Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/bc62Lp78GFE3uOezwAiml_GdOgc.roa
File: bc62Lp78GFE3uOezwAiml_GdOgc.roa (raw, json)
Hash identifier: FckBonTJvFt+zRE8Nr/8hrEmMc0ZebReYFCCrl3K9b4=
Subject key identifier: 6D:CE:B6:2E:9E:FC:18:51:37:B8:E7:B3:C0:08:A6:97:F1:9D:3A:07
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0194846771E291F7BF9C3BB3693BCC92084C
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/bc62Lp78GFE3uOezwAiml_GdOgc.roa
Signing time: Mon 20 Jan 2025 15:49:19 +0000
ROA not before: Mon 20 Jan 2025 15:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197992
IP address blocks: 2a06:dfc0::/29 maxlen: 29
2a07:95c0::/29 maxlen: 29
2a0d:1140::/29 maxlen: 29
2a0d:a9c0::/29 maxlen: 29
2a0f:16c0::/29 maxlen: 29
2a0f:19c0::/29 maxlen: 29
2a0f:1a40::/29 maxlen: 29
2a0f:27c0::/29 maxlen: 29
2a0f:2e40::/29 maxlen: 29
2a0f:3740::/29 maxlen: 29
2a0f:7280::/29 maxlen: 29
2a0f:9600::/29 maxlen: 29
2a0f:ec00::/29 maxlen: 29
2a10:3040::/29 maxlen: 29
2a10:3640::/29 maxlen: 29
2a10:6300::/29 maxlen: 29
2a10:6900::/29 maxlen: 29
2a11:e580::/29 maxlen: 29
2a11:f040::/29 maxlen: 29
2a12:cd00::/29 maxlen: 29
2a13:200::/29 maxlen: 29
2a13:cc0::/29 maxlen: 29
2a13:2f40::/29 maxlen: 29
2a13:4f00::/29 maxlen: 29
2a13:9100::/29 maxlen: 29
2a13:9b00::/29 maxlen: 29
2a13:9d00::/29 maxlen: 29
2a13:c700::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 21 Jan 2025 09:42:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:84:67:71:e2:91:f7:bf:9c:3b:b3:69:3b:cc:92:08:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 20 15:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6dceb62e9efc185137b8e7b3c008a697f19d3a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9f:01:6d:60:32:09:55:97:6a:0d:09:54:88:
ba:39:4c:cc:cf:61:47:3d:ae:8a:71:b8:7d:f7:20:
f1:8b:4d:9a:5e:d7:04:61:43:35:b4:3e:10:cb:32:
49:be:4e:86:3b:7c:0f:d3:4b:bd:ca:a6:41:ca:66:
41:e9:e5:52:1c:73:dc:5b:b2:b2:4c:37:cd:19:f0:
de:f1:25:a4:a7:3c:cd:b8:e6:fe:6f:45:a0:b0:63:
a0:27:e0:4b:7e:75:05:6c:5e:ce:d6:02:5c:ae:a5:
de:51:31:c5:d7:f1:88:72:66:b6:8c:ce:ce:0a:c4:
b3:02:bb:d4:be:ac:3b:09:09:57:29:45:6e:b0:4e:
e7:3c:42:25:cc:21:06:ec:f7:33:86:29:59:f9:ee:
ed:44:79:53:a4:6a:fc:fe:49:b2:a3:ed:ca:36:e9:
de:01:ce:1b:da:1c:01:cf:38:1d:ae:d6:77:84:ed:
a0:9e:be:37:0e:55:3d:dc:99:14:92:a7:b5:b7:51:
a4:e7:c6:7e:bc:14:1f:64:63:05:b1:d3:a0:ca:ce:
c1:16:a7:0f:0e:4b:79:79:39:a3:62:b6:10:05:f0:
d8:d5:48:c1:bf:a0:de:1e:00:14:6b:c5:e0:9e:18:
41:cc:dd:1f:c6:52:11:48:bb:24:20:3c:e0:0c:09:
16:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:CE:B6:2E:9E:FC:18:51:37:B8:E7:B3:C0:08:A6:97:F1:9D:3A:07
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/bc62Lp78GFE3uOezwAiml_GdOgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:dfc0::/29
2a07:95c0::/29
2a0d:1140::/29
2a0d:a9c0::/29
2a0f:16c0::/29
2a0f:19c0::/29
2a0f:1a40::/29
2a0f:27c0::/29
2a0f:2e40::/29
2a0f:3740::/29
2a0f:7280::/29
2a0f:9600::/29
2a0f:ec00::/29
2a10:3040::/29
2a10:3640::/29
2a10:6300::/29
2a10:6900::/29
2a11:e580::/29
2a11:f040::/29
2a12:cd00::/29
2a13:200::/29
2a13:cc0::/29
2a13:2f40::/29
2a13:4f00::/29
2a13:9100::/29
2a13:9b00::/29
2a13:9d00::/29
2a13:c700::/29
Signature Algorithm: sha256WithRSAEncryption
1b:71:93:14:f2:7b:0e:d2:4c:80:f9:55:20:4c:f5:a6:fa:fb:
f2:59:52:d7:12:b1:74:e2:ab:33:13:f7:6c:43:3a:9b:5c:48:
de:b6:25:21:0a:03:5c:36:89:85:17:27:f8:c4:b1:f3:92:94:
3c:05:b1:c3:6f:bf:b5:a6:40:16:99:0c:f4:11:01:7b:d8:75:
13:79:8c:d9:52:ea:9c:fa:b6:1f:8a:1a:28:cf:40:d3:62:a8:
97:52:9b:61:0a:18:52:81:f1:68:a9:b6:0a:b6:bb:0e:7b:33:
a8:a6:c4:8c:d3:aa:16:cd:10:9b:25:4b:00:1f:2b:72:d7:3e:
57:8f:15:36:68:bf:22:c7:51:77:98:95:58:21:07:b4:5e:7c:
d2:f5:be:bb:eb:10:10:6a:43:c3:73:60:89:04:88:8e:f4:39:
3b:b6:78:62:f9:2a:19:78:74:c9:00:15:9a:e0:05:c0:01:90:
5c:22:72:9d:70:8e:5e:d7:90:ea:09:67:47:ac:b9:bf:54:48:
bd:eb:29:77:d3:d5:11:3d:29:b0:a1:bd:8b:26:b0:59:d4:f9:
e0:6a:b2:85:fe:97:e4:d8:b0:3f:83:eb:cf:3d:3f:90:a1:a2:
cc:bd:f6:87:ee:75:ae:77:f2:65:ef:2f:40:64:47:16:f4:9c:
be:f7:a1:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:40:06 2025 by rpki-client