Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/urulmaOHaW5wuLL8qTNkiDLKzjM.roa
File: urulmaOHaW5wuLL8qTNkiDLKzjM.roa (raw, json)
Hash identifier: ZWnXWnRtcfvRPeIiFmhubocOEmBa9Av2gWTJKNsfXyc=
Subject key identifier: BA:BB:A5:99:A3:87:69:6E:70:B8:B2:FC:A9:33:64:88:32:CA:CE:33
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019001BD32B0A33DFDAFA15B43822DDF55BC
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/urulmaOHaW5wuLL8qTNkiDLKzjM.roa
Signing time: Mon 10 Jun 2024 10:41:34 +0000
ROA not before: Mon 10 Jun 2024 10:41:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 2a0c:7884::/32 maxlen: 32
2a0e:1a84::/32 maxlen: 32
2a0f:2d80:1292::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:e847:1::/48 maxlen: 48
2a13:18c0:2::/48 maxlen: 48
2a13:18c2::/32 maxlen: 32
2a13:18c3::/32 maxlen: 32
2a13:2b40::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 11 Jun 2024 06:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:01:bd:32:b0:a3:3d:fd:af:a1:5b:43:82:2d:df:55:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 10 10:41:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=babba599a387696e70b8b2fca933648832cace33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:40:88:da:64:8f:a3:e5:ef:b8:3d:af:03:42:
f1:ec:83:f5:67:77:7f:31:3d:f8:37:49:04:a3:77:
33:8d:19:34:c9:df:65:a4:54:4a:0c:19:83:51:2e:
d3:a9:2c:bf:0f:41:6c:8c:75:d2:36:b5:ee:9c:61:
35:1b:86:c9:d1:59:21:b0:75:9d:cb:3d:4b:d6:d6:
5c:9f:38:65:8e:25:da:40:c8:49:f8:01:7c:f4:93:
d9:bf:73:39:f1:50:9a:02:01:f7:ad:f5:bb:43:76:
ce:a0:67:68:d8:0f:f7:65:b0:d7:4c:94:d9:a5:d6:
b5:94:97:71:53:f7:02:35:e6:90:7e:e6:76:25:07:
50:ae:a0:a6:75:52:c2:6b:2b:6a:94:b6:2c:a3:57:
b3:19:1c:e5:93:40:b2:cf:a2:d9:3d:8f:72:6d:64:
c1:4c:1c:65:59:60:82:be:ee:f7:0e:2a:26:08:50:
8a:8e:5e:48:fd:77:b4:f8:94:e2:20:38:bc:5e:4c:
ac:1c:0f:2c:a7:46:0b:43:40:6a:09:60:0e:2c:95:
80:5a:a5:48:46:b8:81:43:00:7e:4f:52:c5:85:b7:
b7:5a:56:e8:26:93:30:37:f0:9f:1f:74:bb:d5:cf:
47:b2:38:07:b8:9f:2f:d5:8f:b7:b8:10:14:44:65:
b8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BB:A5:99:A3:87:69:6E:70:B8:B2:FC:A9:33:64:88:32:CA:CE:33
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/urulmaOHaW5wuLL8qTNkiDLKzjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:7884::/32
2a0e:1a84::/32
2a0f:2d80:1292::/48
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:e847:1::/48
2a13:18c0:2::/48
2a13:18c2::/31
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
17:90:eb:4e:0d:1e:bd:cd:97:15:4e:50:5d:59:57:c6:ad:52:
6b:b5:c4:6e:9d:32:6a:36:22:8c:b0:42:60:a4:97:ad:7a:4a:
82:47:c8:7f:00:5c:d4:03:f4:1f:c8:3d:bf:b4:59:13:e0:10:
a5:4b:c4:d4:a4:3f:e8:e2:35:58:4b:37:bc:9c:60:f1:e8:cb:
e5:8a:fd:58:39:d7:f0:98:08:0f:13:e6:ff:70:2d:38:97:95:
ad:83:79:44:2d:90:8d:2a:8d:6e:d8:a2:00:9b:a9:75:06:8d:
c8:8a:9a:c3:b8:27:8c:1c:b1:27:e3:83:71:81:89:52:ef:bd:
62:5d:1d:68:5d:5c:f9:53:d4:79:c8:1f:b6:66:d6:33:81:13:
b0:f4:25:10:4d:f9:4a:65:af:cf:c5:ac:06:07:f2:1e:8c:12:
b7:f7:94:ab:aa:3c:58:54:ae:e1:ca:49:67:a2:50:93:c6:1b:
66:2a:45:bd:ce:e7:f1:e9:8f:da:3d:d5:e5:ff:15:90:7a:95:
cd:04:3d:77:d2:f7:ce:b3:98:f8:91:67:aa:e4:64:8b:e3:30:
1e:4a:6c:0b:dc:1f:5a:fe:29:23:c0:d2:3e:92:e2:86:a1:2f:
68:b6:07:f1:f4:95:1c:02:7f:1e:85:9b:85:72:3d:b1:6c:5d:
c0:07:f5:ce
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgISAZABvTKwoz39r6FbQ4It31W8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwNjEwMTA0MTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWJiYTU5OWEzODc2OTZlNzBiOGIyZmNhOTMzNjQ4ODMyY2FjZTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0CI2mSPo+XvuD2vA0Lx7IP1Z3d/
MT34N0kEo3czjRk0yd9lpFRKDBmDUS7TqSy/D0FsjHXSNrXunGE1G4bJ0VkhsHWd
yz1L1tZcnzhljiXaQMhJ+AF89JPZv3M58VCaAgH3rfW7Q3bOoGdo2A/3ZbDXTJTZ
pda1lJdxU/cCNeaQfuZ2JQdQrqCmdVLCaytqlLYso1ezGRzlk0Cyz6LZPY9ybWTB
TBxlWWCCvu73DiomCFCKjl5I/Xe0+JTiIDi8XkysHA8sp0YLQ0BqCWAOLJWAWqVI
RriBQwB+T1LFhbe3WlboJpMwN/CfH3S71c9HsjgHuJ8v1Y+3uBAURGW44QIDAQAB
o4ICTDCCAkgwHQYDVR0OBBYEFLq7pZmjh2lucLiy/KkzZIgyys4zMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvdXJ1bG1hT0hhVzV3dUxMOHFUTmtpRExLempNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGIGCCsGAQUFBwEHAQH/BFMwUTBPBAIAAjBJAwUAKgx4hAMF
ACoOGoQDBwAqDy2AEpIDBwAqD30AAAEDBwAqD7wAocQDBwAqD+hHAAEDBwAqExjA
AAIDBQEqExjCAwUDKhMrQDANBgkqhkiG9w0BAQsFAAOCAQEAF5DrTg0evc2XFU5Q
XVlXxq1Sa7XEbp0yajYijLBCYKSXrXpKgkfIfwBc1AP0H8g9v7RZE+AQpUvE1KQ/
6OI1WEs3vJxg8ejL5Yr9WDnX8JgIDxPm/3AtOJeVrYN5RC2QjSqNbtiiAJupdQaN
yIqaw7gnjByxJ+ODcYGJUu+9Yl0daF1c+VPUecgftmbWM4ETsPQlEE35SmWvz8Ws
BgfyHowSt/eUq6o8WFSu4cpJZ6JQk8YbZipFvc7n8emP2j3V5f8VkHqVzQQ9d9L3
zrOY+JFnquRki+MwHkpsC9wfWv4pI8DSPpLihqEvaLYH8fSVHAJ/HoWbhXI9sWxd
wAf1zg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:04:47 2025 by rpki-client