Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/x1Utq1E-waqviPBZPGZynU4OM5o.roa
File: x1Utq1E-waqviPBZPGZynU4OM5o.roa (raw, json)
Hash identifier: 4T8midTtm93peANWv8JdVcC0LLoDJwBYmtLtk5yQq1M=
Subject key identifier: C7:55:2D:AB:51:3E:C1:AA:AF:88:F0:59:3C:66:72:9D:4E:0E:33:9A
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 0192313C006A966822AD6AE03C9C05C3095C
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/x1Utq1E-waqviPBZPGZynU4OM5o.roa
Signing time: Fri 27 Sep 2024 02:07:48 +0000
ROA not before: Fri 27 Sep 2024 02:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 2a04:a5c0::/32 maxlen: 32
2a04:a5c1::/32 maxlen: 32
2a04:a5c2::/32 maxlen: 32
2a04:a5c3::/32 maxlen: 32
2a04:a5c4::/32 maxlen: 32
2a04:a5c5::/32 maxlen: 32
2a04:a5c6::/32 maxlen: 32
2a04:a5c7::/32 maxlen: 32
2a0e:d00::/32 maxlen: 32
2a0e:d01::/32 maxlen: 32
2a0e:d02::/32 maxlen: 32
2a0e:d03::/32 maxlen: 32
2a0e:d04::/32 maxlen: 32
2a0e:d05::/32 maxlen: 32
2a0e:d06::/32 maxlen: 32
2a0e:d07::/32 maxlen: 32
2a0e:b140::/32 maxlen: 32
2a0e:b141::/32 maxlen: 32
2a0e:b142::/32 maxlen: 32
2a0e:b143::/32 maxlen: 32
2a0e:b144::/32 maxlen: 32
2a0e:b145::/32 maxlen: 32
2a0e:b146::/32 maxlen: 32
2a0e:b147::/32 maxlen: 32
2a0f:db80::/32 maxlen: 32
2a0f:db81::/32 maxlen: 32
2a0f:db82::/32 maxlen: 32
2a0f:db83::/32 maxlen: 32
2a0f:db84::/32 maxlen: 32
2a0f:db85::/32 maxlen: 32
2a0f:db86::/32 maxlen: 32
2a0f:db87::/32 maxlen: 32
2a10:4700::/31 maxlen: 31
2a10:4702::/31 maxlen: 31
2a10:4704::/31 maxlen: 31
2a10:4706::/31 maxlen: 31
2a12:4300::/31 maxlen: 31
2a12:4302::/31 maxlen: 31
2a12:4304::/31 maxlen: 31
2a12:4306::/31 maxlen: 31
2a13:1340::/30 maxlen: 30
2a13:1344::/30 maxlen: 30
2a13:4fc0::/30 maxlen: 30
2a13:4fc4::/30 maxlen: 30
Validation: Failed, certificate revoked on Sun 29 Sep 2024 11:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:31:3c:00:6a:96:68:22:ad:6a:e0:3c:9c:05:c3:09:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Sep 27 02:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7552dab513ec1aaaf88f0593c66729d4e0e339a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:89:66:be:0b:7c:38:e0:60:8b:80:4b:e9:7b:
89:0e:ef:c4:5a:ad:41:f6:4b:2a:28:62:9b:11:33:
25:ac:a3:c8:2f:6d:7a:ea:11:bd:c1:f6:ec:54:7a:
78:4b:f2:50:5a:42:23:4d:8f:46:e6:73:ec:79:01:
b9:ee:0c:b4:15:2b:00:97:76:eb:2f:1e:4e:2e:95:
4e:a4:fe:4b:23:5f:5a:c3:7c:f7:81:21:3f:78:ed:
c6:09:da:50:98:98:8a:76:80:39:de:15:c0:1e:c3:
83:ca:48:19:d1:3e:e0:b6:b6:f5:f9:a1:cc:32:ce:
a3:0b:07:58:5a:df:27:3e:01:71:2f:dd:91:ce:c8:
3f:36:87:2a:22:8f:f6:4b:21:2e:1f:db:c5:62:a1:
6b:73:4e:4c:a3:71:6a:e7:fc:89:96:da:17:54:32:
be:86:60:a9:76:38:27:d8:3a:42:8e:8b:08:f7:d3:
1f:c6:58:ab:75:d6:a4:5e:c4:16:0e:b0:5a:cd:12:
5d:16:7b:d6:f0:1d:b9:f6:6c:09:4c:01:e1:ec:24:
4a:f1:3f:56:b7:d9:84:de:9e:09:cc:b9:fa:d7:c0:
b1:83:09:c9:85:b4:41:0c:b7:08:1f:65:5b:c2:a0:
2d:23:4d:70:bf:ad:d0:65:4e:00:a3:bd:d5:97:8d:
66:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:55:2D:AB:51:3E:C1:AA:AF:88:F0:59:3C:66:72:9D:4E:0E:33:9A
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/x1Utq1E-waqviPBZPGZynU4OM5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:a5c0::/29
2a0e:d00::/29
2a0e:b140::/29
2a0f:db80::/29
2a10:4700::/29
2a12:4300::/29
2a13:1340::/29
2a13:4fc0::/29
Signature Algorithm: sha256WithRSAEncryption
0e:c0:1d:83:9c:cc:43:a7:b2:99:19:fb:f3:44:28:90:a9:b6:
18:0a:2c:36:b9:64:a3:af:47:98:53:5d:dd:9b:ef:ce:32:14:
7b:b3:ab:b7:1c:bc:e2:d1:a2:9b:72:e7:8f:09:da:44:45:6f:
29:02:d2:34:ff:d3:b7:45:a3:16:4c:89:22:7c:98:cb:26:b9:
e8:20:bd:4a:e7:25:a1:9b:6f:34:48:4b:be:7a:99:59:e0:58:
49:07:a2:6f:68:7f:7b:3e:1a:d1:cd:ba:54:2c:d9:6a:85:ce:
a7:42:7f:6d:d1:d8:82:bb:a0:71:99:a0:b6:07:26:24:30:ae:
27:9b:52:dd:10:7c:94:cb:87:1e:37:dd:7f:f6:94:ba:ef:36:
c9:6c:36:4d:55:38:83:eb:35:ea:c3:a8:51:25:d9:f3:d8:19:
58:60:71:2f:b7:2f:e4:d4:1c:ab:b5:22:f2:08:4c:2c:4e:14:
6d:b1:c2:aa:16:d2:13:14:1c:f0:75:d4:f3:c4:e7:64:00:36:
b5:20:c0:fa:72:66:f6:2b:4c:14:04:03:75:33:bd:88:56:76:
6a:bd:55:45:34:b6:0a:31:6f:2e:49:97:0a:3f:a9:23:c4:b7:
17:6e:1d:81:bf:01:b1:de:42:89:3c:0f:a8:96:6f:5a:5c:f9:
1f:85:25:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:06:35 2025 by rpki-client