Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lOPdzoRu9BhfZP6i6eFm9O2rXhM.roa
File: lOPdzoRu9BhfZP6i6eFm9O2rXhM.roa (raw, json)
Hash identifier: bN/JtQzPRj7HCPPPDJ6SJ10bAczFdJFp7n5MK1bC8q4=
Subject key identifier: 94:E3:DD:CE:84:6E:F4:18:5F:64:FE:A2:E9:E1:66:F4:ED:AB:5E:13
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019049752DC0A08E582BF03C187E4311605A
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lOPdzoRu9BhfZP6i6eFm9O2rXhM.roa
Signing time: Mon 24 Jun 2024 08:55:34 +0000
ROA not before: Mon 24 Jun 2024 08:55:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197992
IP address blocks: 2a06:dfc0::/29 maxlen: 29
2a0c:4880::/29 maxlen: 29
2a0e:5a80::/29 maxlen: 29
2a0e:f500::/29 maxlen: 29
2a0f:6d80::/29 maxlen: 29
2a0f:7f00::/29 maxlen: 29
2a0f:8100::/29 maxlen: 29
2a0f:8300::/29 maxlen: 29
2a0f:9e00::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:da40::/29 maxlen: 29
2a0f:dac0::/29 maxlen: 29
2a0f:de40::/29 maxlen: 29
2a0f:e0c0::/29 maxlen: 29
2a0f:e140::/29 maxlen: 29
2a0f:e4c0::/29 maxlen: 29
2a0f:e5c0::/29 maxlen: 29
2a0f:e640::/29 maxlen: 29
2a0f:e9c0::/29 maxlen: 29
2a0f:ec00::/29 maxlen: 29
2a0f:ee00::/29 maxlen: 29
2a0f:fc00::/29 maxlen: 29
2a10:3840::/29 maxlen: 29
2a10:5c00::/29 maxlen: 29
2a10:6400::/29 maxlen: 29
2a10:7700::/29 maxlen: 29
2a10:7b00::/29 maxlen: 29
2a12:d540::/29 maxlen: 29
2a12:eb40::/29 maxlen: 29
2a13:200::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 22 Jul 2024 09:45:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:49:75:2d:c0:a0:8e:58:2b:f0:3c:18:7e:43:11:60:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 24 08:55:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94e3ddce846ef4185f64fea2e9e166f4edab5e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b7:15:48:87:28:2d:00:0f:da:44:9a:aa:ff:
07:88:c7:12:be:0a:d1:b3:5a:28:1c:ea:d4:0b:c0:
fe:8b:9c:f1:b9:dd:5c:e7:c9:1c:2e:68:f6:6e:34:
af:10:ef:eb:84:98:7a:4d:09:74:0e:1d:2b:fd:c5:
af:8b:3b:f1:0a:d7:e8:22:82:fb:be:d2:f2:a3:7b:
5b:aa:15:f8:ef:bc:5d:83:5f:78:cc:53:12:f3:ad:
e8:6b:b9:24:53:42:8a:5d:34:58:43:6c:cc:2a:2e:
b5:fc:8b:22:ef:fb:d0:40:b9:07:25:ad:5d:2c:a0:
95:20:06:5e:7a:a3:bd:a5:a2:4f:61:6a:de:6c:b7:
04:a0:6a:21:cf:04:d4:95:bf:3e:95:90:b2:4c:d5:
9f:91:70:f7:d5:28:54:d7:99:5d:d0:8c:c2:eb:f4:
c3:c8:17:4c:ff:62:56:d0:70:11:22:57:3b:e4:f9:
86:0e:0b:50:85:6a:79:c5:1a:e9:ea:44:cf:b4:7c:
c8:ab:d8:7c:11:94:e6:a9:ac:fa:d7:b1:19:66:84:
98:96:cf:c9:7c:77:7f:ea:bf:c7:a8:df:f1:74:a3:
63:14:0f:05:82:4a:33:98:01:60:1c:95:03:c4:ca:
cf:fb:75:5f:df:51:41:25:9a:49:89:51:d8:81:3c:
af:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:E3:DD:CE:84:6E:F4:18:5F:64:FE:A2:E9:E1:66:F4:ED:AB:5E:13
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lOPdzoRu9BhfZP6i6eFm9O2rXhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:dfc0::/29
2a0c:4880::/29
2a0e:5a80::/29
2a0e:f500::/29
2a0f:6d80::/29
2a0f:7f00::/29
2a0f:8100::/29
2a0f:8300::/29
2a0f:9e00::/29
2a0f:a200::/29
2a0f:da40::/29
2a0f:dac0::/29
2a0f:de40::/29
2a0f:e0c0::/29
2a0f:e140::/29
2a0f:e4c0::/29
2a0f:e5c0::/29
2a0f:e640::/29
2a0f:e9c0::/29
2a0f:ec00::/29
2a0f:ee00::/29
2a0f:fc00::/29
2a10:3840::/29
2a10:5c00::/29
2a10:6400::/29
2a10:7700::/29
2a10:7b00::/29
2a12:d540::/29
2a12:eb40::/29
2a13:200::/29
Signature Algorithm: sha256WithRSAEncryption
6a:26:9b:8f:ad:53:75:00:db:56:2c:2e:4b:cb:2d:2a:2d:bb:
10:90:61:16:5f:41:41:82:c3:1d:be:07:5f:ee:fa:8d:4c:3d:
ed:d2:e0:86:f2:43:54:f1:20:e5:ae:04:53:34:fc:09:86:2b:
7d:f8:37:f8:02:9d:a1:39:36:f4:52:cc:4e:d5:22:62:71:a4:
08:d0:16:49:51:07:4f:a7:4d:79:94:54:d7:65:9a:5d:c0:7a:
86:ad:60:47:8b:e3:3d:13:1e:a0:ea:5a:2c:ff:a8:b6:a7:94:
5f:ce:aa:45:6e:2b:1b:ea:e7:fe:16:d6:98:9c:13:d1:57:80:
3b:16:dc:b8:a3:1c:59:02:70:3a:b3:73:71:75:46:0e:8d:91:
06:ee:a6:29:05:3a:ee:ed:8b:82:bf:98:eb:0a:ae:10:e5:4f:
f0:a2:c3:5e:6d:90:72:51:5e:38:38:ca:b0:3c:ae:0f:5a:a0:
e8:97:53:9e:aa:94:73:fa:26:b0:ca:d4:65:b1:27:bd:ae:19:
f2:04:31:a4:43:4a:11:ac:3c:6d:17:c3:f0:a7:83:70:6e:31:
c3:4f:d9:29:12:70:a6:45:77:9b:ef:8f:48:08:29:02:67:85:
d8:1a:a6:fa:79:9a:e0:36:d0:a7:5b:d8:66:85:e6:83:af:75:
3f:36:df:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:21:14 2025 by rpki-client