Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/19JKsJqu2UMB4WmNLuK1Ad24CmA.roa
File: 19JKsJqu2UMB4WmNLuK1Ad24CmA.roa (raw, json)
Hash identifier: K4kkVkDBFwN575TEJTaoKXO+snCK6m68VIjt/mh+t4o=
Subject key identifier: D7:D2:4A:B0:9A:AE:D9:43:01:E1:69:8D:2E:E2:B5:01:DD:B8:0A:60
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019199FB34BC6F1CAF09129C63075587A90F
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/19JKsJqu2UMB4WmNLuK1Ad24CmA.roa
Signing time: Wed 28 Aug 2024 17:14:22 +0000
ROA not before: Wed 28 Aug 2024 17:14:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 2a07:8a40::/29 maxlen: 29
2a13:7d80::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 29 Aug 2024 06:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:99:fb:34:bc:6f:1c:af:09:12:9c:63:07:55:87:a9:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 28 17:14:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7d24ab09aaed94301e1698d2ee2b501ddb80a60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:26:2b:b2:7d:0a:60:c0:54:55:2b:cc:89:2c:
fe:8b:bf:04:98:09:32:e2:ee:f2:02:f7:11:27:98:
21:d3:3b:4d:d2:75:3e:48:75:20:34:69:cc:07:a9:
a0:4e:95:59:dc:cb:d2:07:67:ea:58:5b:16:91:80:
e9:59:07:cc:83:bf:19:54:e7:e4:71:15:8f:02:b9:
22:48:d6:27:23:a7:e9:d1:9c:57:97:ac:5e:29:03:
a1:18:b2:97:56:1a:67:77:45:6d:3e:5d:36:c1:5f:
02:15:17:a4:bf:da:de:5e:23:2f:86:14:89:e7:39:
37:bb:31:1d:f0:b1:e9:1b:78:34:ee:3f:ff:e0:ad:
9a:61:77:96:95:72:c6:45:b3:0b:8b:96:51:e4:95:
a7:d0:49:03:c3:2f:39:71:24:6d:f0:93:90:37:e7:
ed:b0:92:7a:b6:b6:35:85:3e:7a:76:69:e7:68:83:
62:5a:26:c5:1a:d6:ad:2e:fb:75:68:35:a6:dd:9f:
24:ee:e6:fa:48:97:b0:20:91:63:8b:87:0b:aa:d1:
b3:64:33:d6:d4:21:e7:ef:29:8c:4f:43:af:70:be:
3d:df:61:26:0c:c5:e9:a0:fd:af:15:58:72:3f:68:
7c:eb:13:7f:85:a1:03:7a:0c:ee:b3:e5:25:b5:50:
68:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D2:4A:B0:9A:AE:D9:43:01:E1:69:8D:2E:E2:B5:01:DD:B8:0A:60
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/19JKsJqu2UMB4WmNLuK1Ad24CmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:8a40::/29
2a13:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
3f:22:2d:df:8f:35:89:c3:35:57:88:59:c2:d2:12:db:63:10:
91:68:05:16:9a:bb:e5:74:0d:4d:6d:4e:e5:60:a1:28:ce:d8:
fb:7e:d1:8d:98:68:8b:a2:3a:16:79:f6:27:86:10:c1:41:d3:
fc:1a:d8:a8:d7:22:b1:ff:1c:90:9b:92:f9:2d:17:72:46:d2:
b5:34:b4:9d:19:8e:ba:11:c4:66:38:69:f0:e1:60:38:b8:14:
c9:25:94:a8:b0:18:12:d3:9a:08:68:ff:cf:68:3d:ba:9b:0a:
fb:ae:8f:0a:82:1b:53:f6:79:92:41:01:aa:4a:42:cb:dc:95:
53:4b:81:97:05:b2:a5:5f:e1:6f:39:ed:a5:51:1b:22:b8:6b:
c4:08:70:3a:3e:e0:1c:54:35:68:5a:95:ae:b7:ee:b0:f0:ca:
30:f7:06:a2:73:fc:99:00:94:a6:dd:7a:f3:ba:7a:31:5f:b7:
d5:b2:ba:4e:27:1a:de:0f:61:02:d1:6f:05:5b:36:be:1a:1d:
32:53:32:8d:72:22:65:49:c4:d9:66:c4:ea:e9:00:8b:0b:81:
fc:69:eb:0e:ac:99:a8:1f:09:d2:fa:3a:f0:2c:72:91:5f:2a:
c3:c4:82:35:7c:c7:d6:5f:e2:62:5d:be:45:6c:9b:6a:91:c5:
e1:14:ad:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 13:31:52 2025 by rpki-client