Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/eTgK2Zk6YSy-SiziPnocqVxOTks.roa
File: eTgK2Zk6YSy-SiziPnocqVxOTks.roa (raw, json)
Hash identifier: UQL+BIEyoz/RGZf+6yVJkL522OeexPe6GAX8HSlnnUg=
Subject key identifier: 79:38:0A:D9:99:3A:61:2C:BE:4A:2C:E2:3E:7A:1C:A9:5C:4E:4E:4B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018CC9BC287BAE8FBF246230AD3B60CF448D
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/eTgK2Zk6YSy-SiziPnocqVxOTks.roa
Signing time: Tue 02 Jan 2024 10:33:20 +0000
ROA not before: Tue 02 Jan 2024 10:33:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199925
IP address blocks: 2a0f:e040::/29 maxlen: 29
2a0f:1480::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 04 Jan 2024 14:31:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:28:7b:ae:8f:bf:24:62:30:ad:3b:60:cf:44:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 2 10:33:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79380ad9993a612cbe4a2ce23e7a1ca95c4e4e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:25:c4:9c:cc:ea:0f:f6:d7:f1:35:b0:a4:77:
fc:f6:89:91:ea:63:43:01:02:95:08:5b:fa:6b:7e:
cc:07:2e:cd:e3:c9:30:c1:65:2f:91:cd:c6:64:ad:
1a:75:02:6a:0f:33:a2:5f:01:9c:27:df:0f:83:22:
8f:d8:95:e9:d4:2f:72:b9:b5:24:12:f5:1c:94:75:
ce:ff:7f:4e:60:bb:2a:7e:69:8a:c0:6d:d2:5d:42:
bb:76:88:ef:26:9f:22:1b:45:92:a1:81:e1:ee:c9:
cc:2d:a6:2f:dc:96:cb:86:52:d2:15:77:95:b4:a8:
c0:70:ab:d9:fe:1d:49:8d:e0:52:7a:70:2e:0d:05:
25:f0:8c:c3:e3:35:e9:24:68:0e:c1:c5:70:f9:c6:
d7:00:e4:06:66:51:b6:45:9c:db:ba:cb:8d:bd:84:
7c:bb:59:45:f4:11:df:bf:a9:43:7d:b6:22:0e:8a:
1f:11:6a:55:d6:47:0d:45:8f:c2:a6:d0:a2:00:e8:
8d:04:13:c2:41:3e:ff:d6:d2:2b:b0:e4:04:3d:45:
44:d9:76:d8:dc:82:6d:67:7f:39:cd:50:4d:49:0e:
bd:6e:25:91:7a:55:17:1a:d6:92:97:d9:52:73:2e:
c8:23:fc:ea:77:26:8a:1a:28:6c:a1:6a:ed:1d:8d:
63:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:38:0A:D9:99:3A:61:2C:BE:4A:2C:E2:3E:7A:1C:A9:5C:4E:4E:4B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/eTgK2Zk6YSy-SiziPnocqVxOTks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:1480::/29
2a0f:e040::/29
Signature Algorithm: sha256WithRSAEncryption
0d:5c:67:90:82:58:c9:81:d1:6d:75:55:bb:1d:b0:2c:2f:fc:
0d:8a:7e:1e:cc:91:ae:ca:9a:9a:f2:22:a4:27:66:40:71:5e:
47:4f:e8:32:15:89:ed:85:80:c4:45:e2:af:52:f0:8b:f2:79:
a8:e3:a2:ec:22:a4:94:cc:79:38:ec:a2:95:c2:c2:e3:9a:b2:
a9:72:cd:35:34:01:fe:63:65:87:18:a0:d3:ab:62:f7:78:43:
b7:92:50:2b:e0:ac:c7:d8:88:65:7b:0e:2a:d6:57:64:c8:ba:
c7:54:d0:56:0c:99:e4:f8:e3:dd:95:1a:3e:6c:43:58:fd:dd:
17:ab:48:3a:96:50:4d:b5:d4:49:c3:60:af:0a:57:78:71:53:
d6:6c:02:83:b8:bb:21:69:72:d8:3e:38:a7:70:05:cb:5f:f4:
ef:1b:a6:ab:26:ba:87:e4:84:71:82:cb:db:73:5c:f8:a9:e5:
c5:8c:0a:df:ea:1d:22:05:67:9b:56:0a:53:bd:be:6f:43:07:
f0:3e:e9:cb:61:3d:60:50:16:70:e3:86:f3:62:84:b6:bf:5a:
4c:6c:f1:d9:0e:d8:b4:2c:e7:5a:ea:17:67:26:c3:05:a5:85:
be:26:62:08:81:57:80:ac:ee:6a:ee:70:0d:07:33:3c:7a:96:
2b:b3:33:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:18 2025 by rpki-client