Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/QodxZW5bRsHdoH76GdddBUEsAEE.roa
File: QodxZW5bRsHdoH76GdddBUEsAEE.roa (raw, json)
Hash identifier: xwIEcZNJdNlbs7nVsmsjbIsAOLi7lKQclAhmcpVNGxY=
Subject key identifier: 42:87:71:65:6E:5B:46:C1:DD:A0:7E:FA:19:D7:5D:05:41:2C:00:41
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 019289347FEBD7470066B2C224459EF86DB6
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/QodxZW5bRsHdoH76GdddBUEsAEE.roa
Signing time: Mon 14 Oct 2024 04:06:12 +0000
ROA not before: Mon 14 Oct 2024 04:06:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 2a04:a5c0::/32 maxlen: 32
2a04:a5c1::/32 maxlen: 32
2a04:a5c2::/32 maxlen: 32
2a04:a5c3::/32 maxlen: 32
2a04:a5c4::/32 maxlen: 32
2a04:a5c5::/32 maxlen: 32
2a04:a5c6::/32 maxlen: 32
2a04:a5c7::/32 maxlen: 32
2a0e:d00::/32 maxlen: 32
2a0e:d01::/32 maxlen: 32
2a0e:d02::/32 maxlen: 32
2a0e:d03::/32 maxlen: 32
2a0e:d04::/32 maxlen: 32
2a0e:d05::/32 maxlen: 32
2a0e:d06::/32 maxlen: 32
2a0e:d07::/32 maxlen: 32
2a0e:b140::/32 maxlen: 32
2a0e:b141::/32 maxlen: 32
2a0e:b142::/32 maxlen: 32
2a0e:b143::/32 maxlen: 32
2a0e:b144::/32 maxlen: 32
2a0e:b145::/32 maxlen: 32
2a0e:b146::/32 maxlen: 32
2a0e:b147::/32 maxlen: 32
2a0e:c380::/30 maxlen: 30
2a0e:c384::/30 maxlen: 30
2a0f:db80::/32 maxlen: 32
2a0f:db81::/32 maxlen: 32
2a0f:db82::/32 maxlen: 32
2a0f:db83::/32 maxlen: 32
2a0f:db84::/32 maxlen: 32
2a0f:db85::/32 maxlen: 32
2a0f:db86::/32 maxlen: 32
2a0f:db87::/32 maxlen: 32
2a10:4700::/31 maxlen: 31
2a10:4702::/31 maxlen: 31
2a10:4704::/31 maxlen: 31
2a10:4706::/31 maxlen: 31
2a10:4b00::/30 maxlen: 30
2a10:4b04::/30 maxlen: 30
2a12:4300::/31 maxlen: 31
2a12:4302::/31 maxlen: 31
2a12:4304::/31 maxlen: 31
2a12:4306::/31 maxlen: 31
2a13:1340::/30 maxlen: 30
2a13:1344::/30 maxlen: 30
2a13:4fc0::/30 maxlen: 30
2a13:4fc4::/30 maxlen: 30
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:49:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:89:34:7f:eb:d7:47:00:66:b2:c2:24:45:9e:f8:6d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Oct 14 04:06:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=428771656e5b46c1dda07efa19d75d05412c0041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:25:7b:53:af:17:46:e2:67:c8:a5:ec:59:f0:
fe:23:9d:eb:68:4c:0e:14:d6:38:c1:80:56:9f:9f:
b6:3d:19:f0:07:e1:7b:b4:e4:d1:b1:b4:40:28:ce:
77:6d:c4:35:a4:57:c6:d5:80:08:10:7c:cf:4c:d1:
3d:d4:99:28:6a:31:e1:17:37:a0:07:d9:bc:f4:e7:
7e:09:a8:95:a3:c2:bf:00:10:de:05:f9:44:07:a2:
90:72:fa:77:f2:92:4d:38:77:ca:d9:60:58:fc:ac:
f7:86:80:e4:be:35:ae:19:c3:b2:6d:7a:9d:e4:a6:
11:02:ca:7c:10:44:2c:ff:f7:91:f5:37:65:b7:86:
d4:82:69:da:cc:4b:e3:99:87:f3:05:10:74:64:0f:
28:70:d2:28:29:7c:00:c4:9a:58:20:7c:a9:c6:04:
d4:6f:72:22:08:ba:c2:e4:c5:51:01:2e:42:59:91:
cf:b2:02:e4:db:98:94:c9:ad:6f:f7:26:16:48:0f:
15:0f:72:0e:3b:3f:24:41:6e:66:74:5d:ad:f5:ea:
46:6f:c2:ef:6b:32:d2:39:c6:a4:57:72:2f:1d:3d:
8f:41:fa:65:8c:a0:9f:80:2c:2c:ec:fd:1e:e0:5b:
ee:83:92:84:21:e6:39:0d:5b:45:10:cc:14:d7:6f:
ea:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:87:71:65:6E:5B:46:C1:DD:A0:7E:FA:19:D7:5D:05:41:2C:00:41
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/QodxZW5bRsHdoH76GdddBUEsAEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:a5c0::/29
2a0e:d00::/29
2a0e:b140::/29
2a0e:c380::/29
2a0f:db80::/29
2a10:4700::/29
2a10:4b00::/29
2a12:4300::/29
2a13:1340::/29
2a13:4fc0::/29
Signature Algorithm: sha256WithRSAEncryption
c8:9b:2f:17:df:79:4b:cf:fc:12:54:e0:76:b9:86:30:d7:82:
c3:92:44:78:5f:51:f8:d9:7b:57:5a:f1:92:ca:60:92:75:84:
32:cf:3b:b4:78:e7:34:fd:24:81:1d:9f:d4:f4:01:cc:a5:1b:
eb:36:70:1e:f9:2a:9e:20:99:b4:8d:dc:fa:8d:70:ed:34:a2:
b6:e7:a3:02:bf:c8:d5:d7:fb:36:ec:98:f8:03:d2:29:d0:1f:
48:1d:eb:fb:5b:37:38:1b:92:2e:11:d4:88:ee:7e:6b:0e:2c:
f0:7e:65:de:0f:74:05:22:8a:47:24:19:ff:ae:d1:62:28:bb:
d4:28:bd:93:7d:a9:39:19:97:ba:b2:d6:74:b0:91:72:64:4f:
14:44:92:d8:1b:71:0e:8d:62:65:35:6e:bf:70:2d:4b:86:10:
3c:d5:2f:d4:ad:86:3c:20:07:93:ed:ae:c3:e4:01:08:f6:0d:
12:3d:61:27:03:25:b1:ff:87:27:f5:c7:8b:a0:5a:bc:a1:2f:
ff:bb:cc:da:d0:33:a6:5e:23:b6:96:fc:d8:a5:1a:f1:1e:f3:
20:d7:26:44:2c:8f:0e:6d:aa:3f:c4:2a:f3:ca:d7:e7:41:b5:
bb:5f:b0:6c:65:c5:50:c5:83:06:15:13:f2:c8:21:82:00:61:
90:4a:38:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:28 2025 by rpki-client