Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RmplVvldWTTLRghqvcyMqQcHHJY.roa
File: RmplVvldWTTLRghqvcyMqQcHHJY.roa (raw, json)
Hash identifier: BOCuSLdOEMtZ9T0D/fbaRbMjt6zpLy0WfYXB9juq3hI=
Subject key identifier: 46:6A:65:56:F9:5D:59:34:CB:46:08:6A:BD:CC:8C:A9:07:07:1C:96
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01918A4376D946B292AD2B15DAC5D4F17C87
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RmplVvldWTTLRghqvcyMqQcHHJY.roa
Signing time: Sun 25 Aug 2024 15:59:22 +0000
ROA not before: Sun 25 Aug 2024 15:59:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 2a0e:5800::/29 maxlen: 29
2a0f:2500::/29 maxlen: 29
2a11:3500::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 18 Sep 2024 11:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8a:43:76:d9:46:b2:92:ad:2b:15:da:c5:d4:f1:7c:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 25 15:59:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=466a6556f95d5934cb46086abdcc8ca907071c96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:54:e0:46:ac:82:d6:5b:16:1e:84:7c:83:c5:
46:ee:a1:9b:2b:46:3e:3b:5e:60:37:5d:68:95:1e:
93:97:77:c0:9d:12:e4:5d:c7:b4:0a:6e:95:82:0f:
4f:3b:d3:35:64:c0:1f:4b:1f:d6:a0:b6:47:03:88:
7d:50:25:92:18:67:7d:8b:9e:68:95:32:42:8a:9a:
ca:ab:d6:50:77:42:a3:c5:e4:f2:43:6d:87:2e:29:
6a:a5:80:b8:e1:56:a0:92:50:2d:71:12:c5:07:4d:
5c:7e:67:31:40:3e:06:02:87:fd:c6:11:6e:0c:11:
4d:28:00:c9:b8:1b:ca:14:21:2e:a9:32:48:4b:45:
64:ba:d6:8c:af:07:84:76:0d:9e:8e:9c:58:b0:20:
af:67:d5:86:3c:57:71:45:ec:80:ef:36:5b:4d:4a:
43:88:16:8a:24:ee:e5:4d:dd:cc:bc:1f:39:05:11:
25:53:bf:ff:67:ae:a9:09:09:53:78:4a:10:ab:b9:
be:d9:2d:bc:ba:03:27:aa:99:b3:c8:f3:17:22:bc:
a7:e7:2a:cd:fc:98:77:98:8e:f2:59:95:65:e2:9b:
7a:4e:53:36:c8:ee:ce:1a:4a:13:96:a9:eb:ed:82:
8f:85:a3:16:af:ee:0a:a3:23:0c:a0:71:1e:be:03:
57:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:6A:65:56:F9:5D:59:34:CB:46:08:6A:BD:CC:8C:A9:07:07:1C:96
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RmplVvldWTTLRghqvcyMqQcHHJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:5800::/29
2a0f:2500::/29
2a11:3500::/29
Signature Algorithm: sha256WithRSAEncryption
6f:d4:e2:8d:92:92:b1:25:10:43:bf:3d:a1:92:43:04:2c:a6:
6a:7d:56:bf:3a:15:b7:bb:7d:b1:34:5b:cc:46:2d:3a:ee:2e:
e2:e7:72:0f:8d:67:86:7f:c9:06:b9:51:7c:6f:18:d3:ae:05:
d5:1a:42:07:f0:54:34:f1:7d:33:e3:66:cb:7c:1c:e3:cb:39:
cc:dc:2b:8a:e3:ef:f2:5a:60:bb:4f:60:9a:8a:bd:4e:11:85:
68:68:90:79:5c:79:25:3a:03:10:38:e1:ad:9e:a9:b2:ee:01:
53:f6:db:a6:ba:e4:8e:dd:27:2c:1f:24:6e:e3:b3:27:f4:71:
e3:45:9f:df:f7:7a:cc:12:30:0f:fc:09:ad:64:2e:94:b0:33:
77:8f:d8:f9:12:75:b4:e1:84:23:98:4e:92:09:85:6d:c3:b7:
33:39:61:a4:17:9b:dd:e4:8d:71:e5:83:3d:6e:83:eb:5e:96:
b0:a4:c9:df:3a:f2:5d:5b:07:5b:c3:e3:de:02:68:5d:ae:76:
f3:da:0d:c6:a6:6e:60:53:77:99:48:40:06:92:ae:eb:0c:ec:
13:0a:62:46:3e:0a:75:17:1a:4c:f1:ca:ed:ca:39:db:c8:64:
2d:3f:3d:1f:a7:6c:74:60:88:a5:65:cc:e2:59:1e:96:a6:56:
27:c7:4f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 21:10:56 2025 by rpki-client