Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2YoaTw_hmSQ2MBWoZJa-ju2ee88.roa
File: 2YoaTw_hmSQ2MBWoZJa-ju2ee88.roa (raw, json)
Hash identifier: IYT2RJyT3mmhvO6dS9LnF5GwlfQryinsd5RZpp2FV+Q=
Subject key identifier: D9:8A:1A:4F:0F:E1:99:24:36:30:15:A8:64:96:BE:8E:ED:9E:7B:CF
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01946C009B801E73539A2C81041F7D7082A8
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2YoaTw_hmSQ2MBWoZJa-ju2ee88.roa
Signing time: Wed 15 Jan 2025 22:06:06 +0000
ROA not before: Wed 15 Jan 2025 22:06:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28753
IP address blocks: 2a04:9f40::/29 maxlen: 29
2a06:1184:101::/48 maxlen: 48
2a06:3bc0::/29 maxlen: 29
2a07:8a40::/29 maxlen: 29
2a09:17c1:66::/48 maxlen: 48
2a09:17c1:77::/48 maxlen: 48
2a0a:2d06:102::/48 maxlen: 48
2a0a:2d06:103::/48 maxlen: 48
2a0c:7886:99::/48 maxlen: 48
2a0c:7886:100::/48 maxlen: 48
2a0e:15c7:88::/48 maxlen: 48
2a0e:15c7:99::/48 maxlen: 48
2a0e:1a83:77::/48 maxlen: 48
2a0e:f603:66::/48 maxlen: 48
2a0f:140::/29 maxlen: 29
2a0f:1206:55::/48 maxlen: 48
2a0f:1206:66::/48 maxlen: 48
2a0f:2500::/29 maxlen: 29
2a0f:3d86:88::/48 maxlen: 48
2a0f:3d86:99::/48 maxlen: 48
2a0f:7d06:88::/48 maxlen: 48
2a0f:7d06:99::/48 maxlen: 48
2a0f:cc00::/29 maxlen: 29
2a0f:d200::/29 maxlen: 29
2a0f:da40::/29 maxlen: 29
2a0f:dfc0::/29 maxlen: 29
2a0f:e040::/29 maxlen: 29
2a0f:e1c1:22::/48 maxlen: 48
2a0f:e202:44::/48 maxlen: 48
2a0f:e202:55::/48 maxlen: 48
2a0f:e202:100::/48 maxlen: 48
2a0f:e4c0::/29 maxlen: 29
2a0f:e6c6:100::/48 maxlen: 48
2a0f:e6c6:101::/48 maxlen: 48
2a0f:e7c6:66::/48 maxlen: 48
2a0f:e7c6:77::/48 maxlen: 48
2a0f:e7c6:88::/48 maxlen: 48
2a0f:e844:22::/48 maxlen: 48
2a0f:e844:33::/48 maxlen: 48
2a0f:ea44:66::/48 maxlen: 48
2a0f:ea44:77::/48 maxlen: 48
2a0f:fc00::/29 maxlen: 29
2a12:ac46:77::/48 maxlen: 48
2a12:ecc0:168::/48 maxlen: 48
2a12:ecc0:178::/48 maxlen: 48
2a13:18c6:55::/48 maxlen: 48
2a13:18c6:77::/48 maxlen: 48
2a13:18c6:88::/48 maxlen: 48
2a13:7d80::/29 maxlen: 29
2a13:8c86:10a::/48 maxlen: 48
2a13:8c86:120::/48 maxlen: 48
2a13:8c86:130::/48 maxlen: 48
2a13:c900:88::/48 maxlen: 48
2a13:c900:99::/48 maxlen: 48
2a13:e107:99::/48 maxlen: 48
2a13:e107:9c::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 Jan 2025 21:21:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6c:00:9b:80:1e:73:53:9a:2c:81:04:1f:7d:70:82:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 15 22:06:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d98a1a4f0fe19924363015a86496be8eed9e7bcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:38:81:bc:c4:9b:2f:54:a4:3f:50:26:24:ff:
4d:b5:38:6b:cd:d3:16:89:33:53:de:11:a0:d3:45:
69:fe:0b:c2:53:2b:11:04:c4:2d:3a:cf:fb:ee:78:
