Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/zLvuE9X-akNphQvzI3OPiRuAAqk.roa
File: zLvuE9X-akNphQvzI3OPiRuAAqk.roa (raw, json)
Hash identifier: M9XelK7Wci6CW5JzEZybsGDngANisSTEOalBoSAwyB8=
Subject key identifier: CC:BB:EE:13:D5:FE:6A:43:69:85:0B:F3:23:73:8F:89:1B:80:02:A9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01916AD88E7AAD9BF4CF5C0BE1EE42123441
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/zLvuE9X-akNphQvzI3OPiRuAAqk.roa
Signing time: Mon 19 Aug 2024 13:34:22 +0000
ROA not before: Mon 19 Aug 2024 13:34:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24940
IP address blocks: 2a0a:2d06:101::/48 maxlen: 48
2a0f:e7c3:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 17 Sep 2024 10:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6a:d8:8e:7a:ad:9b:f4:cf:5c:0b:e1:ee:42:12:34:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 19 13:34:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccbbee13d5fe6a4369850bf323738f891b8002a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b0:02:84:a6:90:e2:b7:47:50:e8:f8:d8:42:
9e:40:2b:80:92:6f:20:10:70:6c:8c:a4:79:57:76:
fa:21:b7:ed:bc:c0:f6:54:a3:27:45:df:0d:78:93:
4a:86:d5:3c:b2:b0:de:fb:46:fc:70:f1:91:50:9b:
cf:eb:ac:27:9f:1d:8d:e2:76:57:42:74:76:57:1d:
a3:bc:5f:48:c4:15:42:40:b3:d0:fa:a4:07:05:ab:
07:4e:b8:38:f7:75:01:4c:52:e1:4c:37:5a:b4:98:
9c:34:92:c8:40:72:80:26:91:04:ca:91:0d:c1:70:
81:d1:05:9e:c6:03:90:15:02:f9:dc:65:d6:f5:4c:
85:83:1b:3a:c7:5e:d1:e7:29:8c:c3:3d:44:9e:88:
df:a4:32:73:04:01:fe:84:dd:08:dc:de:77:44:32:
22:eb:60:a1:3f:2a:1f:0f:cd:b3:cb:a7:9e:29:2d:
09:44:33:91:44:85:8a:23:6b:46:a9:66:ac:93:d0:
7e:06:54:2a:89:ad:f9:32:4d:0c:df:dc:09:81:16:
4a:5b:21:c5:da:30:b6:1c:a7:69:c5:ed:1d:b0:3e:
0a:65:86:85:74:50:da:cb:31:d1:41:32:eb:41:32:
c3:74:90:6c:63:21:ca:82:e3:da:1a:65:35:8a:d6:
6f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BB:EE:13:D5:FE:6A:43:69:85:0B:F3:23:73:8F:89:1B:80:02:A9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/zLvuE9X-akNphQvzI3OPiRuAAqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:2d06:101::/48
2a0f:e7c3:1::/48
Signature Algorithm: sha256WithRSAEncryption
3a:1b:6c:c2:27:9e:7a:ae:99:7b:0d:37:a3:f9:b9:a0:62:2b:
8c:a3:68:09:77:46:6b:fc:c3:6b:9c:8c:5b:cb:3b:58:dd:c3:
d5:30:af:da:55:27:a1:98:33:b9:2d:bb:d5:4f:1a:cb:08:9d:
12:76:b3:85:87:1a:15:c5:bc:ca:ca:6b:e9:9d:2c:b5:a7:46:
b5:61:ad:54:37:89:64:05:62:3b:59:12:fc:38:3b:95:f4:f7:
fc:6b:60:b1:13:05:c1:d1:ce:08:af:17:75:6c:05:a9:75:df:
8e:17:53:49:86:4c:ab:31:05:18:c0:b3:34:40:7e:aa:8e:ba:
ab:a2:fd:ad:3a:23:50:fa:34:01:5f:8a:0d:38:28:4b:32:6b:
c7:71:c1:6c:67:29:27:ca:a6:db:c6:a8:7e:b5:40:ef:2a:43:
5b:b9:5b:58:02:df:40:96:39:de:c2:1f:eb:e5:be:4e:28:16:
40:a7:55:df:43:62:76:e6:b7:63:24:92:27:ea:58:b9:b3:91:
2b:e8:37:90:d2:d8:dc:5c:09:09:ef:d9:30:f3:3b:c1:04:80:
b0:da:52:ef:1e:d8:5b:4f:ae:f6:d3:2f:ae:c2:b8:47:fc:1f:
1d:bd:12:56:f2:a7:c1:c6:96:16:61:52:9e:22:a7:93:ce:34:
62:9b:d9:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:04:25 2025 by rpki-client