Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dToUg8pJFDwks2F--wbSHrsiLYg.roa
File: dToUg8pJFDwks2F--wbSHrsiLYg.roa (raw, json)
Hash identifier: N2m3c+6wuuRMRq+aQGRkYrw8IEQBTETE8+Hu0MU8mZI=
Subject key identifier: 75:3A:14:83:CA:49:14:3C:24:B3:61:7E:FB:06:D2:1E:BB:22:2D:88
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01919487F1AC8427929ED6EC4AE1593D893C
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dToUg8pJFDwks2F--wbSHrsiLYg.roa
Signing time: Tue 27 Aug 2024 15:50:22 +0000
ROA not before: Tue 27 Aug 2024 15:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215720
IP address blocks: 2a13:f900::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 30 Aug 2024 07:49:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:94:87:f1:ac:84:27:92:9e:d6:ec:4a:e1:59:3d:89:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 27 15:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=753a1483ca49143c24b3617efb06d21ebb222d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3d:27:cd:2d:8f:00:7b:c3:ee:e2:cc:06:35:
ed:dc:e1:d7:b7:aa:c7:77:ce:7c:f3:18:3e:b3:71:
8c:2d:42:a6:d8:b1:0c:9e:b5:90:08:b2:89:70:c0:
1d:52:44:7d:ae:2a:b7:24:56:22:44:b5:b9:f1:63:
54:55:7a:f8:1b:46:fa:f4:a1:c6:21:e2:9d:4e:10:
cc:be:ca:13:dd:6b:db:9b:e9:58:90:ae:ff:64:b3:
4a:40:0e:55:b6:89:4c:b4:0a:3c:97:b2:9a:c6:61:
73:b7:b1:e9:71:b5:9f:40:e1:6f:7d:ca:45:c2:6b:
e6:17:ce:a3:33:f5:3d:da:04:85:b6:0b:fc:99:3c:
cc:a0:b9:f6:5a:93:d3:4c:5f:58:68:67:b4:b8:f2:
e8:86:20:54:8d:4b:f9:fd:3f:9b:aa:31:5e:3c:62:
fb:1f:16:c4:54:44:ca:c3:d5:ae:32:2c:7b:67:a3:
09:4d:e1:35:3d:4d:d6:35:ad:65:81:0f:ae:5f:cd:
41:e8:c2:25:04:08:77:27:b7:d0:65:df:f2:31:9b:
9c:33:ba:d6:7a:aa:29:97:81:61:61:9b:b6:df:8c:
ab:74:bb:c4:e2:46:4e:68:87:1b:28:69:87:a7:2c:
71:71:34:05:a4:c1:2e:2d:55:b0:f7:f2:67:b3:03:
2f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:3A:14:83:CA:49:14:3C:24:B3:61:7E:FB:06:D2:1E:BB:22:2D:88
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/dToUg8pJFDwks2F--wbSHrsiLYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:f900::/29
Signature Algorithm: sha256WithRSAEncryption
0e:72:e3:36:7c:6c:26:12:ed:85:e6:a6:ba:5e:0d:69:81:f7:
43:fb:6e:52:a4:49:cb:8f:27:26:60:9f:27:0c:36:f6:fd:f8:
da:cd:48:47:23:8c:70:fc:79:69:bf:c0:7b:d4:1e:32:70:2d:
65:e5:8a:65:c0:2b:62:1f:66:15:02:a9:e4:ef:49:71:83:27:
f3:67:a2:ab:63:a5:35:7b:92:b0:08:a7:0c:88:ac:4b:16:e6:
a0:6c:77:84:09:24:29:f8:2e:5b:8b:50:6e:44:13:d6:b5:21:
0b:73:0b:7b:04:25:a1:ce:2a:bd:be:ef:32:b8:2e:82:28:be:
92:e8:fc:ef:66:23:fc:6b:ef:53:6b:a0:4f:e9:2b:80:0c:3e:
4a:33:44:40:6f:d5:cd:4b:53:1e:9e:d0:71:fb:d6:44:13:1e:
6b:18:8f:c8:cd:7f:5d:88:84:97:3f:4e:b0:4b:45:ea:78:72:
ec:62:d1:d0:f5:ff:84:55:cf:30:07:a7:3d:e7:c4:e3:14:b2:
7b:af:00:aa:43:10:6b:24:a6:ac:a1:4d:ec:bb:13:00:a8:9c:
e6:96:62:b2:eb:dd:f5:08:67:7a:16:02:39:17:ba:b6:d4:00:
98:e0:19:13:47:c4:6a:16:d0:42:f2:9d:83:c7:54:b2:5a:ff:
50:1a:08:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:58:36 2025 by rpki-client