Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZzJwn62QP-qhL-mKG2bufFFuQbI.roa
File: ZzJwn62QP-qhL-mKG2bufFFuQbI.roa (raw, json)
Hash identifier: vvVDuIpvC3mNxPNfaqEC1pVJkAh/vSf/K5hbp3EH2wU=
Subject key identifier: 67:32:70:9F:AD:90:3F:EA:A1:2F:E9:8A:1B:66:EE:7C:51:6E:41:B2
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018E8141028C9FDD7B46F9F2E11C48FF74BE
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZzJwn62QP-qhL-mKG2bufFFuQbI.roa
Signing time: Wed 27 Mar 2024 18:51:45 +0000
ROA not before: Wed 27 Mar 2024 18:51:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a04:9f40::/29 maxlen: 29
2a0d:8f80::/29 maxlen: 29
2a0f:2840::/29 maxlen: 29
2a11:1200::/29 maxlen: 29
2a11:1880::/29 maxlen: 29
2a11:1c40::/29 maxlen: 29
2a11:3240::/29 maxlen: 29
2a11:4800::/29 maxlen: 29
2a11:4c40::/29 maxlen: 29
2a11:5c80::/29 maxlen: 29
2a11:6d40::/29 maxlen: 29
2a11:7440::/29 maxlen: 29
2a11:7a40::/29 maxlen: 29
2a11:8700::/29 maxlen: 29
2a11:90c0::/29 maxlen: 29
2a11:9340::/29 maxlen: 29
2a11:9e00::/29 maxlen: 29
2a11:b740::/29 maxlen: 29
2a11:cb40::/29 maxlen: 29
2a11:d240::/29 maxlen: 29
2a11:e580::/29 maxlen: 29
2a11:efc0::/29 maxlen: 29
2a12:2c80::/29 maxlen: 29
2a12:4b00::/29 maxlen: 29
2a12:5900::/29 maxlen: 29
2a12:5e00::/29 maxlen: 29
2a12:ba00::/29 maxlen: 29
2a12:d100::/29 maxlen: 29
2a12:dc00::/29 maxlen: 29
2a12:ef00::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 29 Mar 2024 11:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:81:41:02:8c:9f:dd:7b:46:f9:f2:e1:1c:48:ff:74:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 27 18:51:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6732709fad903feaa12fe98a1b66ee7c516e41b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:38:fc:e9:5b:80:5a:4c:99:d6:60:8d:81:8a:
01:34:86:94:0b:8c:5d:b1:c3:65:92:b1:24:7c:d4:
d2:91:4c:85:bd:5f:18:a6:ed:81:88:5f:ea:f6:e9:
44:63:2e:b9:f5:cd:cb:7d:85:c3:93:be:49:55:0d:
47:90:cd:7c:12:7b:a8:32:73:42:b5:5f:74:67:5e:
02:2b:6c:e8:3d:36:8d:47:41:c7:a7:f3:ec:2e:6b:
bf:ff:0e:5c:50:fb:7c:e2:50:68:c0:ea:8c:ea:b7:
06:3f:25:6f:f1:01:85:ab:68:09:c8:68:22:db:a4:
5c:91:44:08:1c:4d:fb:bd:76:bc:30:6e:a6:09:c4:
4b:3b:f5:9a:0e:d3:a1:a6:c0:eb:02:f6:db:b2:4e:
e2:59:cf:39:83:ba:9d:a3:f5:b4:ba:1f:6f:a7:88:
af:76:48:d5:7c:e9:c8:93:59:32:e1:b3:a5:e6:0a:
1e:a8:bc:ff:02:69:e6:70:98:98:6c:15:08:16:fa:
3a:42:c7:bf:34:66:de:de:ed:7e:89:f8:71:ae:69:
9b:47:5b:cd:8a:92:3d:c3:9a:74:12:8d:4d:ba:cf:
15:67:45:fa:ae:15:44:c7:f3:2c:e5:60:62:39:3a:
c9:21:79:87:0d:53:5a:bc:08:33:c7:8f:35:71:71:
82:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:32:70:9F:AD:90:3F:EA:A1:2F:E9:8A:1B:66:EE:7C:51:6E:41:B2
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ZzJwn62QP-qhL-mKG2bufFFuQbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:9f40::/29
2a0d:8f80::/29
2a0f:2840::/29
2a11:1200::/29
2a11:1880::/29
2a11:1c40::/29
2a11:3240::/29
2a11:4800::/29
2a11:4c40::/29
2a11:5c80::/29
2a11:6d40::/29
2a11:7440::/29
2a11:7a40::/29
2a11:8700::/29
2a11:90c0::/29
2a11:9340::/29
2a11:9e00::/29
2a11:b740::/29
2a11:cb40::/29
2a11:d240::/29
2a11:e580::/29
2a11:efc0::/29
2a12:2c80::/29
2a12:4b00::/29
2a12:5900::/29
2a12:5e00::/29
2a12:ba00::/29
2a12:d100::/29
2a12:dc00::/29
2a12:ef00::/29
Signature Algorithm: sha256WithRSAEncryption
29:26:f9:05:8e:45:c7:88:17:fc:97:97:4d:d3:ed:6b:d3:58:
8b:1f:e4:05:8b:b3:23:55:fc:4a:71:be:2a:67:e3:9e:49:5a:
b9:8d:2a:71:eb:a7:a9:42:e0:8e:90:bc:af:46:7e:12:47:86:
33:a7:1a:ca:d5:df:25:e2:62:d7:56:62:e8:f7:34:65:e6:24:
68:b0:24:76:cb:7f:14:40:34:23:bd:51:e0:fd:4e:85:26:80:
99:64:52:c0:cd:b9:63:d8:0c:2f:23:33:90:c7:3e:3e:99:77:
b4:a4:a1:1f:71:18:cf:a4:a4:b3:39:03:60:d9:f6:6b:ea:68:
db:f5:95:ad:64:a5:11:fd:31:5d:8b:81:c3:16:42:7e:65:4a:
2c:cf:02:a0:56:5e:ec:8b:dc:24:c3:5f:c8:f8:78:e0:9b:34:
dd:c0:41:33:c9:ca:ba:75:8a:ea:26:12:b5:61:ee:94:5d:5c:
7b:f3:8c:ef:a2:53:cb:56:dc:5c:96:25:eb:03:44:9f:23:ff:
89:99:a6:15:93:36:47:7b:95:07:33:6c:4c:94:62:aa:97:86:
ec:cc:16:76:97:15:01:b6:b5:7d:c0:1b:3e:81:fe:e3:ba:67:
11:c1:a6:2f:ae:58:af:4e:b2:e2:99:03:7c:8a:8d:16:f5:8b:
88:5d:f2:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:04 2025 by rpki-client