Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/hVueBx_zs8AO4EouXE1n7YAUl7U.roa
File: hVueBx_zs8AO4EouXE1n7YAUl7U.roa (raw, json)
Hash identifier: A32q/FOf5PEAVTeerkdaIkBpSliogMDhWrzbd4brVfg=
Subject key identifier: 85:5B:9E:07:1F:F3:B3:C0:0E:E0:4A:2E:5C:4D:67:ED:80:14:97:B5
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018D26905D1A125787E5ED2E826E12CB5996
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/hVueBx_zs8AO4EouXE1n7YAUl7U.roa
Signing time: Sat 20 Jan 2024 11:10:11 +0000
ROA not before: Sat 20 Jan 2024 11:10:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 2a06:35c0::/30 maxlen: 30
2a06:35c4::/30 maxlen: 30
2a09:4500::/29 maxlen: 32
2a09:4900::/29 maxlen: 32
2a09:7300::/29 maxlen: 32
2a09:7500::/29 maxlen: 32
2a09:7b00::/29 maxlen: 32
2a09:b700::/29 maxlen: 32
2a0d:2ac0::/29 maxlen: 32
2a0d:a9c0::/29 maxlen: 32
2a0d:b740::/29 maxlen: 32
2a13:2d40::/32 maxlen: 32
2a13:2d41::/32 maxlen: 32
2a13:2d42::/32 maxlen: 32
2a13:2d43::/32 maxlen: 32
2a13:2d44::/32 maxlen: 32
2a13:2d45::/32 maxlen: 32
2a13:2d46::/32 maxlen: 32
2a13:2d47::/32 maxlen: 32
2a13:2dc0::/32 maxlen: 32
2a13:2dc1::/32 maxlen: 32
2a13:2dc2::/32 maxlen: 32
2a13:2dc3::/32 maxlen: 32
2a13:2dc4::/32 maxlen: 32
2a13:2dc5::/32 maxlen: 32
2a13:2dc6::/32 maxlen: 32
2a13:2dc7::/32 maxlen: 32
2a13:2f40::/29 maxlen: 29
2a13:9180::/29 maxlen: 29
2a13:9680::/29 maxlen: 29
2a13:c700::/29 maxlen: 29
2a13:c900::/32 maxlen: 32
2a13:c901::/32 maxlen: 32
2a13:c902::/32 maxlen: 32
2a13:c903::/32 maxlen: 32
2a13:c904::/32 maxlen: 32
2a13:c905::/32 maxlen: 32
2a13:c906::/32 maxlen: 32
2a13:c907::/32 maxlen: 32
2a13:d100::/29 maxlen: 29
2a13:d700::/32 maxlen: 32
2a13:d701::/32 maxlen: 32
2a13:d702::/32 maxlen: 32
2a13:d703::/32 maxlen: 32
2a13:d704::/32 maxlen: 32
2a13:d705::/32 maxlen: 32
2a13:d706::/32 maxlen: 32
2a13:d707::/32 maxlen: 32
2a13:d900::/32 maxlen: 32
2a13:d901::/32 maxlen: 32
2a13:d902::/32 maxlen: 32
2a13:d903::/32 maxlen: 32
2a13:d904::/32 maxlen: 32
2a13:d905::/32 maxlen: 32
2a13:d906::/32 maxlen: 32
2a13:d907::/32 maxlen: 32
2a13:fb00::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 10 Feb 2024 11:25:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:26:90:5d:1a:12:57:87:e5:ed:2e:82:6e:12:cb:59:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 20 11:10:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=855b9e071ff3b3c00ee04a2e5c4d67ed801497b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:80:da:fd:a7:db:9b:0d:a5:9d:88:18:04:82:
