Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/7Mgcci4mvb8EYRNmKBq1JYl5IUo.roa
File: 7Mgcci4mvb8EYRNmKBq1JYl5IUo.roa (raw, json)
Hash identifier: kPFEHSvE2FzLcZORwuvusUkliJDNpgeyFoCVmaqK7kU=
Subject key identifier: EC:C8:1C:72:2E:26:BD:BF:04:61:13:66:28:1A:B5:25:89:79:21:4A
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 019427B5623E1DC78211912FAF86C56409CD
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/7Mgcci4mvb8EYRNmKBq1JYl5IUo.roa
Signing time: Thu 02 Jan 2025 15:49:46 +0000
ROA not before: Thu 02 Jan 2025 15:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49492
IP address blocks: 2a12:a342::/33 maxlen: 33
Validation: Failed, certificate revoked on Tue 25 Mar 2025 10:43:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:62:3e:1d:c7:82:11:91:2f:af:86:c5:64:09:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Jan 2 15:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ecc81c722e26bdbf04611366281ab5258979214a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ec:65:4e:7d:6d:a3:d6:fb:63:7d:20:dc:81:
aa:b1:84:4c:0c:9f:26:5a:6a:bc:88:1c:c5:64:ab:
91:e5:21:a5:ee:51:34:fd:ec:be:30:78:15:bc:e7:
95:27:75:52:62:11:42:6a:f1:b8:74:fe:09:43:14:
1a:9b:a4:29:bd:d3:be:59:08:36:0c:3f:b2:13:9c:
99:4f:d6:8b:f6:f2:73:3a:bd:1a:7d:3d:82:64:36:
05:fa:58:e3:ed:cb:18:cb:c0:86:e1:09:fd:78:be:
17:b4:27:7a:60:e0:6c:93:3f:9e:cc:08:8b:c3:f9:
50:c4:b5:ff:ea:0a:d1:c0:b7:95:92:bc:dc:31:48:
1b:89:ea:8e:b8:45:b4:bc:54:91:43:7e:60:86:e9:
51:40:80:f7:b5:12:1c:b9:df:ff:b1:51:76:2d:63:
80:27:a7:c3:1c:16:d3:5a:81:af:0e:1c:14:05:dc:
81:b5:d2:11:10:46:f9:2d:6a:0a:1f:47:75:eb:2f:
cd:14:95:6d:5b:51:48:8c:5e:a3:29:4c:93:ae:3e:
25:4c:54:f8:1c:5f:e6:e5:12:c7:b4:d8:fd:69:3b:
2b:12:f1:a3:37:18:87:32:29:c3:96:e0:24:d4:62:
7c:82:00:14:a6:bb:68:06:92:2d:8a:a6:7c:c3:17:
7d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C8:1C:72:2E:26:BD:BF:04:61:13:66:28:1A:B5:25:89:79:21:4A
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/7Mgcci4mvb8EYRNmKBq1JYl5IUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:a342::/33
Signature Algorithm: sha256WithRSAEncryption
65:7a:8f:b0:44:e0:9a:41:c1:00:2e:af:0b:96:30:d0:44:5b:
ef:1c:95:a7:3d:b1:bb:26:27:5b:cf:65:8f:69:f3:f8:ee:df:
b0:49:75:9d:8f:7b:48:bc:58:69:b0:d3:a6:03:e0:51:a4:c4:
ea:72:61:9a:d3:78:19:69:38:2c:af:04:5a:32:51:bc:41:88:
bd:20:00:7e:0a:a5:6d:72:70:f7:ed:78:04:1e:c7:c4:87:b0:
dd:1c:7d:a5:0c:9a:9a:c5:bb:94:bf:5d:b8:54:30:cc:40:ad:
9e:cf:79:ff:44:6b:97:2e:ef:cb:fb:72:b3:82:9c:76:b6:aa:
2c:6c:00:fc:c7:9c:3c:dd:f2:8c:fb:ae:1f:da:f3:91:ee:22:
5e:4a:02:46:6a:96:6e:21:b1:97:02:51:00:22:6f:63:b5:ab:
15:d6:ac:9a:b8:56:7f:ae:71:eb:11:55:2f:89:89:50:74:aa:
07:e0:b5:93:ad:ed:c0:9f:00:2d:1f:ae:87:af:ec:ec:9a:d3:
f1:30:40:2f:a5:da:1b:0d:8a:4f:51:08:38:07:81:c0:ac:c0:
f7:f5:c8:63:b4:06:5c:c7:ea:61:b1:7c:8d:30:ec:e9:5e:c8:
38:cb:4c:bd:0b:17:99:39:23:33:5b:76:f4:04:75:33:9c:39:
62:cc:ce:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:06:48 2025 by rpki-client