Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/3EfLURica-AExUufhbYcShopJFA.roa
File: 3EfLURica-AExUufhbYcShopJFA.roa (raw, json)
Hash identifier: PumGkiAnrJpGAtmUvlVENnacl/zlNM8/kJGOCShLigQ=
Subject key identifier: DC:47:CB:51:18:9C:6B:E0:04:C5:4B:9F:85:B6:1C:4A:1A:29:24:50
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019204FB455D459FB193A408C6D3B2D31CDE
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/3EfLURica-AExUufhbYcShopJFA.roa
Signing time: Wed 18 Sep 2024 11:53:48 +0000
ROA not before: Wed 18 Sep 2024 11:53:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197992
IP address blocks: 2a05:b300::/29 maxlen: 29
2a06:3bc0::/29 maxlen: 29
2a06:dfc0::/29 maxlen: 29
2a07:a300::/29 maxlen: 29
2a0d:a9c0::/29 maxlen: 29
2a0e:5800::/29 maxlen: 29
2a0f:1740::/29 maxlen: 29
2a0f:17c0::/29 maxlen: 29
2a0f:19c0::/29 maxlen: 29
2a0f:1ac0::/29 maxlen: 29
2a0f:2300::/29 maxlen: 29
2a0f:2840::/29 maxlen: 29
2a0f:cc00::/29 maxlen: 29
2a0f:df40::/29 maxlen: 29
2a0f:e740::/29 maxlen: 29
2a0f:e940::/29 maxlen: 29
2a10:30c0::/29 maxlen: 29
2a10:33c0::/29 maxlen: 29
2a10:3540::/29 maxlen: 29
2a10:35c0::/29 maxlen: 29
2a10:3840::/29 maxlen: 29
2a10:5c00::/29 maxlen: 29
2a10:6400::/29 maxlen: 29
2a10:6500::/29 maxlen: 29
2a10:7700::/29 maxlen: 29
2a10:7b00::/29 maxlen: 29
2a11:5200::/29 maxlen: 29
2a11:8880::/29 maxlen: 29
2a11:e580::/29 maxlen: 29
2a11:f040::/29 maxlen: 29
2a12:ba00::/29 maxlen: 29
2a12:d100::/29 maxlen: 29
2a13:200::/29 maxlen: 29
2a13:cc0::/29 maxlen: 29
2a13:2dc0::/29 maxlen: 29
2a13:c700::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 19 Sep 2024 06:58:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:04:fb:45:5d:45:9f:b1:93:a4:08:c6:d3:b2:d3:1c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 18 11:53:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc47cb51189c6be004c54b9f85b61c4a1a292450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:52:4c:6e:20:16:4b:e5:33:07:db:cd:10:cb:
a3:1a:ee:2a:94:7a:c3:ba:34:b8:7b:a9:9d:a9:c7:
21:b4:ae:a7:98:2f:18:40:c2:6e:ca:b6:f3:aa:88:
ee:6b:c1:2f:59:17:d6:43:7d:69:8f:5b:34:91:78:
bf:34:09:c2:6e:3d:97:55:c8:8d:47:a8:d2:13:f9:
a2:92:8b:a5:f2:a1:85:58:2c:82:fd:d0:ce:98:7e:
23:0b:c4:40:64:23:18:67:8b:af:8e:ca:b5:4e:56:
8b:9d:76:34:60:f2:ac:7d:82:fa:33:8b:b5:87:1e:
b2:12:fa:de:7e:36:88:00:8b:39:84:7e:31:ed:fd:
37:e8:54:82:46:ed:ee:eb:f2:22:6c:2b:cd:62:38:
58:57:7e:0c:10:33:8b:d5:1e:3c:b8:ad:fa:be:2b:
ca:b7:a2:04:7f:a9:60:54:60:d3:1e:9e:d3:69:fa:
99:93:05:a5:01:ac:ba:b5:b6:87:bc:ff:59:31:7c:
fb:fb:1f:92:39:2b:27:09:e9:67:0f:0d:c3:5e:f4:
1a:bb:92:d7:35:ef:55:46:d8:fb:6c:0a:74:e1:a2:
7d:f6:c0:73:62:e8:e6:3d:f9:39:b3:f1:60:f3:0a:
08:e3:ac:d1:87:e9:48:3e:6c:5b:11:91:29:5d:fb:
83:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:47:CB:51:18:9C:6B:E0:04:C5:4B:9F:85:B6:1C:4A:1A:29:24:50
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/3EfLURica-AExUufhbYcShopJFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b300::/29
2a06:3bc0::/29
2a06:dfc0::/29
2a07:a300::/29
2a0d:a9c0::/29
2a0e:5800::/29
2a0f:1740::/29
2a0f:17c0::/29
2a0f:19c0::/29
2a0f:1ac0::/29
2a0f:2300::/29
2a0f:2840::/29
2a0f:cc00::/29
2a0f:df40::/29
2a0f:e740::/29
2a0f:e940::/29
2a10:30c0::/29
2a10:33c0::/29
2a10:3540::/29
2a10:35c0::/29
2a10:3840::/29
2a10:5c00::/29
2a10:6400::/29
2a10:6500::/29
2a10:7700::/29
2a10:7b00::/29
2a11:5200::/29
2a11:8880::/29
2a11:e580::/29
2a11:f040::/29
2a12:ba00::/29
2a12:d100::/29
2a13:200::/29
2a13:cc0::/29
2a13:2dc0::/29
2a13:c700::/29
Signature Algorithm: sha256WithRSAEncryption
ab:15:03:44:71:9e:03:5d:9c:20:e1:16:f7:3e:88:4a:2d:e5:
21:56:c5:08:9d:8e:e4:89:a3:57:22:d3:91:80:a3:7f:ec:6b:
3d:87:1a:ff:34:b1:0e:24:de:cf:d1:83:7b:39:cc:ac:c1:47:
a3:4b:44:37:13:a8:e8:50:99:77:2a:8f:68:c6:91:32:84:8a:
21:8b:2d:d2:83:3d:54:6d:a5:42:64:05:26:44:71:c4:e4:3b:
c2:7c:3a:65:ad:ca:33:51:c5:76:53:6b:47:7a:59:10:6a:1f:
41:7a:bd:14:ca:79:30:82:52:19:f3:b8:28:a0:0e:f3:a4:e0:
59:e3:e5:ae:53:97:d2:2f:2f:d4:94:6a:1b:e0:88:94:32:27:
30:5e:a6:f2:12:af:62:3c:72:bd:98:f7:76:3f:40:fc:ce:2b:
2d:d8:85:d5:7e:87:5a:c4:fe:6d:ec:f2:b7:76:a6:3c:31:9b:
5a:c2:2e:4d:34:36:d0:38:f7:7d:48:9b:a9:09:92:6b:3e:69:
ed:18:fd:aa:2e:49:ba:32:55:44:46:ef:c0:03:2a:dd:b5:d7:
a5:63:4d:b6:5f:73:d4:a8:32:c2:a9:39:7c:69:0e:db:0a:b4:
33:2b:8f:71:38:86:1f:b8:3a:f8:d7:c0:6a:fe:31:21:bc:b2:
27:b2:8a:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 18:54:18 2025 by rpki-client