a:b5:3e:
76:e4:c1:88:6f:a4:b5:cf:57:b5:a5:68:8a:26:e2:
69:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EE:25:92:40:97:18:34:48:5C:C1:D9:1F:BD:DB:F8:64:32:65:36
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/Uu4lkkCXGDRIXMHZH73b-GQyZTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3d84::/32
2a12:ecc0:271::/48
Signature Algorithm: sha256WithRSAEncryption
26:76:67:67:55:f5:6f:c1:8a:bc:6c:ee:ed:39:3c:fe:e5:44:
e8:4d:de:d5:1a:87:6a:a9:69:18:63:df:dc:b3:f0:34:e8:70:
9b:9e:5e:82:e7:e4:32:04:29:c3:72:19:ca:2a:ac:ea:27:9a:
c7:05:bc:9a:a2:bc:dc:da:66:9f:38:2e:80:11:8b:66:41:d4:
21:e5:01:94:c4:af:a5:ff:5e:a5:ca:1f:14:8f:2c:7c:7d:44:
bd:46:2e:82:8e:9a:f8:c9:83:6c:29:fa:e4:04:97:b7:3a:a5:
f3:5f:6b:7d:25:7a:2b:00:0b:34:53:6f:cf:d3:66:4d:44:56:
c8:e7:a3:bb:ff:00:ea:02:7d:5a:09:33:69:22:aa:b9:c2:73:
13:c6:87:0c:98:7c:2f:03:3b:d9:2c:73:e4:cb:f2:cd:0b:5f:
27:c8:03:f7:ce:2c:4a:c0:44:5d:54:57:a8:b2:c9:f6:0c:8a:
30:fd:53:c8:a4:09:23:32:96:18:94:06:50:5a:41:b8:d0:c7:
b5:58:32:91:29:3d:f6:9a:32:45:5a:33:eb:cf:65:c0:d1:5e:
37:95:37:0f:c6:dc:6c:85:36:d5:22:24:0f:54:df:a1:fc:7e:
3f:e3:ac:0b:7f:5b:bd:1a:de:ca:cc:6d:3f:06:0c:5e:27:33:
3b:9d:90:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:07:20 2025 by rpki-client