Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dEyR0Qr5O4k2cUux86fc5kVnI1I.roa
File: dEyR0Qr5O4k2cUux86fc5kVnI1I.roa (raw, json)
Hash identifier: QcgMZm7D/JkPm9mme0BWH5duO5e624ht4Cu6xTX95Ks=
Subject key identifier: 74:4C:91:D1:0A:F9:3B:89:36:71:4B:B1:F3:A7:DC:E6:45:67:23:52
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018CC9BC202BD8B298ED113A6CFDB842F5D4
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dEyR0Qr5O4k2cUux86fc5kVnI1I.roa
Signing time: Tue 02 Jan 2024 10:33:18 +0000
ROA not before: Tue 02 Jan 2024 10:33:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 2a07:7880::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 05 Apr 2024 06:27:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:20:2b:d8:b2:98:ed:11:3a:6c:fd:b8:42:f5:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 2 10:33:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=744c91d10af93b8936714bb1f3a7dce645672352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cf:18:e6:11:4a:35:79:3e:9c:1e:ec:48:7f:
e5:5b:e7:b3:25:0d:2f:f2:0f:cc:cd:1f:a4:82:6c:
f2:04:bc:75:86:f3:2d:c1:3e:02:14:46:75:bd:58:
c1:71:5a:1b:50:0e:f0:32:f0:38:46:b3:38:24:de:
51:d0:c5:71:ae:4f:67:cf:15:ac:b7:c9:34:3e:50:
5b:70:67:f4:ff:6f:02:9f:e9:35:36:0d:1d:8c:4c:
dd:24:a6:32:67:15:68:43:c8:1e:11:f0:4c:81:a9:
e8:7d:da:88:41:0b:30:b4:4c:fa:f6:05:b1:69:69:
e3:c4:e8:96:0d:05:aa:de:61:a8:f9:8f:40:a9:27:
29:4e:43:ed:49:20:5f:ec:d3:7c:77:af:4a:90:a8:
7e:9b:d1:c6:41:75:53:54:3f:5f:68:26:f4:0a:43:
90:c3:3c:9b:89:34:de:f7:e7:21:c0:fd:61:fd:bc:
62:94:b4:e4:35:e7:2a:cc:11:dc:d1:11:41:d1:a6:
25:92:43:c7:2c:4f:28:5a:80:56:67:49:e7:67:2b:
71:05:f2:97:d9:c8:b0:35:1e:8f:00:d7:9b:0e:8b:
f0:27:a5:98:96:37:71:4f:17:82:19:2a:9b:44:42:
16:66:4c:0c:de:2b:87:5e:1e:f5:68:b7:ed:0e:61:
9a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4C:91:D1:0A:F9:3B:89:36:71:4B:B1:F3:A7:DC:E6:45:67:23:52
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dEyR0Qr5O4k2cUux86fc5kVnI1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:7880::/29
Signature Algorithm: sha256WithRSAEncryption
62:fe:92:55:8e:88:5e:ba:52:f1:36:5a:f1:4c:c4:5a:d7:4b:
41:48:80:d1:56:ae:76:8b:af:27:6b:ea:6f:05:8b:6f:84:fd:
d6:60:6a:e9:d8:18:d8:47:f0:c1:6d:47:43:54:dd:a3:96:0e:
ea:27:cc:19:40:dd:10:6b:0a:d3:2b:a0:f7:96:93:51:20:74:
d0:0c:c9:a3:b8:4e:b7:d4:d8:87:59:ba:88:39:c0:3c:fa:d3:
90:30:87:ad:cd:13:0b:7f:1c:79:a4:7e:9d:43:ce:bf:f9:a9:
26:55:9f:6f:df:e2:68:62:4e:17:d4:f3:54:22:a4:d5:8c:8e:
23:aa:ab:b6:d3:9c:18:77:76:32:0e:05:9d:b1:4d:b2:15:f4:
aa:e1:05:4b:b3:01:6a:84:36:79:06:3d:58:4d:1f:89:f7:d7:
8b:a4:f6:9f:61:02:c8:19:4f:ec:ec:dc:43:0d:5d:9b:58:65:
31:ed:d6:f5:96:2f:82:12:51:76:6a:80:1c:78:5d:3f:ff:56:
2d:1d:9c:b6:9b:c8:e5:a9:fa:e4:14:a2:ae:96:d0:b3:c5:26:
50:cf:5b:79:38:fd:5f:e3:a0:3b:6a:25:d8:28:27:f2:7d:53:
b4:d7:99:6d:24:db:e0:37:33:20:dd:fc:cf:e3:db:b8:2a:f6:
bd:e3:fa:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:06:35 2025 by rpki-client