Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jZNm_IsHFVaLLt2XAgQIJBjgnIw.roa
File: jZNm_IsHFVaLLt2XAgQIJBjgnIw.roa (raw, json)
Hash identifier: kljh07Tkl42f/s2YfKAt8G+covclrfngDOBlpAX+2FM=
Subject key identifier: 8D:93:66:FC:8B:07:15:56:8B:2E:DD:97:02:04:08:24:18:E0:9C:8C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018EE1F8DD7809B91E17507A47689452A91A
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jZNm_IsHFVaLLt2XAgQIJBjgnIw.roa
Signing time: Mon 15 Apr 2024 13:36:06 +0000
ROA not before: Mon 15 Apr 2024 13:36:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50673
IP address blocks: 2a0c:7880::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 26 Apr 2024 07:36:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e1:f8:dd:78:09:b9:1e:17:50:7a:47:68:94:52:a9:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 15 13:36:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d9366fc8b0715568b2edd970204082418e09c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e8:31:16:d6:bf:3e:89:08:97:cc:aa:4a:d5:
b8:8b:fc:f8:46:12:e8:a3:05:6d:3f:d2:29:9b:fb:
2a:a4:60:6a:4d:c8:94:4d:46:07:0d:1a:af:7e:39:
ef:68:80:36:fc:c8:72:ec:42:db:61:9b:19:67:e7:
67:82:06:ee:c8:1d:0d:ff:f5:54:53:6a:b1:6d:30:
ba:5e:97:31:2b:10:6e:e5:98:6c:3e:2e:03:37:91:
79:79:28:da:43:ee:38:fa:3c:10:f3:aa:41:87:eb:
57:96:d3:b6:27:11:03:93:e7:b5:97:4f:18:9d:8f:
56:a2:b6:61:65:c9:35:e5:7e:12:d1:a3:14:7a:23:
63:58:0b:02:03:18:f0:a5:cc:e2:68:ca:49:6c:8c:
1d:ad:b8:26:6b:43:b6:1a:21:7a:52:e9:c5:38:92:
3c:95:a5:25:b1:ea:25:a2:ab:cf:de:dd:91:da:42:
31:9b:ea:0f:a1:20:8a:91:90:12:ad:cb:05:f2:06:
5e:85:fb:b5:92:9c:6d:0f:8d:e5:2b:ac:5d:de:50:
54:f0:dd:37:af:7c:5c:8e:17:54:97:60:13:76:4b:
0d:a6:7a:13:ed:50:32:54:4d:b0:7d:fb:90:f7:1c:
e7:75:94:dd:26:c4:b7:e0:61:57:c8:0b:f8:8b:5d:
26:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:93:66:FC:8B:07:15:56:8B:2E:DD:97:02:04:08:24:18:E0:9C:8C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/jZNm_IsHFVaLLt2XAgQIJBjgnIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:7880::/32
Signature Algorithm: sha256WithRSAEncryption
c5:e8:7f:83:85:18:1a:93:4e:e4:72:68:cf:64:fd:40:69:e0:
cc:80:49:68:70:55:d9:ea:52:93:30:95:b2:8e:85:ef:ab:52:
34:aa:cd:10:9f:a2:6f:96:3f:f8:69:57:a0:b7:1a:6c:5c:d8:
76:ff:dc:3b:77:2e:66:10:c9:71:ad:7a:ea:d5:29:ed:00:7b:
2f:31:c1:93:7c:e8:a2:f2:aa:83:e2:58:aa:b4:be:e5:7f:a7:
6c:5e:05:b2:35:1d:1a:44:9d:c3:e8:10:99:0e:f4:d3:3b:c9:
dc:0b:3e:0b:89:a1:51:2d:97:78:a0:c6:ee:5e:27:b8:74:ee:
0c:a8:fe:71:29:8f:8b:8d:7a:50:e6:a5:ff:21:f3:92:44:b8:
fd:e2:da:40:a7:f9:ee:4f:e5:5a:c1:aa:07:02:69:33:ee:3f:
21:96:41:bf:9d:42:21:23:f3:5d:fe:c1:28:2a:fb:80:ff:f3:
a2:bf:ec:01:d1:e4:76:af:8c:9e:5b:72:c0:ae:0b:2f:f1:b7:
ac:76:33:e8:7b:18:81:87:9d:6b:24:64:5d:4e:98:bc:14:35:
51:fa:14:36:cf:ba:82:72:22:b3:bb:4d:bb:9c:a7:00:58:c5:
ca:fd:5e:76:27:77:69:f8:5b:83:b0:77:25:1c:8f:91:01:65:
24:ee:92:d2
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY7h+N14CbkeF1B6R2iUUqkaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwNDE1MTMzNjA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDkzNjZmYzhiMDcxNTU2OGIyZWRkOTcwMjA0MDgyNDE4ZTA5YzhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApegxFta/PokIl8yqStW4i/z4RhLo
owVtP9Ipm/sqpGBqTciUTUYHDRqvfjnvaIA2/Mhy7ELbYZsZZ+dnggbuyB0N//VU
U2qxbTC6XpcxKxBu5ZhsPi4DN5F5eSjaQ+44+jwQ86pBh+tXltO2JxEDk+e1l08Y
nY9WorZhZck15X4S0aMUeiNjWAsCAxjwpcziaMpJbIwdrbgma0O2GiF6UunFOJI8
laUlseoloqvP3t2R2kIxm+oPoSCKkZASrcsF8gZehfu1kpxtD43lK6xd3lBU8N03
r3xcjhdUl2ATdksNpnoT7VAyVE2wffuQ9xzndZTdJsS34GFXyAv4i10muwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFI2TZvyLBxVWiy7dlwIECCQY4JyMMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvalpObV9Jc0hGVmFMTHQyWEFnUUlKQmpnbkl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgx4gDAN
BgkqhkiG9w0BAQsFAAOCAQEAxeh/g4UYGpNO5HJoz2T9QGngzIBJaHBV2epSkzCV
so6F76tSNKrNEJ+ib5Y/+GlXoLcabFzYdv/cO3cuZhDJca166tUp7QB7LzHBk3zo
ovKqg+JYqrS+5X+nbF4FsjUdGkSdw+gQmQ700zvJ3As+C4mhUS2XeKDG7l4nuHTu
DKj+cSmPi416UOal/yHzkkS4/eLaQKf57k/lWsGqBwJpM+4/IZZBv51CISPzXf7B
KCr7gP/zor/sAdHkdq+MnltywK4LL/G3rHYz6HsYgYedayRkXU6YvBQ1UfoUNs+6
gnIis7tNu5ynAFjFyv1edid3afhbg7B3JRyPkQFlJO6S0g==
-----END CERTIFICATE-----
Generated at Sun Jun 8 09:11:34 2025 by rpki-client