Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lBnTNxQE0sS7Op4B1QKaINXEqmM.roa
File: lBnTNxQE0sS7Op4B1QKaINXEqmM.roa (raw, json)
Hash identifier: SRl35PylV270suyb3KA2cUkLJg10XJkINaIyVyFpn4M=
Subject key identifier: 94:19:D3:37:14:04:D2:C4:BB:3A:9E:01:D5:02:9A:20:D5:C4:AA:63
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0192DE6607F78376B603540EA6A8E0B71FEA
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lBnTNxQE0sS7Op4B1QKaINXEqmM.roa
Signing time: Wed 30 Oct 2024 17:08:01 +0000
ROA not before: Wed 30 Oct 2024 17:08:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 64.226.54.0/23 maxlen: 23
64.226.156.0/22 maxlen: 22
2a06:a5c0::/29 maxlen: 29
2a06:a600::/29 maxlen: 29
2a06:b5c0::/29 maxlen: 29
2a06:bf40::/29 maxlen: 29
2a07:95c0::/29 maxlen: 29
2a0f:3d84::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 07 Nov 2024 21:54:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:de:66:07:f7:83:76:b6:03:54:0e:a6:a8:e0:b7:1f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 30 17:08:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9419d3371404d2c4bb3a9e01d5029a20d5c4aa63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:53:86:93:72:c0:ad:41:b6:4e:29:bf:c6:52:
f6:72:7b:d0:55:65:90:e3:18:6b:7c:68:7e:26:d0:
c5:40:14:78:3e:da:fd:fc:a9:d1:b1:f9:d8:c7:50:
fc:6b:2e:8a:ac:a3:11:78:f5:d6:e3:35:e9:fa:de:
58:7f:a4:76:70:f1:3f:d9:11:2b:09:b7:ac:b5:b0:
6f:5a:61:0a:23:31:05:e3:7b:cb:06:af:20:bc:5f:
da:3e:b3:d6:3f:aa:fb:4a:9e:dc:0d:2c:ec:95:85:
13:29:2b:60:c3:22:6a:67:de:12:e6:b2:4d:49:b5:
24:8f:f5:49:eb:26:82:7c:2d:58:3b:7c:da:ea:d6:
ef:87:b3:b4:f9:ea:e7:3f:43:96:6c:bd:86:ac:9d:
1a:b8:24:f3:a9:8f:d0:19:bf:de:ec:7f:58:9b:74:
88:8c:b5:41:7a:a0:ee:99:17:68:1d:12:09:fa:15:
2d:29:d9:1c:07:f5:e5:ba:92:db:72:e3:16:b3:bd:
bb:3a:8c:c8:57:66:f4:18:ce:b2:86:d7:0c:14:03:
3b:0f:d2:ba:2a:da:04:c0:33:9c:af:4d:23:f7:07:
d2:88:04:e7:7f:9f:9e:88:d7:28:fc:7b:a3:2f:f9:
77:66:22:dc:cb:ab:82:6b:a1:bd:d4:bc:dc:91:95:
71:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:19:D3:37:14:04:D2:C4:BB:3A:9E:01:D5:02:9A:20:D5:C4:AA:63
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lBnTNxQE0sS7Op4B1QKaINXEqmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.226.54.0/23
64.226.156.0/22
IPv6:
2a06:a5c0::/29
2a06:a600::/29
2a06:b5c0::/29
2a06:bf40::/29
2a07:95c0::/29
2a0f:3d84::/32
Signature Algorithm: sha256WithRSAEncryption
c9:50:b1:53:35:f5:95:7f:c6:52:38:6a:5d:68:a6:d6:e3:06:
ea:41:95:a6:cf:aa:4b:8c:55:92:a4:0b:31:bd:41:d2:b6:ad:
a1:69:77:cd:d6:c0:25:ef:69:8b:2a:41:ce:a1:93:19:61:3d:
f7:f3:18:3c:8e:51:a3:84:32:1a:da:69:11:e6:9f:d0:3f:43:
2a:c2:d4:27:f2:b2:15:18:19:e7:3f:72:3c:45:60:65:df:79:
f5:e1:c5:dc:74:48:f6:bc:c0:60:0c:d6:15:fb:97:8b:1d:ff:
a9:ca:0a:df:90:fc:d1:fa:85:1f:e6:16:98:7c:b0:4c:ce:e8:
ff:88:ae:b9:a0:b8:70:da:37:f4:aa:61:2f:ab:0f:54:b5:fe:
91:8b:40:e9:f7:b7:f0:a1:bb:91:8a:5e:7f:84:7a:53:d8:cf:
85:8b:dd:23:34:63:dc:bb:2d:0c:fa:d7:aa:21:73:0b:ac:1f:
ef:7b:e3:69:f8:72:c0:e5:6f:0a:f2:87:d9:ad:bf:d2:ad:e6:
82:cc:2e:c5:96:0b:17:78:34:04:b8:28:ea:e8:a9:c5:25:31:
03:6f:7d:d1:d4:53:b0:a4:1f:dd:99:f6:b3:69:7f:b5:70:ef:
7b:4d:91:9c:f8:57:5d:d6:82:0b:6b:d3:7d:b8:f4:3b:60:de:
af:40:99:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:32:42 2025 by rpki-client