Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/t7iSMlQwY-gZL8jnwqTbIjlr5Uo.roa
File: t7iSMlQwY-gZL8jnwqTbIjlr5Uo.roa (raw, json)
Hash identifier: SgWPL7D+hgVobTrl87mzCm5g2Nw8HnIXp6VItxw61js=
Subject key identifier: B7:B8:92:32:54:30:63:E8:19:2F:C8:E7:C2:A4:DB:22:39:6B:E5:4A
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019300AA9EA1D3839B9CDA667944034CFD4B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/t7iSMlQwY-gZL8jnwqTbIjlr5Uo.roa
Signing time: Wed 06 Nov 2024 08:50:01 +0000
ROA not before: Wed 06 Nov 2024 08:50:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24940
IP address blocks: 2a0f:e7c3:1::/48 maxlen: 48
2a12:ac46:99::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 06 Nov 2024 14:15:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:00:aa:9e:a1:d3:83:9b:9c:da:66:79:44:03:4c:fd:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Nov 6 08:50:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7b89232543063e8192fc8e7c2a4db22396be54a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5f:1c:09:ba:f1:11:18:a2:d4:c9:ab:e5:a3:
f0:12:35:00:c7:3f:70:1b:85:de:94:a9:19:94:53:
88:2a:46:33:56:ee:61:b0:c8:02:25:dc:92:74:47:
f1:5d:78:da:cf:1f:9d:a8:52:9c:d0:4a:0b:f9:d9:
98:5e:c6:24:93:34:53:19:f2:6c:2f:69:cd:a1:26:
c0:a9:14:e4:e1:d2:70:a0:0c:78:6b:98:ba:e3:42:
3b:9f:a1:a2:d3:75:8f:7d:ed:1c:1f:9a:6a:b5:8d:
21:9a:1c:bc:31:db:64:ff:bb:df:28:e7:a7:e1:fd:
2d:05:f3:fe:83:1e:44:ad:91:a6:6b:86:63:c7:8c:
aa:77:da:4c:2c:8d:17:0c:c3:ed:2d:c1:ab:8c:a4:
de:aa:18:e2:32:2c:0a:a6:12:53:f7:dd:29:8f:91:
2f:8b:8c:eb:39:cd:d4:90:9c:cd:78:01:b4:82:3f:
96:7b:89:06:48:c9:71:58:b0:55:95:51:25:a6:78:
fe:fb:60:de:f4:3d:7e:ea:bf:ae:91:87:5f:27:2e:
7e:5e:d3:29:6c:d6:85:0d:30:49:dc:63:4f:54:15:
1f:ed:28:36:2f:a1:e5:88:df:a7:c3:af:7b:30:fe:
67:bf:27:35:a2:3b:02:47:fa:48:86:26:a3:79:ad:
27:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B8:92:32:54:30:63:E8:19:2F:C8:E7:C2:A4:DB:22:39:6B:E5:4A
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/t7iSMlQwY-gZL8jnwqTbIjlr5Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:e7c3:1::/48
2a12:ac46:99::/48
Signature Algorithm: sha256WithRSAEncryption
25:e3:9f:c5:9f:c4:f2:48:4a:75:d9:6c:ce:66:45:a9:67:d4:
3f:52:57:3c:13:2f:28:ae:cd:97:e9:c3:57:70:f2:5b:4d:fc:
22:c4:91:02:4c:2e:77:a5:b9:49:18:0b:54:03:17:97:64:fb:
ba:f9:86:7a:cf:eb:d7:40:4a:3e:3c:1d:e4:b0:32:c7:2b:82:
23:e0:56:ea:b8:1c:dc:68:2c:48:2f:0c:48:c3:3c:82:42:f3:
30:d3:de:c3:55:5b:ad:e9:ae:89:d3:bb:06:7f:66:ed:78:92:
66:2a:04:32:97:03:fd:52:9a:5b:be:f9:ad:4e:64:b0:ba:1c:
1d:9c:79:a4:4a:72:0f:0f:bd:04:0b:c8:ee:a0:fb:08:9d:e5:
3a:de:3e:0b:c1:32:1b:b3:71:90:9c:5a:85:a0:d9:67:f8:32:
20:f7:ad:e5:c6:19:51:da:14:c6:ce:ac:a0:61:86:5a:a4:b2:
4a:53:1c:d1:c3:7b:d1:51:8c:f7:d5:2a:d3:ba:6e:7d:0f:c2:
46:0d:4e:fe:96:c3:a3:5a:d6:d0:ec:e6:8b:90:74:6a:eb:35:
c7:f2:e0:b7:78:f0:c3:62:47:1a:f5:fe:00:f5:b0:8f:9d:e9:
fc:4d:92:02:cb:86:2f:20:63:66:6f:70:ce:68:30:c4:c8:69:
5e:6f:84:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 22:53:22 2025 by rpki-client