Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/6d0NZFBmVadIlmR_HoyQuVhqdFY.roa
File: 6d0NZFBmVadIlmR_HoyQuVhqdFY.roa (raw, json)
Hash identifier: uiuWidWcOEfz5h7mUTGAAZnvFM3OAiuRD5M1CoIDyXM=
Subject key identifier: E9:DD:0D:64:50:66:55:A7:48:96:64:7F:1E:8C:90:B9:58:6A:74:56
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 0191E991C028984380AA3E4F0F8DC8DB3A4B
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/6d0NZFBmVadIlmR_HoyQuVhqdFY.roa
Signing time: Fri 13 Sep 2024 04:08:48 +0000
ROA not before: Fri 13 Sep 2024 04:08:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212165
IP address blocks: 2a0f:db80::/29 maxlen: 29
2a13:1340::/29 maxlen: 29
2a13:2980::/29 maxlen: 29
2a13:3880::/29 maxlen: 29
2a13:3b80::/29 maxlen: 29
2a13:3c80::/29 maxlen: 29
2a13:4fc0::/29 maxlen: 29
2a13:6e40::/29 maxlen: 29
2a13:8580::/29 maxlen: 29
2a13:8c40::/29 maxlen: 29
2a13:9340::/29 maxlen: 29
2a13:93c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 13 Sep 2024 04:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e9:91:c0:28:98:43:80:aa:3e:4f:0f:8d:c8:db:3a:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Sep 13 04:08:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9dd0d64506655a74896647f1e8c90b9586a7456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:19:5e:20:83:a7:83:bd:f4:bb:24:a4:1d:fa:
fc:90:1f:12:4f:df:35:2d:64:df:fc:ff:b4:55:b5:
9a:93:b9:31:38:e3:7d:be:7f:26:a0:ae:af:d6:68:
25:bb:47:9c:4e:40:ac:99:3b:24:ab:01:70:eb:78:
e3:55:bd:eb:10:e2:cc:75:c9:2c:c0:bb:95:8b:b0:
1d:d8:a1:30:3c:a7:a6:40:97:41:ac:0f:ca:40:ff:
42:16:3e:7f:f4:0f:4d:3e:35:2f:0b:47:9e:b7:9a:
1b:f7:2d:9b:35:0e:01:0f:08:c6:ba:dc:1d:96:4e:
40:36:83:0f:a5:38:f0:26:96:eb:7d:3b:54:34:75:
f8:7b:8a:52:f9:c4:05:f3:8c:1b:85:e3:75:57:cc:
04:ec:ce:4d:ff:c0:e0:7c:70:d1:2a:28:94:5a:63:
cc:ce:59:a7:22:7a:ec:5c:64:68:f0:c0:41:b6:cb:
9e:85:dd:80:80:e7:9a:02:07:81:67:f2:82:3d:b7:
7d:b3:22:d2:04:d5:67:d6:17:7e:53:fb:6a:d2:5b:
2c:11:8a:3d:9b:9a:c3:55:e0:31:0d:9d:e0:48:cc:
d2:34:7e:f1:41:ac:8f:cf:dc:88:f6:21:10:1a:7c:
f3:85:c4:36:a3:fa:c3:bd:c0:54:5f:20:fe:8c:8f:
1f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DD:0D:64:50:66:55:A7:48:96:64:7F:1E:8C:90:B9:58:6A:74:56
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/6d0NZFBmVadIlmR_HoyQuVhqdFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:db80::/29
2a13:1340::/29
2a13:2980::/29
2a13:3880::/29
2a13:3b80::/29
2a13:3c80::/29
2a13:4fc0::/29
2a13:6e40::/29
2a13:8580::/29
2a13:8c40::/29
2a13:9340::/29
2a13:93c0::/29
Signature Algorithm: sha256WithRSAEncryption
3c:7f:db:48:4f:ea:0c:fc:14:73:b5:14:8e:0c:0d:33:6a:2f:
7e:db:69:22:d8:22:09:cf:5f:4f:f6:5f:10:b9:4a:3e:73:5e:
a3:d0:a4:d1:7d:c7:e3:25:83:c9:64:05:d0:91:91:d1:49:8d:
0f:90:22:36:a8:99:23:92:08:28:f0:e2:bf:13:0c:eb:b5:1f:
2d:f4:2e:aa:bc:2f:83:c5:1a:f3:9e:d8:c0:c7:a8:9b:cb:0e:
6c:d8:6b:b8:e2:3e:22:a3:ac:b0:5b:90:3a:05:15:7f:97:ac:
98:3c:7a:aa:f8:90:d0:6a:51:db:63:f5:c7:5f:24:26:49:07:
18:5a:ca:e2:0d:7d:a2:ad:40:07:3f:29:7f:c1:a9:12:8d:af:
ba:02:9f:2a:e7:18:a7:1e:0e:a0:02:aa:3a:f6:ee:7e:f4:00:
9a:ab:0e:90:86:0e:c5:82:24:88:62:cc:b3:22:a3:db:5b:a6:
df:1e:96:0f:a8:13:5d:43:6a:e6:35:c6:e0:c0:61:9d:e7:50:
14:35:7b:d7:d3:ba:da:f8:eb:f1:cf:87:c7:38:f7:f5:17:05:
4b:8c:c6:da:27:cf:c4:0d:cc:7b:1c:d3:9e:5a:f5:d4:ed:f8:
43:94:16:35:ac:64:70:42:ff:4e:08:f9:4a:bf:41:c9:9c:7f:
2b:6e:19:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:06:51 2025 by rpki-client