Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mUO1yeBKwhiqLspHPsFy-kAFZ9A.roa
File: mUO1yeBKwhiqLspHPsFy-kAFZ9A.roa (raw, json)
Hash identifier: jKStuZuSAT/5FctuFmzCJH522GQcQA3Y0jjN8boKSjs=
Subject key identifier: 99:43:B5:C9:E0:4A:C2:18:AA:2E:CA:47:3E:C1:72:FA:40:05:67:D0
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0195B7DF2AEFAB61A4D1C000B3540C6AAAAE
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mUO1yeBKwhiqLspHPsFy-kAFZ9A.roa
Signing time: Fri 21 Mar 2025 08:43:30 +0000
ROA not before: Fri 21 Mar 2025 08:43:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212477
IP address blocks: 2a0c:4880::/29 maxlen: 29
2a0e:2440::/29 maxlen: 29
2a0e:e980::/29 maxlen: 29
2a0f:a00::/29 maxlen: 29
2a0f:1440::/29 maxlen: 29
2a0f:14c0::/29 maxlen: 29
2a0f:17c0::/29 maxlen: 29
2a0f:1840::/29 maxlen: 29
2a0f:1ac0::/29 maxlen: 29
2a0f:1f80::/29 maxlen: 29
2a0f:1fc0::/29 maxlen: 29
2a0f:29c0::/29 maxlen: 29
2a0f:2a40::/29 maxlen: 29
2a0f:2dc0::/29 maxlen: 29
2a0f:2ec0::/29 maxlen: 29
2a0f:2f80::/29 maxlen: 29
2a0f:30c0::/29 maxlen: 29
2a0f:3140::/29 maxlen: 29
2a0f:3540::/29 maxlen: 29
2a0f:35c0::/29 maxlen: 29
2a0f:36c0::/29 maxlen: 29
2a0f:9b00::/29 maxlen: 29
2a0f:c400::/29 maxlen: 29
2a0f:de40::/29 maxlen: 29
2a0f:e140::/29 maxlen: 29
2a0f:e5c0::/29 maxlen: 29
2a13:2e40::/29 maxlen: 29
2a13:d100::/29 maxlen: 29
2a13:fa00::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 23 Mar 2025 12:22:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:b7:df:2a:ef:ab:61:a4:d1:c0:00:b3:54:0c:6a:aa:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 21 08:43:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9943b5c9e04ac218aa2eca473ec172fa400567d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c2:bd:0e:57:73:e0:0a:e0:94:00:de:cf:71:
92:aa:52:26:95:00:29:e8:af:8c:a4:d7:2c:78:b9:
24:5a:d3:b4:11:90:dd:6a:c8:4c:49:eb:fc:a8:f3:
86:f6:b9:c4:2e:92:54:62:77:e4:ed:a3:4c:a1:69:
b4:e7:66:89:db:3c:30:18:8b:d8:df:36:8b:0d:cb:
64:ae:c8:7e:c2:ac:83:b9:6b:6c:3d:46:08:12:53:
cf:e5:63:0c:b0:c6:88:be:a8:52:8f:88:06:a0:59:
11:95:dd:b9:d9:4a:bf:fa:60:7a:25:8e:ec:4d:64:
f1:83:48:36:43:d9:f9:c7:e5:75:34:e8:96:48:aa:
74:6d:3a:39:30:1d:80:26:fe:98:c1:4e:a2:64:c6:
b2:a0:01:c1:c4:9b:4e:31:98:83:fd:ef:64:4b:8e:
f0:5b:7b:66:0a:5f:99:ef:fc:2c:23:b5:37:79:a5:
7b:61:86:ba:44:df:1f:03:0f:65:a5:c1:23:08:43:
1a:eb:5e:f6:6b:a0:35:30:a0:2a:20:d1:52:8e:22:
55:56:ad:5b:d0:04:49:b8:c2:0b:f0:9f:48:3a:29:
d1:f1:e4:2c:b4:3a:92:4a:5b:eb:d3:d6:d1:ae:81:
ee:26:36:6a:2f:5e:c4:6f:77:9f:c1:ca:9d:a1:26:
ad:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:43:B5:C9:E0:4A:C2:18:AA:2E:CA:47:3E:C1:72:FA:40:05:67:D0
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/mUO1yeBKwhiqLspHPsFy-kAFZ9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:4880::/29
2a0e:2440::/29
2a0e:e980::/29
2a0f:a00::/29
2a0f:1440::/29
2a0f:14c0::/29
2a0f:17c0::/29
2a0f:1840::/29
2a0f:1ac0::/29
2a0f:1f80::/29
2a0f:1fc0::/29
2a0f:29c0::/29
2a0f:2a40::/29
2a0f:2dc0::/29
2a0f:2ec0::/29
2a0f:2f80::/29
2a0f:30c0::/29
2a0f:3140::/29
2a0f:3540::/29
2a0f:35c0::/29
2a0f:36c0::/29
2a0f:9b00::/29
2a0f:c400::/29
2a0f:de40::/29
2a0f:e140::/29
2a0f:e5c0::/29
2a13:2e40::/29
2a13:d100::/29
2a13:fa00::/29
Signature Algorithm: sha256WithRSAEncryption
32:39:5e:92:1f:c1:25:c8:6a:9f:ce:8f:45:24:df:05:59:9e:
cc:29:0e:96:4e:10:3e:82:b8:5f:27:78:bb:24:7c:ac:92:b0:
39:6f:c3:9c:7e:e7:b3:0a:3a:16:92:61:21:cf:4a:73:80:14:
ea:e2:ff:f3:3a:03:65:59:11:ef:1c:40:3a:7d:51:08:36:07:
14:4d:8f:50:2a:ba:10:47:83:86:89:ad:2f:4c:96:b6:49:f4:
c7:64:57:4d:c6:92:c4:9d:22:e2:7d:38:b8:6b:87:5c:e3:5e:
bc:f7:c6:d1:df:3f:ec:d3:dd:7b:84:f2:ef:ed:7d:9a:3f:a9:
55:2d:30:fe:9f:21:ba:a3:6c:b6:5a:f6:32:5a:eb:71:6b:d1:
4f:bb:59:d9:32:57:0b:7c:89:3e:99:37:47:5f:7b:d7:26:5c:
d2:2a:0a:30:da:85:45:b7:6f:7d:b4:cd:96:0b:68:bf:a0:26:
f3:2f:67:bf:23:b1:bc:57:15:27:aa:e0:42:86:e0:08:5e:84:
bc:02:fd:95:84:9c:5c:b4:35:06:30:74:b4:17:7b:6a:ef:bf:
79:47:48:4b:b0:8a:de:15:a9:1e:79:14:4a:e6:cf:20:e9:cf:
a1:71:c6:05:87:f6:50:13:12:17:18:d9:f3:22:40:dc:68:ba:
f7:03:6b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:00:54 2025 by rpki-client