Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/7gf2_veyPBdUK5SiNElSz5407Gg.roa
File: 7gf2_veyPBdUK5SiNElSz5407Gg.roa (raw, json)
Hash identifier: +LTe6WOdGX3UTqAXYxKJpd6Jl4v21yxydJGVS+cSpVc=
Subject key identifier: EE:07:F6:FE:F7:B2:3C:17:54:2B:94:A2:34:49:52:CF:9E:34:EC:68
Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Certificate serial: 018CC348A6E354D32CF45987B96410092C35
Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/7gf2_veyPBdUK5SiNElSz5407Gg.roa
Signing time: Mon 01 Jan 2024 04:29:27 +0000
ROA not before: Mon 01 Jan 2024 04:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211858
IP address blocks: 45.67.82.0/24 maxlen: 24
2a10:c704::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:a6:e3:54:d3:2c:f4:59:87:b9:64:10:09:2c:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Validity
Not Before: Jan 1 04:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee07f6fef7b23c17542b94a2344952cf9e34ec68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3d:a4:c2:0e:ed:84:0e:12:67:1c:2d:91:1e:
75:9e:7e:88:41:30:a4:16:59:39:c9:be:fd:36:50:
41:70:56:1e:bc:86:9f:96:1b:81:db:bd:59:11:a1:
1f:89:34:1b:1d:28:22:4a:5a:82:cd:8d:04:73:d4:
c0:66:a4:0a:95:83:b7:ca:05:9a:42:93:68:b7:c5:
ec:2b:cb:61:9a:f0:2b:d4:89:6b:0d:7e:92:76:7e:
ad:c9:ba:bf:7d:2a:fd:82:71:93:e3:df:54:77:a4:
c1:2d:14:e1:d8:f7:d6:aa:23:c3:fa:51:3c:8f:f2:
d0:79:f2:e8:5c:a7:1b:16:56:8c:62:37:65:1a:2b:
ab:9d:38:39:40:6b:7a:76:4c:0d:b1:0e:f6:51:34:
d0:0e:85:58:2f:75:fa:57:53:f3:a5:3c:29:a7:84:
34:b6:3d:dd:da:4f:da:fe:00:91:ad:e7:ec:49:8f:
54:cd:a1:93:5a:7a:41:a3:bb:63:1c:05:a4:f1:42:
6f:a2:76:0d:83:48:a3:04:14:21:a6:21:e9:34:f0:
0e:be:40:08:4b:c2:c5:fc:e9:d7:55:ba:d8:27:32:
a9:74:45:1e:49:62:4a:96:95:64:a2:1b:0f:96:fc:
45:b0:05:fe:2f:0d:1f:9b:60:b9:4b:df:52:de:11:
45:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:07:F6:FE:F7:B2:3C:17:54:2B:94:A2:34:49:52:CF:9E:34:EC:68
X509v3 Authority Key Identifier:
keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/7gf2_veyPBdUK5SiNElSz5407Gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.82.0/24
IPv6:
2a10:c704::/32
Signature Algorithm: sha256WithRSAEncryption
17:66:30:8a:d3:bf:4b:f1:dc:59:96:24:4f:b0:fe:f3:9c:4a:
b1:71:97:d0:28:8f:ba:b7:40:86:d7:1f:f9:f7:02:81:27:56:
07:c0:03:32:93:7d:f2:d6:dd:a1:b8:5d:9e:20:05:8c:0a:f9:
86:ea:06:22:7b:af:0e:b1:c6:ce:e0:3d:35:72:82:c0:0c:fd:
2e:6f:e6:10:cb:40:da:7a:aa:fb:1d:9f:d8:70:bf:2a:b0:f5:
03:58:ca:b7:62:e8:a8:d6:40:98:e7:50:fd:80:81:89:97:40:
f6:cc:b9:12:bd:19:a9:6d:5e:4b:e0:bf:ba:28:80:89:50:cc:
ae:d2:5b:c5:18:e0:3d:81:33:2e:e9:21:85:e6:84:ee:0e:53:
21:f3:67:31:9c:fd:04:1a:c5:6e:0d:d4:7d:14:24:14:cd:7f:
f8:f6:77:50:a2:de:0d:3a:43:80:8c:3d:c6:ed:ad:7c:35:31:
69:9c:22:8d:24:f6:3b:11:f5:9f:e2:fd:e6:56:17:1d:b1:79:
45:c1:52:53:d9:a5:ab:35:b3:ea:b7:20:42:57:4d:f6:13:fb:
5f:e6:10:7a:27:28:87:e4:ac:b9:88:c3:7d:93:3b:56:6e:15:
4b:32:cb:5a:6c:fd:cd:0e:c1:62:69:55:f2:c9:b3:72:af:41:
40:b9:f4:80
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzDSKbjVNMs9FmHuWQQCSw1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZmVjZmEwZTY2OTI1OTVjZmJlYTUyNjYwNzZlOGU1M2Vm
ZDk0NjEwHhcNMjQwMTAxMDQyOTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTA3ZjZmZWY3YjIzYzE3NTQyYjk0YTIzNDQ5NTJjZjllMzRlYzY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAij2kwg7thA4SZxwtkR51nn6IQTCk
Flk5yb79NlBBcFYevIaflhuB271ZEaEfiTQbHSgiSlqCzY0Ec9TAZqQKlYO3ygWa
QpNot8XsK8thmvAr1IlrDX6Sdn6tybq/fSr9gnGT499Ud6TBLRTh2PfWqiPD+lE8
j/LQefLoXKcbFlaMYjdlGiurnTg5QGt6dkwNsQ72UTTQDoVYL3X6V1PzpTwpp4Q0
tj3d2k/a/gCRrefsSY9UzaGTWnpBo7tjHAWk8UJvonYNg0ijBBQhpiHpNPAOvkAI
S8LF/OnXVbrYJzKpdEUeSWJKlpVkohsPlvxFsAX+Lw0fm2C5S99S3hFF8wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFO4H9v73sjwXVCuUojRJUs+eNOxoMB8GA1UdIwQY
MBaAFG3+z6DmaSWVz76lJmB26OU+/ZRhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMt
Zjk4OGQ0OGU1MWU4LzEvN2dmMl92ZXlQQmRVSzVTaU5FbFN6NTQwN0dnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMtZjk4OGQ0OGU1MWU4
LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALUNSMA0E
AgACMAcDBQAqEMcEMA0GCSqGSIb3DQEBCwUAA4IBAQAXZjCK079L8dxZliRPsP7z
nEqxcZfQKI+6t0CG1x/59wKBJ1YHwAMyk33y1t2huF2eIAWMCvmG6gYie68OscbO
4D01coLADP0ub+YQy0Daeqr7HZ/YcL8qsPUDWMq3Yuio1kCY51D9gIGJl0D2zLkS
vRmpbV5L4L+6KICJUMyu0lvFGOA9gTMu6SGF5oTuDlMh82cxnP0EGsVuDdR9FCQU
zX/49ndQot4NOkOAjD3G7a18NTFpnCKNJPY7EfWf4v3mVhcdsXlFwVJT2aWrNbPq
tyBCV032E/tf5hB6JyiH5Ky5iMN9kztWbhVLMstabP3NDsFiaVXyybNyr0FAufSA
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:56:07 2025 by rpki-client