Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jGYK6obSa7OKWJYBIjyjtYXhSMg.roa
File: jGYK6obSa7OKWJYBIjyjtYXhSMg.roa (raw, json)
Hash identifier: JEeF4W6hCTd+ZhtI0y55zuv2/MN2CzhMy1vdqE40bd4=
Subject key identifier: 8C:66:0A:EA:86:D2:6B:B3:8A:58:96:01:22:3C:A3:B5:85:E1:48:C8
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018CC9BC24458085639359227243FA171098
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jGYK6obSa7OKWJYBIjyjtYXhSMg.roa
Signing time: Tue 02 Jan 2024 10:33:19 +0000
ROA not before: Tue 02 Jan 2024 10:33:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 2a0f:dfc4::/32 maxlen: 32
2a12:f440::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 04 Feb 2024 08:38:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:24:45:80:85:63:93:59:22:72:43:fa:17:10:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 2 10:33:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c660aea86d26bb38a589601223ca3b585e148c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:9c:45:9d:00:4b:11:25:53:fc:b2:92:d0:ba:
59:22:3b:f3:39:80:2b:00:1b:95:42:11:68:4d:c4:
09:62:17:36:0d:e2:a2:86:fd:26:1e:a3:3b:6f:4c:
85:67:12:58:d3:86:b3:ee:01:e3:28:61:5a:ce:f6:
1d:a6:18:a0:90:de:ca:da:81:7c:a8:cb:62:c1:a0:
b6:eb:bd:16:76:c3:0f:12:21:c2:29:71:07:29:5f:
47:97:9d:fa:93:f3:c6:19:a9:a7:7d:41:27:33:9c:
52:e8:9b:ac:22:d1:49:ca:7f:ef:0d:a2:13:f4:42:
9c:93:83:5c:06:f5:7a:a4:a4:a1:71:43:40:49:31:
2a:06:f8:53:b6:ec:86:de:24:e1:10:2e:4a:97:98:
11:5d:23:2e:9d:7f:c0:27:01:35:9c:64:27:00:ab:
bc:01:00:dd:ec:f4:a1:e8:21:ed:6e:21:c0:f8:ba:
f8:95:65:7a:b0:9c:8f:5a:57:20:66:80:d8:e2:ad:
23:a1:6c:3c:38:1c:0f:c4:03:59:f4:4a:f4:e4:64:
5d:4b:35:28:7d:9b:c8:69:1e:c7:55:e2:0b:fb:5b:
92:b7:4f:46:1d:e6:13:85:c4:b4:88:26:52:4c:d0:
bd:f5:8b:91:a8:2e:4c:c9:83:4d:f7:51:da:5a:a2:
0e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:66:0A:EA:86:D2:6B:B3:8A:58:96:01:22:3C:A3:B5:85:E1:48:C8
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jGYK6obSa7OKWJYBIjyjtYXhSMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:dfc4::/32
2a12:f440::/29
Signature Algorithm: sha256WithRSAEncryption
08:57:a3:a6:9c:2a:9e:ae:3c:ed:6a:03:68:84:d9:5c:95:fc:
38:3f:0d:e8:d5:c0:e9:18:a7:ac:78:20:68:f5:0d:a3:08:04:
5d:9c:e0:be:ad:ff:df:0b:a2:ba:77:52:52:1a:49:28:41:ae:
86:09:48:f4:8f:d2:55:ef:6f:e1:4f:1b:7e:0b:51:3e:c0:2a:
1b:f0:39:f4:ba:2c:f8:fa:5c:64:1d:21:ab:3c:e2:e7:ff:d3:
d9:d7:f4:65:a8:30:8d:8e:e0:ba:1b:db:89:8d:38:a5:f7:21:
93:a1:18:91:22:97:40:e1:50:27:87:e0:8c:0f:0c:5f:c9:d2:
50:cd:f8:0e:1d:91:e6:b0:9e:0f:aa:4d:b9:d6:38:4d:05:e9:
79:ce:2f:b5:17:4f:60:97:26:fb:1a:53:58:2a:99:b0:f9:bb:
35:c9:25:ff:04:62:f0:3b:3b:20:32:33:e2:54:54:46:04:ff:
5d:99:94:eb:74:94:99:11:8a:74:cd:f2:e8:40:d1:ea:f6:d0:
e7:5c:58:ff:33:19:90:50:a3:dd:1e:78:6d:12:da:dc:e7:ad:
3e:0c:3f:62:40:55:d8:57:b7:e8:df:16:6d:0a:33:1e:cd:31:
fe:ba:3d:b1:75:39:ef:e5:91:f5:a0:e2:4e:94:ae:55:0f:bd:
97:7a:71:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:12:14 2025 by rpki-client