Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/VwDjCgollExtHVePZ32UvJ-AEug.roa
File: VwDjCgollExtHVePZ32UvJ-AEug.roa (raw, json)
Hash identifier: mV8oQWieDZHSZH8OBB9p5+Iy9Y3d9DzJTXg7FOrpZuI=
Subject key identifier: 57:00:E3:0A:0A:25:94:4C:6D:1D:57:8F:67:7D:94:BC:9F:80:12:E8
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018CC9BC24ABE97BB7DC2C7D90531A94C8A6
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/VwDjCgollExtHVePZ32UvJ-AEug.roa
Signing time: Tue 02 Jan 2024 10:33:19 +0000
ROA not before: Tue 02 Jan 2024 10:33:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53667
IP address blocks: 2a06:3600::/29 maxlen: 29
2a0f:dec0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 07 Feb 2024 20:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:24:ab:e9:7b:b7:dc:2c:7d:90:53:1a:94:c8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 2 10:33:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5700e30a0a25944c6d1d578f677d94bc9f8012e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cd:1d:f2:c0:49:db:61:39:a1:11:1f:be:f9:
b5:e5:70:57:78:fb:d3:c6:78:b3:7c:fc:a0:b6:b1:
ea:e4:2e:2d:dc:18:b4:67:da:9f:57:40:e5:c7:23:
ae:d0:ac:d8:47:3d:b0:2e:e8:57:55:fa:9e:07:ba:
45:8b:b1:e2:9e:57:40:6d:48:6e:7c:2e:80:4b:36:
b0:85:c0:b5:3d:0d:3a:b0:f0:43:ff:e5:3d:24:ac:
96:f7:9f:84:76:88:73:bb:16:da:47:33:a0:0e:08:
cc:db:f8:0a:f6:77:32:7a:57:db:a7:13:6f:47:79:
0f:0b:fc:96:8c:dd:e5:80:82:18:f1:dc:c1:5d:dd:
5c:2e:fd:a9:e4:75:1c:c8:04:7c:b1:82:02:2a:22:
7f:ad:88:ef:3d:ff:c5:59:b6:7e:fe:8e:eb:7d:6f:
ad:d4:5a:08:bd:27:8e:c8:4c:2b:29:b5:c9:fa:04:
97:5e:c6:b9:13:20:d0:cc:bc:7f:c4:75:a3:6f:19:
70:24:b5:4d:a0:62:93:6d:36:3b:fb:8f:da:c8:07:
af:fe:12:43:a6:ac:f0:58:ff:84:1c:6d:9b:e1:12:
27:46:a1:b7:cb:d7:1c:a1:0d:a7:27:ea:3f:bc:ae:
ac:8b:fb:86:79:d9:9c:a1:97:2c:1a:0b:9e:b4:74:
51:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:00:E3:0A:0A:25:94:4C:6D:1D:57:8F:67:7D:94:BC:9F:80:12:E8
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/VwDjCgollExtHVePZ32UvJ-AEug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:3600::/29
2a0f:dec0::/29
Signature Algorithm: sha256WithRSAEncryption
09:50:f3:c6:0a:5e:4d:5e:fe:8d:5f:84:74:83:20:1e:80:b1:
10:be:5e:f0:26:55:39:e9:e2:45:db:51:90:de:15:05:5d:84:
9c:09:c6:1a:8e:29:96:e2:a0:07:03:b4:16:9c:da:47:d5:54:
51:55:b7:62:91:61:1f:3a:f5:ce:b4:d8:9f:08:0f:36:b6:e8:
72:f9:ff:83:e4:05:38:01:42:91:b6:3c:aa:58:6c:1d:26:16:
03:6d:a1:4b:95:d5:a8:bc:5d:07:fa:69:b4:e5:8a:f8:90:6f:
a0:22:9d:fa:f3:30:ce:35:0b:c8:63:c0:56:b9:0f:ce:34:2a:
b5:3d:5d:d7:98:4e:99:83:ae:78:de:63:bd:9e:bc:a0:8d:38:
80:2b:69:e7:11:3e:91:7b:cf:6a:17:56:9d:ad:ae:59:32:3d:
8d:6c:99:27:97:83:9c:a5:bb:d2:cc:e6:f9:e0:69:70:44:49:
a1:37:a7:a2:cf:df:1c:2d:2e:f7:59:c4:5d:a0:c9:a9:2c:88:
17:d2:88:16:4e:f7:b0:ad:a3:79:94:6d:12:e0:a3:f0:2f:91:
e4:c0:82:e8:fb:ef:59:34:b2:6a:82:a5:fd:8e:16:a5:7a:37:
b0:d9:9a:d0:8e:2e:b8:f4:e8:7d:ae:9c:96:7a:6a:7e:09:64:
68:3d:da:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:49 2025 by rpki-client