Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/byruBRNkGWy4cLbuT7Ogk7vAK6M.roa
File: byruBRNkGWy4cLbuT7Ogk7vAK6M.roa (raw, json)
Hash identifier: xE/Bf4Z6RrCglD10K5Uj9fkHvankGj8GocU9Ckj9gZM=
Subject key identifier: 6F:2A:EE:05:13:64:19:6C:B8:70:B6:EE:4F:B3:A0:93:BB:C0:2B:A3
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019145A71A5B09FE8D252C75A9FEC3B7202D
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/byruBRNkGWy4cLbuT7Ogk7vAK6M.roa
Signing time: Mon 12 Aug 2024 08:14:24 +0000
ROA not before: Mon 12 Aug 2024 08:14:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197992
IP address blocks: 2a04:9f40::/29 maxlen: 29
2a06:3bc0::/29 maxlen: 29
2a06:dfc0::/29 maxlen: 29
2a0d:8f80::/29 maxlen: 29
2a0d:a9c0::/29 maxlen: 29
2a0f:17c0::/29 maxlen: 29
2a0f:1940::/29 maxlen: 29
2a0f:2300::/29 maxlen: 29
2a0f:2840::/29 maxlen: 29
2a0f:cc00::/29 maxlen: 29
2a0f:df40::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a10:3840::/29 maxlen: 29
2a10:5c00::/29 maxlen: 29
2a10:6400::/29 maxlen: 29
2a10:6d00::/29 maxlen: 29
2a10:7500::/29 maxlen: 29
2a10:7700::/29 maxlen: 29
2a10:7b00::/29 maxlen: 29
2a11:3240::/29 maxlen: 29
2a11:4c40::/29 maxlen: 29
2a11:5200::/29 maxlen: 29
2a11:8880::/29 maxlen: 29
2a12:2c80::/29 maxlen: 29
2a12:5e00::/29 maxlen: 29
2a12:d100::/29 maxlen: 29
2a12:ef00::/29 maxlen: 29
2a13:200::/29 maxlen: 29
2a13:2dc0::/29 maxlen: 29
2a13:c700::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 30 Aug 2024 10:13:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:a7:1a:5b:09:fe:8d:25:2c:75:a9:fe:c3:b7:20:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 12 08:14:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6f2aee051364196cb870b6ee4fb3a093bbc02ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:70:f8:b6:bc:98:b9:82:96:65:c2:1e:7a:fc:
c9:dc:7f:46:1a:cd:57:9b:8a:db:ec:83:47:29:40:
be:16:97:37:36:f0:fb:b6:54:27:f9:d9:3b:51:7e:
a0:9a:b9:21:be:cc:60:a0:39:5b:6f:fe:6b:8a:69:
24:ce:04:13:e9:93:83:c1:0e:e7:a7:d1:eb:53:ed:
fd:14:11:f4:3e:89:d7:0f:7e:ba:36:1e:81:21:be:
61:ce:fa:1d:21:b9:0c:66:b8:2a:b0:9a:a6:e1:ba:
44:b7:85:74:c6:c9:fd:4b:eb:c9:08:ea:d4:93:9c:
b2:e6:3f:a5:3a:85:6d:54:7f:d6:b1:c9:c4:ff:d4:
d2:4c:b3:cd:78:ec:98:b3:8b:10:35:e8:cd:29:21:
e7:4b:cc:9a:aa:62:74:36:46:8c:bd:bb:e1:8b:5e:
7c:93:1b:f5:89:19:1c:80:18:62:20:61:a4:5f:b2:
55:7f:35:70:b4:7c:7a:de:7c:8e:2b:4c:a3:d8:a6:
d6:90:83:25:c6:d1:13:45:0c:b1:ca:65:6a:55:00:
6d:4e:c5:14:7f:f6:63:ce:3e:d8:f7:51:f7:9d:a9:
2e:b3:6f:98:a2:1e:46:16:75:48:82:95:d8:f1:eb:
fe:50:d6:c6:b3:6c:7d:2c:f5:db:29:62:eb:83:8c:
ff:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:2A:EE:05:13:64:19:6C:B8:70:B6:EE:4F:B3:A0:93:BB:C0:2B:A3
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/byruBRNkGWy4cLbuT7Ogk7vAK6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:9f40::/29
2a06:3bc0::/29
2a06:dfc0::/29
2a0d:8f80::/29
2a0d:a9c0::/29
2a0f:17c0::/29
2a0f:1940::/29
2a0f:2300::/29
2a0f:2840::/29
2a0f:cc00::/29
2a0f:df40::/29
2a0f:e940::/29
2a10:3840::/29
2a10:5c00::/29
2a10:6400::/29
2a10:6d00::/29
2a10:7500::/29
2a10:7700::/29
2a10:7b00::/29
2a11:3240::/29
2a11:4c40::/29
2a11:5200::/29
2a11:8880::/29
2a12:2c80::/29
2a12:5e00::/29
2a12:d100::/29
2a12:ef00::/29
2a13:200::/29
2a13:2dc0::/29
2a13:c700::/29
Signature Algorithm: sha256WithRSAEncryption
d0:1e:5a:cc:87:40:9c:0b:86:ec:46:de:95:fb:f7:56:12:94:
47:1e:b6:a1:1b:a9:a1:26:3f:3a:a1:50:54:24:d7:1b:90:aa:
e3:68:96:f7:c7:42:e7:18:b2:5c:ad:f8:81:5f:f1:7f:52:88:
87:74:fa:5f:ac:f3:0f:0f:64:34:87:1f:4f:cc:d2:30:c4:f1:
b5:f6:bf:1f:6c:f7:c9:ca:1a:f6:8d:f8:f1:9f:7e:8e:99:80:
a3:db:40:70:bf:66:82:03:72:76:4b:94:11:51:07:02:5a:99:
20:a9:26:92:b6:15:eb:51:6b:ca:c3:94:8c:1f:20:0b:df:a5:
20:50:06:da:f1:9a:39:f8:8d:d6:05:d9:3e:b2:84:5b:1f:8d:
12:40:af:73:cc:90:5c:bc:58:1c:0a:a7:7c:d0:12:10:6d:09:
3d:fb:ba:55:ed:92:ea:ec:a3:ca:2d:b4:07:90:f4:25:7c:9c:
e1:7d:68:44:44:dd:6f:f0:6a:89:74:ee:e6:a7:d3:d6:71:5e:
1c:e1:2a:9d:ba:bd:8e:93:04:b1:e3:bb:4e:07:95:50:4f:fc:
07:16:3a:e2:54:d1:2c:74:68:b2:3f:7e:a5:a4:e0:a1:45:f4:
bc:c7:e1:4f:f8:f4:71:76:d0:df:01:ea:84:27:9a:4c:1a:d3:
1c:51:20:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 06:09:51 2025 by rpki-client