Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/wTuKDVeFo201HVqx3PzjL4q25FQ.roa
File: wTuKDVeFo201HVqx3PzjL4q25FQ.roa (raw, json)
Hash identifier: ZwRfuxxYrXfN2Uq8i8LmrSkB3HRdW4Okri702X9lqoU=
Subject key identifier: C1:3B:8A:0D:57:85:A3:6D:35:1D:5A:B1:DC:FC:E3:2F:8A:B6:E4:54
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0190512011A60F285755E7791C13B425D484
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/wTuKDVeFo201HVqx3PzjL4q25FQ.roa
Signing time: Tue 25 Jun 2024 20:39:34 +0000
ROA not before: Tue 25 Jun 2024 20:39:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 2a0f:7d07::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jul 2024 13:38:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:51:20:11:a6:0f:28:57:55:e7:79:1c:13:b4:25:d4:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 25 20:39:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c13b8a0d5785a36d351d5ab1dcfce32f8ab6e454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:33:e4:cb:7c:06:4b:b6:dd:6a:49:7c:f0:27:
91:67:c3:e6:f4:91:a4:ee:2a:7c:c1:51:d9:dd:36:
d5:4c:d9:93:52:5e:73:ba:97:f7:e4:b7:5f:8c:ba:
7a:ca:c3:1d:86:df:2b:50:fb:ea:2c:6d:58:36:a8:
1f:78:ef:b8:52:d4:43:64:a7:a5:07:4c:7c:88:56:
d8:70:60:a3:4a:5d:5b:7c:09:24:dd:de:a8:0c:a7:
3f:01:48:39:a7:ad:87:24:18:a8:69:13:f6:54:ed:
67:99:ac:bb:15:3d:0b:18:9e:2a:fb:3e:0c:cb:6a:
5e:fe:98:0a:04:49:ee:3b:9f:86:59:c9:d3:82:eb:
45:4b:e4:96:e1:c1:bd:6b:07:65:55:7b:34:2b:aa:
49:44:71:dd:6b:2d:33:53:cf:d1:bf:ff:03:d4:6a:
7f:20:00:1e:a0:4e:56:46:94:79:05:fd:f8:b7:53:
4d:3f:34:00:75:2f:d7:f1:00:75:69:22:cd:4d:11:
0e:b1:f2:a3:2e:2b:c4:0e:fd:2b:da:30:d9:33:12:
16:94:4f:67:13:fe:61:fb:b0:66:7f:69:6a:e7:47:
7a:8c:ae:fc:c5:11:c1:48:96:0e:40:c0:b0:8d:32:
52:5c:f3:12:10:ac:1a:b3:3b:a0:6a:8c:72:96:f3:
f0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3B:8A:0D:57:85:A3:6D:35:1D:5A:B1:DC:FC:E3:2F:8A:B6:E4:54
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/wTuKDVeFo201HVqx3PzjL4q25FQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7d07::/32
Signature Algorithm: sha256WithRSAEncryption
32:77:6d:56:d9:8c:ad:48:e7:ba:56:f3:ac:43:31:5c:e2:c3:
c5:02:89:81:7f:81:3b:1c:04:50:a8:17:bb:b6:98:d1:2e:40:
22:72:cd:77:f3:35:a8:eb:c6:d8:80:04:05:a4:d1:a8:33:24:
70:f2:4e:f5:ea:df:53:82:73:f6:8a:7e:76:f7:6e:2f:05:01:
7e:09:08:8b:5d:87:14:12:33:5c:49:f9:95:b5:6a:ec:45:2b:
aa:e7:45:da:ef:56:68:7c:ca:d5:8c:a7:98:b1:15:9c:53:80:
2d:57:b7:09:2d:fd:56:0d:d2:49:3d:cd:ec:15:69:07:8d:ee:
c2:bc:20:73:99:46:3e:ff:b4:78:b3:c3:f0:a5:3c:c4:59:3e:
3b:54:7c:0f:b4:90:d9:dc:38:e8:98:65:97:aa:96:72:56:07:
47:0d:69:d0:bc:4c:47:bb:80:77:95:46:11:a5:25:ef:ed:4b:
e2:a4:dc:ad:e8:83:53:41:ae:9e:fb:d8:e7:dd:18:04:81:d8:
29:c4:4a:bb:fe:b4:df:20:e4:6c:d3:12:ac:76:85:0a:39:18:
81:db:ea:8d:11:1d:b8:db:be:7f:32:da:15:14:06:ea:b1:d5:
d1:94:44:46:85:2e:14:8c:27:e3:3d:20:93:65:18:09:86:96:
e9:f6:ab:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:09 2025 by rpki-client