61:00:b9:1e:bd:b0:48:e3:fc:64:d0:93:21:9c:77:
4b:be:68:f0:8b:1d:af:48:b6:ab:ef:12:9c:2a:4a:
29:b0:0a:3c:f6:9a:6d:76:30:5c:3e:4c:15:55:09:
0f:e1:07:ba:ad:97:1b:4a:16:91:f2:1f:75:c8:bc:
85:c1:96:08:17:26:cc:82:97:61:e9:3a:29:06:3a:
b3:a5:d0:e6:c6:b0:b4:a5:83:25:ae:9d:3d:ea:8b:
f2:23:ab:40:67:f9:e6:af:75:bf:fa:fc:bb:eb:68:
16:7f:4b:6e:e5:bb:db:cb:82:f9:8c:f2:e2:3c:89:
a2:e7:60:55:5a:42:d5:88:12:f3:ec:e4:79:ce:e7:
7e:95:91:94:63:c2:b8:de:ca:fb:7a:fa:a3:07:b3:
dd:bb:ab:66:1c:2f:9e:be:3f:5b:cb:d8:59:58:a7:
bc:0f:45:de:aa:62:d4:c8:50:46:bc:03:76:18:43:
a4:fc:3c:1d:e6:26:96:7d:0d:2f:6c:30:e5:ae:45:
c8:e5:29:2d:35:aa:f7:35:b1:40:6c:b7:d2:da:2d:
d7:02:aa:55:38:cc:43:bb:94:2b:67:32:d8:62:a0:
63:44:b8:0a:39:1d:92:2e:c9:fe:90:38:cf:be:7b:
62:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:5B:9E:07:1F:F3:B3:C0:0E:E0:4A:2E:5C:4D:67:ED:80:14:97:B5
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/hVueBx_zs8AO4EouXE1n7YAUl7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:35c0::/29
2a09:4500::/29
2a09:4900::/29
2a09:7300::/29
2a09:7500::/29
2a09:7b00::/29
2a09:b700::/29
2a0d:2ac0::/29
2a0d:a9c0::/29
2a0d:b740::/29
2a13:2d40::/29
2a13:2dc0::/29
2a13:2f40::/29
2a13:9180::/29
2a13:9680::/29
2a13:c700::/29
2a13:c900::/29
2a13:d100::/29
2a13:d700::/29
2a13:d900::/29
2a13:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
25:61:23:7a:3d:01:29:c3:df:79:1c:b5:b4:1d:6e:7d:99:e2:
4a:25:44:11:5f:4a:05:4c:69:53:9f:32:45:62:ee:43:ed:aa:
74:5d:39:cf:b1:ab:7a:ce:62:94:18:b7:9a:e4:ad:04:00:7e:
d3:d4:8f:2f:9a:0e:1e:0c:87:be:b1:87:c7:4f:31:58:6b:9b:
88:ae:b3:e4:5e:37:ed:76:fc:32:b8:a5:4b:3d:e9:dc:e5:ce:
2e:bc:67:c0:53:20:61:1e:66:1f:fa:5f:22:a4:44:67:c0:f9:
b7:61:43:08:5d:ef:64:41:fb:d1:bd:a7:f3:9c:91:d9:d3:cf:
36:96:89:84:5e:b0:a8:5b:b9:59:0b:1a:bd:f0:de:11:c2:10:
7b:dd:81:e7:54:89:cc:03:02:06:4c:46:41:93:08:41:8f:dc:
95:95:3c:88:28:09:f1:ea:34:7a:bf:58:a4:c4:9d:f3:f4:97:
c3:2e:33:09:b6:50:78:5c:d4:5a:a7:14:29:9f:23:13:89:e8:
58:5b:6b:f9:3f:72:49:6e:cb:20:02:a1:b1:c2:aa:70:79:58:
d7:af:d7:ee:eb:61:4c:7a:ab:dc:c4:79:c2:92:7b:b5:17:0d:
33:d3:c7:7d:b5:65:d5:53:d0:a2:55:86:e5:58:2c:ef:2d:2d:
fd:90:2c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:47 2025 by rpki-client