Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fSsmKf02L6spdyzWDvhYCo5vXX4.roa
File: fSsmKf02L6spdyzWDvhYCo5vXX4.roa (raw, json)
Hash identifier: DOPpE6mXXAEUTRj9rOLCpIktv9Czkg8ZZlGl9+XRhXw=
Subject key identifier: 7D:2B:26:29:FD:36:2F:AB:29:77:2C:D6:0E:F8:58:0A:8E:6F:5D:7E
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01919EC8C26A539B0C9DC27DD72F36615B08
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fSsmKf02L6spdyzWDvhYCo5vXX4.roa
Signing time: Thu 29 Aug 2024 15:37:22 +0000
ROA not before: Thu 29 Aug 2024 15:37:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 2a07:8a40::/29 maxlen: 29
2a0f:e6c5::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 30 Aug 2024 08:12:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9e:c8:c2:6a:53:9b:0c:9d:c2:7d:d7:2f:36:61:5b:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 29 15:37:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d2b2629fd362fab29772cd60ef8580a8e6f5d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8e:ca:26:f4:12:20:67:1b:e5:90:f1:73:0c:
4f:a6:5e:32:82:1c:89:24:e5:0e:09:8c:5f:c0:fd:
16:57:f9:cc:69:62:a2:27:53:c3:76:3c:0a:d8:04:
60:57:9f:f4:fe:27:89:c8:0e:10:98:7e:fd:78:7b:
20:20:d1:e0:24:db:ac:08:bf:dc:50:91:5d:3b:18:
56:18:f3:64:ad:2f:81:83:22:60:d5:64:c3:36:fa:
55:de:6e:8a:4e:de:7b:d6:85:26:7c:48:2e:86:74:
0a:7b:07:70:f6:6e:b2:7b:41:15:8d:58:a5:d0:f4:
f0:3b:1f:a7:69:94:10:5e:89:c7:47:89:6f:55:fa:
9f:a3:42:d0:43:72:8e:ad:9b:c6:f4:4a:07:5e:9d:
32:9f:35:36:2b:e0:4d:74:fc:77:86:05:ef:3a:bc:
85:83:1c:5c:f2:87:f5:43:aa:29:ff:4a:fc:1d:10:
07:1f:0d:c9:d5:d3:2b:02:12:63:44:99:76:1a:79:
59:a1:40:e0:19:8a:55:91:c9:17:3f:08:3a:cb:a6:
5e:ac:60:da:71:00:b9:80:18:0f:d8:88:c7:5e:08:
1e:f4:f4:12:13:b0:fe:e0:de:41:5c:95:f6:b2:cf:
61:60:58:34:c9:8c:b8:df:38:c3:bb:46:00:eb:a7:
0b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:2B:26:29:FD:36:2F:AB:29:77:2C:D6:0E:F8:58:0A:8E:6F:5D:7E
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fSsmKf02L6spdyzWDvhYCo5vXX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:8a40::/29
2a0f:e6c5::/32
Signature Algorithm: sha256WithRSAEncryption
4f:9b:25:4c:82:9e:fa:27:a6:9d:57:3d:fa:75:9c:ce:07:d3:
95:37:86:de:eb:5d:0f:06:6b:ee:e3:82:cd:9f:e9:01:2d:a3:
88:92:e8:e3:35:80:cb:eb:96:fa:1d:7f:15:82:41:ba:70:12:
59:09:41:02:ea:8e:eb:4f:6e:fc:23:ee:bb:03:48:1f:23:99:
24:7c:c6:0f:e5:fa:15:35:a0:bd:96:f6:88:41:5d:df:61:6a:
94:d0:2c:50:d2:7b:f6:38:1d:da:7c:20:7a:e5:e0:5c:ba:f4:
49:9e:bd:24:36:43:2c:5a:d2:2d:18:9b:9f:20:e3:20:6d:24:
ed:fc:1a:24:05:63:b3:a5:68:38:8c:d3:37:b7:d4:cb:7b:42:
fe:bc:3f:a0:c1:f6:4c:01:13:b6:79:d8:0c:07:3e:32:08:91:
e5:a8:9e:00:42:9a:75:16:e6:96:4f:c0:ba:44:ae:21:6d:bb:
7a:65:e5:f2:7a:69:f1:63:06:b6:f7:30:96:68:4f:0a:db:09:
db:f0:20:b8:d7:29:ef:9a:67:81:65:e3:fe:8f:dd:93:d0:ad:
ac:b4:4f:77:ad:87:a6:0f:57:69:c8:eb:2c:fd:d9:28:cf:8d:
6f:dd:d6:4f:59:e3:64:0e:32:01:cc:30:92:c1:5d:74:51:30:
9e:91:72:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:31:44 2025 by rpki-client