Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/sVMNObNhUyBCoJuEf5vD4JGFRGw.roa
File: sVMNObNhUyBCoJuEf5vD4JGFRGw.roa (raw, json)
Hash identifier: qkC9isJrEcvkiz/9VaD6aWUvLAqab2U3MjEk5cBqUJw=
Subject key identifier: B1:53:0D:39:B3:61:53:20:42:A0:9B:84:7F:9B:C3:E0:91:85:44:6C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018E6AFC061E19F3B911CC070C4B0B09ADE9
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/sVMNObNhUyBCoJuEf5vD4JGFRGw.roa
Signing time: Sat 23 Mar 2024 11:04:45 +0000
ROA not before: Sat 23 Mar 2024 11:04:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 2a06:35c0::/30 maxlen: 30
2a06:35c4::/30 maxlen: 30
2a13:2dc0::/32 maxlen: 32
2a13:2dc1::/32 maxlen: 32
2a13:2dc2::/32 maxlen: 32
2a13:2dc3::/32 maxlen: 32
2a13:2dc4::/32 maxlen: 32
2a13:2dc5::/32 maxlen: 32
2a13:2dc6::/32 maxlen: 32
2a13:2dc7::/32 maxlen: 32
2a13:c900::/32 maxlen: 32
2a13:c901::/32 maxlen: 32
2a13:c902::/32 maxlen: 32
2a13:c903::/32 maxlen: 32
2a13:c904::/32 maxlen: 32
2a13:c905::/32 maxlen: 32
2a13:c906::/32 maxlen: 32
2a13:c907::/32 maxlen: 32
2a13:d700::/32 maxlen: 32
2a13:d701::/32 maxlen: 32
2a13:d702::/32 maxlen: 32
2a13:d703::/32 maxlen: 32
2a13:d704::/32 maxlen: 32
2a13:d705::/32 maxlen: 32
2a13:d706::/32 maxlen: 32
2a13:d707::/32 maxlen: 32
2a13:d900::/32 maxlen: 32
2a13:d901::/32 maxlen: 32
2a13:d902::/32 maxlen: 32
2a13:d903::/32 maxlen: 32
2a13:d904::/32 maxlen: 32
2a13:d905::/32 maxlen: 32
2a13:d906::/32 maxlen: 32
2a13:d907::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 25 Mar 2024 07:38:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:6a:fc:06:1e:19:f3:b9:11:cc:07:0c:4b:0b:09:ad:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Mar 23 11:04:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1530d39b361532042a09b847f9bc3e09185446c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:28:6a:f4:98:10:dc:12:cb:21:11:f0:01:5b:
e1:53:90:b7:22:d8:c7:ee:68:e4:47:ff:a1:ba:d2:
1e:01:ac:2a:67:a5:db:c0:01:22:0b:0f:b6:2d:67:
6f:6f:1e:ba:10:ce:a4:45:cb:52:7c:75:63:c7:f7:
32:01:8c:ae:9e:6a:35:d5:76:6f:67:b9:5a:08:92:
4e:fa:54:68:cf:2c:51:d8:7b:c5:93:35:31:08:d9:
fb:3f:a7:92:fc:5e:18:57:ca:20:1a:85:b9:61:f6:
b1:9c:7b:f9:60:ea:18:7c:5b:e6:4a:83:86:21:cc:
ae:0e:0a:f9:13:f3:9b:19:c2:95:c7:79:02:22:d3:
6d:8b:c1:1a:62:56:f9:9e:4e:77:67:8e:93:3f:c3:
58:78:93:87:9b:96:8b:a0:81:1a:fc:ef:7c:af:72:
b2:05:e5:b1:b0:91:fe:2f:fa:8a:55:67:be:86:fe:
5f:be:d5:5a:18:5f:f5:61:c5:52:d4:0a:f6:8d:ac:
63:10:c0:71:da:95:b4:74:93:7d:e0:97:64:99:c7:
a5:bc:39:3a:a2:8c:18:79:8a:27:e4:1c:dc:cb:cd:
ef:9c:ea:88:77:81:f5:de:d8:b6:7e:36:77:4e:b3:
28:26:d6:c3:05:bd:6a:3c:b4:ed:18:fa:29:a0:52:
c4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:53:0D:39:B3:61:53:20:42:A0:9B:84:7F:9B:C3:E0:91:85:44:6C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/sVMNObNhUyBCoJuEf5vD4JGFRGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:35c0::/29
2a13:2dc0::/29
2a13:c900::/29
2a13:d700::/29
2a13:d900::/29
Signature Algorithm: sha256WithRSAEncryption
b6:11:98:65:f6:cf:7b:b8:9e:db:13:3c:d1:de:89:85:9d:b0:
73:9b:e6:12:c7:4a:8b:14:04:e3:43:b6:9f:72:a6:37:d9:9c:
ee:fe:40:b7:df:78:86:bf:43:9c:c1:eb:ad:85:03:17:2b:26:
9a:24:0c:b1:86:8b:93:ed:b2:e1:ab:b7:f3:18:b7:bc:6a:fe:
4a:fa:f7:60:54:12:88:03:a7:05:bd:b3:b8:b1:65:89:2b:43:
d6:26:4a:1f:d5:25:e2:67:e2:27:6a:39:a9:b4:92:c6:b1:5e:
4e:63:70:9e:4e:bd:da:a6:99:82:35:96:71:00:79:e5:b8:75:
c7:d7:df:48:34:73:69:e9:b4:4a:92:85:01:13:74:10:62:48:
87:d8:3d:76:99:ff:18:98:45:0a:b0:01:e7:bb:cc:54:06:f0:
68:a5:96:1d:14:fa:6c:56:ec:b0:5d:a9:a7:6c:c8:82:60:a0:
eb:d0:29:ac:1f:d7:c2:0e:ce:6e:28:36:64:64:f7:9a:04:33:
8c:c8:40:a5:04:cc:6a:01:ff:37:bd:59:5d:8e:00:e6:13:85:
ce:06:eb:27:96:fd:30:0d:50:53:ff:8e:31:09:31:bc:c5:9a:
10:18:49:22:77:05:29:a1:66:03:0c:2d:79:fa:ad:64:2a:da:
0b:ec:8a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:05:12 2025 by rpki-client