Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lV7ER2yXBA1kNEeSaEUrW4p3m20.roa
File: lV7ER2yXBA1kNEeSaEUrW4p3m20.roa (raw, json)
Hash identifier: cegxjZVD3c+2eTnhy4LW8jq1XO5DNoMnw/3e3BJwB00=
Subject key identifier: 95:5E:C4:47:6C:97:04:0D:64:34:47:92:68:45:2B:5B:8A:77:9B:6D
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01919E9AFC86D8B76EA03C3809A744D67FB0
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lV7ER2yXBA1kNEeSaEUrW4p3m20.roa
Signing time: Thu 29 Aug 2024 14:47:22 +0000
ROA not before: Thu 29 Aug 2024 14:47:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 2a13:7d80::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 30 Aug 2024 08:12:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9e:9a:fc:86:d8:b7:6e:a0:3c:38:09:a7:44:d6:7f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 29 14:47:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=955ec4476c97040d6434479268452b5b8a779b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:64:df:4d:50:f1:32:d3:23:93:d9:4f:f6:4d:
72:af:44:45:2a:0f:fe:68:4a:b9:19:ce:19:a5:ac:
4b:be:a6:08:70:70:6d:2b:6a:91:cb:25:b8:25:40:
fe:13:72:24:8d:ee:59:45:2b:bb:4f:6e:62:63:96:
5c:86:2f:3b:6e:7f:ac:5a:8c:b2:64:b8:f6:f1:57:
53:a3:ec:e1:90:5f:33:e5:2e:c1:05:5b:dc:30:14:
a1:68:cb:33:73:fb:f3:3f:fd:aa:46:6b:11:0a:5f:
51:a5:41:79:26:cd:f9:0f:2c:5a:4e:d1:84:6a:1d:
1a:4f:a5:32:17:d4:23:76:fb:a5:1d:a2:fa:5b:1b:
f5:35:5e:84:b6:54:84:8d:e3:9e:ad:da:74:ba:9b:
15:e2:27:1a:d2:55:41:66:c8:e0:a4:a6:6d:00:56:
ee:40:d9:d9:a8:6e:e4:0b:0c:e3:dd:f8:1f:db:50:
79:e8:d2:93:65:78:b1:a7:40:3e:1d:1e:66:40:97:
95:a0:46:de:1e:c2:c5:0a:b2:f6:79:d3:5e:a4:3c:
7e:31:a2:ad:8e:5d:f9:cd:a6:ed:0b:83:f9:db:bc:
3f:f5:15:76:7e:dc:e6:d4:1f:cc:3c:cd:af:92:a4:
63:86:eb:dd:a6:f7:d3:5b:db:4d:66:df:90:ac:f4:
58:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5E:C4:47:6C:97:04:0D:64:34:47:92:68:45:2B:5B:8A:77:9B:6D
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lV7ER2yXBA1kNEeSaEUrW4p3m20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
15:48:02:a0:ed:f8:ac:e3:8e:89:42:90:b3:45:56:87:4c:98:
db:3b:4f:4b:37:ac:d4:a8:12:e9:af:29:86:e1:e7:6e:d1:1b:
5a:cc:4e:92:94:0d:89:10:4b:1c:e2:4e:21:91:50:0c:b2:3c:
a6:78:b0:1e:8f:0c:28:70:2a:5f:3d:cb:30:22:fd:95:2b:e2:
06:49:ca:82:50:86:a7:86:c4:dd:e2:3f:73:ad:17:94:52:88:
5d:d4:1e:f9:ce:ec:cf:01:13:f7:55:55:fb:27:a6:de:8d:7b:
51:56:36:cd:38:cb:c7:66:83:72:11:f9:b8:3d:cd:d8:02:d7:
0e:0c:19:70:c1:d0:50:b8:ca:b8:f0:cf:ff:02:e6:c7:6d:cb:
98:98:bb:c0:1f:35:51:a8:62:85:0a:4f:e5:9d:a0:ee:18:35:
67:26:b7:a6:30:52:33:c1:d7:a9:d1:7a:1e:d7:83:da:9e:41:
7a:d6:dc:03:d0:43:f4:62:53:9f:66:82:33:10:ec:28:54:03:
d3:84:e9:82:16:35:76:d3:be:b2:95:d5:90:54:1e:4f:ac:65:
ca:da:c7:6f:f2:fa:df:89:2f:44:29:4e:e9:c3:d7:07:80:ef:
62:84:68:5e:ce:30:0d:d6:91:19:c1:09:6c:ff:81:ba:44:c7:
05:83:be:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:01:27 2025 by rpki-client