96:e4:a9:71:d8:41:f9:58:77:a3:d3:ee:66:52:97:
14:b8:f1:18:e7:95:b5:a6:25:18:1e:e0:17:e3:b3:
2a:36:e7:02:dd:ca:5a:1d:d4:a2:e4:d5:81:68:8d:
75:3d:fd:72:c7:6c:c4:27:a1:cf:58:e9:e7:53:f9:
ac:bf:8f:fa:a8:92:99:68:a3:9a:92:0a:30:24:5a:
ad:60:7f:ec:a9:4a:fe:43:e1:b4:b8:1e:38:df:03:
77:e1:0f:7f:04:1d:c7:91:5c:03:46:96:7a:88:49:
fb:06:87:12:08:3e:a2:d1:1a:a3:6f:df:94:27:20:
ad:39:97:48:0a:80:79:1d:d2:31:50:b1:c4:04:20:
0d:81:e3:45:51:09:56:12:a0:7b:5e:b1:5a:8c:c7:
7f:e6:65:65:b2:cc:b1:54:09:a0:32:39:64:0f:01:
69:5e:9e:1c:53:b0:d2:2b:bd:46:ac:93:2e:49:86:
50:fd:5f:e5:f1:46:38:13:80:58:91:24:f8:46:db:
46:48:61:80:b0:4a:61:1b:65:9b:d2:88:57:2f:59:
45:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:8A:1A:4F:0F:E1:99:24:36:30:15:A8:64:96:BE:8E:ED:9E:7B:CF
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2YoaTw_hmSQ2MBWoZJa-ju2ee88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:9f40::/29
2a06:1184:101::/48
2a06:3bc0::/29
2a07:8a40::/29
2a09:17c1:66::/48
2a09:17c1:77::/48
2a0a:2d06:102::/47
2a0c:7886:99::/48
2a0c:7886:100::/48
2a0e:15c7:88::/48
2a0e:15c7:99::/48
2a0e:1a83:77::/48
2a0e:f603:66::/48
2a0f:140::/29
2a0f:1206:55::/48
2a0f:1206:66::/48
2a0f:2500::/29
2a0f:3d86:88::/48
2a0f:3d86:99::/48
2a0f:7d06:88::/48
2a0f:7d06:99::/48
2a0f:cc00::/29
2a0f:d200::/29
2a0f:da40::/29
2a0f:dfc0::/29
2a0f:e040::/29
2a0f:e1c1:22::/48
2a0f:e202:44::/48
2a0f:e202:55::/48
2a0f:e202:100::/48
2a0f:e4c0::/29
2a0f:e6c6:100::/47
2a0f:e7c6:66::/48
2a0f:e7c6:77::/48
2a0f:e7c6:88::/48
2a0f:e844:22::/48
2a0f:e844:33::/48
2a0f:ea44:66::/48
2a0f:ea44:77::/48
2a0f:fc00::/29
2a12:ac46:77::/48
2a12:ecc0:168::/48
2a12:ecc0:178::/48
2a13:18c6:55::/48
2a13:18c6:77::/48
2a13:18c6:88::/48
2a13:7d80::/29
2a13:8c86:10a::/48
2a13:8c86:120::/48
2a13:8c86:130::/48
2a13:c900:88::/48
2a13:c900:99::/48
2a13:e107:99::/48
2a13:e107:9c::/48
Signature Algorithm: sha256WithRSAEncryption
04:e0:d4:58:97:8c:bf:9c:23:c4:31:b6:07:af:8c:d3:e6:d2:
4f:46:3d:e9:51:e4:13:76:31:a0:22:54:de:d2:a4:0b:f8:d6:
37:10:9e:02:e4:98:2d:94:bc:15:81:0f:63:7b:e8:b8:64:79:
7c:61:4e:58:2b:ea:38:43:de:09:51:b7:4a:75:b7:8e:cc:fd:
84:4d:5e:5a:0e:a3:6d:05:16:90:5f:e5:e2:c4:5c:6b:20:26:
62:0a:74:b1:56:e3:df:e6:f4:b8:fa:a4:d8:15:42:88:8d:00:
4d:95:88:6b:79:b9:ff:07:6a:35:4a:93:6a:c0:71:4b:22:c9:
7f:4b:ca:1e:d4:6a:5f:7b:0e:5b:ae:9b:e0:d8:c5:4d:f6:7c:
2e:31:f3:3f:e6:fd:13:09:a9:e4:78:f2:a9:27:0d:c4:18:dd:
36:a7:02:ae:6e:32:f9:30:cf:25:11:0e:09:7b:50:74:4f:9d:
e0:ae:fb:ae:72:16:c8:41:ac:c4:89:26:fc:63:72:f5:7a:7f:
f0:eb:2b:9d:20:34:a6:51:55:83:96:d1:c6:10:5b:5f:b8:c6:
ca:46:d8:16:f7:df:43:31:6d:df:07:94:9d:bf:8e:38:54:78:
31:bb:4a:6d:3a:df:dc:53:17:1b:f8:31:49:27:fa:e0:da:32:
26:00:33:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 09:44:17 2025 by rpki-client