Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mOTUbuhGm511vhvyUrmJRReMwmM.roa
File: mOTUbuhGm511vhvyUrmJRReMwmM.roa (raw, json)
Hash identifier: zDHNcmL/VPVffys+m0KU/XlnqC/Dp9P3WOz/XDCom/s=
Subject key identifier: 98:E4:D4:6E:E8:46:9B:9D:75:BE:1B:F2:52:B9:89:45:17:8C:C2:63
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018F778EEB1C2E04EF1031E485B98A70CD38
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mOTUbuhGm511vhvyUrmJRReMwmM.roa
Signing time: Tue 14 May 2024 14:43:25 +0000
ROA not before: Tue 14 May 2024 14:43:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 64.226.54.0/23 maxlen: 23
64.226.156.0/22 maxlen: 22
2a0f:e847:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 29 May 2024 15:08:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:77:8e:eb:1c:2e:04:ef:10:31:e4:85:b9:8a:70:cd:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 14 14:43:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98e4d46ee8469b9d75be1bf252b98945178cc263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6b:ed:0a:83:8c:de:76:60:af:f7:7c:e1:a8:
e6:b2:39:4f:64:68:4f:e3:9a:76:23:99:cd:f0:e0:
95:5e:d8:48:75:ed:a6:b7:e5:33:17:fa:c8:1e:63:
c0:b4:e2:ce:4e:50:9d:14:5f:74:1f:46:ee:97:f4:
30:8c:fe:92:a7:ad:c5:94:89:2a:a6:83:fd:97:76:
f6:84:43:e9:a7:4b:71:3f:b3:39:ed:3f:0f:da:ed:
42:5c:eb:8a:9f:71:3a:fb:02:d4:42:90:bb:95:52:
65:e0:4c:e6:db:e5:4c:73:9e:da:b9:1c:96:a8:cc:
b5:6c:92:ed:e6:1a:fd:91:12:1a:60:93:0e:6b:75:
7c:ca:45:22:4a:dd:db:8a:07:a0:33:ce:1a:5d:bd:
34:89:7c:c6:66:e2:76:97:07:d6:5e:b0:53:97:cb:
a5:da:33:cb:e8:92:d6:10:d4:8e:9b:d0:91:57:57:
bf:b3:83:d0:b7:0a:9a:81:bc:b4:85:88:57:45:6d:
58:4a:1e:76:73:df:5b:e8:63:97:e5:c9:40:fd:2f:
2c:07:ed:2d:88:05:0f:6e:e6:a8:86:54:26:d9:58:
48:42:e7:58:87:90:25:09:2e:eb:36:66:6d:19:b1:
8f:98:ec:a4:11:ea:f1:e7:13:be:83:c4:15:c3:c1:
7b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E4:D4:6E:E8:46:9B:9D:75:BE:1B:F2:52:B9:89:45:17:8C:C2:63
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mOTUbuhGm511vhvyUrmJRReMwmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.226.54.0/23
64.226.156.0/22
IPv6:
2a0f:e847:ffff::/48
Signature Algorithm: sha256WithRSAEncryption
a9:b5:5f:7c:16:59:ed:4c:79:bb:2d:28:6c:f6:f2:58:6b:19:
b8:af:15:3c:86:95:3d:1f:06:aa:09:96:ed:c9:0a:5e:d6:76:
7d:98:d8:73:50:fe:3b:a0:fb:e4:9a:3d:7e:b8:d4:a8:05:b1:
e4:04:9c:6b:81:bd:1f:72:e5:a2:23:ce:88:9a:90:08:9f:3a:
91:e1:80:47:45:1e:27:2a:d7:73:d4:08:00:f2:13:1b:cb:02:
68:f5:ff:66:5c:b6:4a:7e:32:07:a6:7a:92:bd:a3:10:19:b1:
84:18:2f:c2:1a:9a:fd:bc:c5:b9:99:5d:0d:d2:4b:e2:02:56:
e8:50:f0:34:28:34:90:2f:11:08:09:04:55:c5:d4:df:f3:18:
5a:38:49:ae:c0:ad:04:0e:0c:35:a2:5f:24:e2:b5:40:53:c6:
08:a4:88:6f:03:60:57:e7:99:b8:97:1c:60:31:55:42:a1:13:
b9:63:6b:bc:85:4e:b6:ad:40:6b:f0:cf:d1:0f:ca:cd:64:93:
68:1b:ce:97:05:96:59:08:18:31:75:eb:16:ed:41:7b:ca:5c:
17:5c:42:94:04:7f:93:4a:ea:fc:b9:62:98:17:03:7b:f6:ce:
b4:7c:6d:ea:21:92:c0:b4:d3:31:2d:be:95:b1:dd:67:97:e4:
a7:3a:4e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:21 2025 by rpki-client