Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dIa1jmOqM1eP0eG8dUWvZkfzMnI.roa
File: dIa1jmOqM1eP0eG8dUWvZkfzMnI.roa (raw, json)
Hash identifier: 6TvdpSfeZXQuUD68VfCvOOyoP5VOrLsFnAMRfXBt7DM=
Subject key identifier: 74:86:B5:8E:63:AA:33:57:8F:D1:E1:BC:75:45:AF:66:47:F3:32:72
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0196F74E700EB68755B6EEB105AECF9CAD2B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dIa1jmOqM1eP0eG8dUWvZkfzMnI.roa
Signing time: Thu 22 May 2025 09:23:54 +0000
ROA not before: Thu 22 May 2025 09:23:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197992
IP address blocks: 2a05:b900::/29 maxlen: 29
2a06:5280::/29 maxlen: 29
2a07:95c0::/29 maxlen: 29
2a0d:1140::/29 maxlen: 29
2a0d:a9c0::/29 maxlen: 29
2a0f:16c0::/29 maxlen: 29
2a0f:1a40::/29 maxlen: 29
2a0f:27c0::/29 maxlen: 29
2a0f:2e40::/29 maxlen: 29
2a0f:3640::/29 maxlen: 29
2a0f:3740::/29 maxlen: 29
2a0f:7280::/29 maxlen: 29
2a0f:9600::/29 maxlen: 29
2a0f:ec00::/29 maxlen: 29
2a10:3040::/29 maxlen: 29
2a10:3640::/29 maxlen: 29
2a10:6300::/29 maxlen: 29
2a10:6900::/29 maxlen: 29
2a11:3f80::/29 maxlen: 29
2a11:f040::/29 maxlen: 29
2a12:cd00::/29 maxlen: 29
2a13:2f40::/29 maxlen: 29
2a13:4f00::/29 maxlen: 29
2a13:9100::/29 maxlen: 29
2a13:9480::/29 maxlen: 29
2a13:9b00::/29 maxlen: 29
2a13:9d00::/29 maxlen: 29
2a13:c700::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 22 May 2025 14:33:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f7:4e:70:0e:b6:87:55:b6:ee:b1:05:ae:cf:9c:ad:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 22 09:23:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7486b58e63aa33578fd1e1bc7545af6647f33272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0b:f9:7a:8a:31:47:1c:30:c7:c6:e3:91:e6:
72:16:9c:18:67:ff:05:bf:80:1b:15:32:45:b8:c0:
ed:30:56:4e:2d:73:bb:4d:24:e0:21:e2:fb:7d:97:
e8:15:4a:d6:fd:44:77:7f:69:31:cc:db:04:9e:22:
d3:2a:94:a3:85:77:87:c6:51:1b:15:1e:90:b0:de:
79:b3:b8:1a:cd:4d:03:be:36:d7:e3:bb:a5:99:d0:
ac:ce:95:ea:cf:81:8c:a0:3d:4f:cd:54:bf:51:30:
79:06:0d:e3:dd:69:ed:d3:d6:da:61:f0:9e:1e:f0:
2f:27:b9:89:6e:c1:6a:f2:8c:f3:e2:49:a5:3a:0b:
d0:61:19:64:b9:22:88:16:01:2d:f2:8a:34:d6:12:
07:11:3f:f2:b3:3e:30:32:a7:4e:fc:33:6e:14:6e:
9c:e3:87:f4:07:60:bf:0c:09:e7:e8:91:25:0e:7f:
38:a4:73:98:12:dd:a8:e0:03:c6:59:dc:b9:05:84:
79:e9:82:33:6d:5d:d8:cd:2c:3f:65:f7:17:8b:fa:
e0:9c:94:d4:d6:c2:65:1a:f9:db:00:c2:44:6d:5f:
10:ae:8a:a3:a2:fb:aa:af:84:d5:86:70:b4:c8:ee:
db:56:68:4f:6f:c8:3b:d4:23:09:2a:e0:c7:f3:ff:
50:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:86:B5:8E:63:AA:33:57:8F:D1:E1:BC:75:45:AF:66:47:F3:32:72
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dIa1jmOqM1eP0eG8dUWvZkfzMnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b900::/29
2a06:5280::/29
2a07:95c0::/29
2a0d:1140::/29
2a0d:a9c0::/29
2a0f:16c0::/29
2a0f:1a40::/29
2a0f:27c0::/29
2a0f:2e40::/29
2a0f:3640::/29
2a0f:3740::/29
2a0f:7280::/29
2a0f:9600::/29
2a0f:ec00::/29
2a10:3040::/29
2a10:3640::/29
2a10:6300::/29
2a10:6900::/29
2a11:3f80::/29
2a11:f040::/29
2a12:cd00::/29
2a13:2f40::/29
2a13:4f00::/29
2a13:9100::/29
2a13:9480::/29
2a13:9b00::/29
2a13:9d00::/29
2a13:c700::/29
Signature Algorithm: sha256WithRSAEncryption
76:86:ea:c3:19:6c:64:a9:b4:c7:95:f8:90:7f:78:21:e1:11:
31:cd:5d:ae:13:90:ea:6f:62:3c:4b:bc:4a:3c:46:5c:4d:6d:
e6:c1:24:e8:73:06:67:81:67:36:ed:ad:7c:ad:f3:3f:49:d6:
24:14:40:ef:77:e6:ad:85:64:40:76:9e:fd:41:34:55:dd:78:
ca:c2:b9:d3:5b:b7:04:fc:c8:55:f6:c4:15:c4:77:e2:4c:dc:
ef:36:fb:0c:f7:89:2f:0f:3c:b8:18:52:5e:99:c4:25:7c:57:
28:45:ac:27:59:98:c8:df:10:66:5e:11:2a:b8:9f:08:d0:3a:
51:df:67:99:4a:20:c9:76:2f:b7:97:1b:6d:bb:b8:0e:3d:68:
b1:4d:24:62:93:50:f3:20:f3:58:a9:96:d2:d3:a8:14:ab:05:
f5:79:7f:98:21:e2:e1:3c:81:97:c4:10:e3:88:8d:45:d3:23:
da:86:11:74:59:ec:00:da:f6:db:76:e2:a7:8f:11:7c:92:0d:
98:ff:b4:b4:01:d4:67:91:a8:90:9c:80:ea:97:8b:92:ff:79:
ac:5c:41:9e:41:d8:64:e9:ca:38:d3:0f:d7:94:e9:37:db:1b:
32:ed:90:99:17:0d:ea:9c:06:92:8d:4a:8b:6d:b0:b1:9f:fa:
1f:e6:2b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:58:38 2025 by rpki-client