Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ThAO7GVZ-G38LH4wLvf3oXXj2zU.roa
File: ThAO7GVZ-G38LH4wLvf3oXXj2zU.roa (raw, json)
Hash identifier: +GJfPP+To/n3lqh64tppafbcQhI4joZ/C/tGUBbzGKg=
Subject key identifier: 4E:10:0E:EC:65:59:F8:6D:FC:2C:7E:30:2E:F7:F7:A1:75:E3:DB:35
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01912DC3130E6AADCEF14806C14EF5860E2E
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ThAO7GVZ-G38LH4wLvf3oXXj2zU.roa
Signing time: Wed 07 Aug 2024 16:54:04 +0000
ROA not before: Wed 07 Aug 2024 16:54:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214402
IP address blocks: 2a0f:ea43:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 11 Aug 2024 15:57:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2d:c3:13:0e:6a:ad:ce:f1:48:06:c1:4e:f5:86:0e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 7 16:54:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e100eec6559f86dfc2c7e302ef7f7a175e3db35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9f:10:b0:3a:73:55:14:4e:4d:9f:e1:db:33:
99:4d:13:41:f1:07:9c:e1:d0:5e:88:c4:6a:6f:7d:
c0:ff:89:4e:e3:d0:54:64:56:9e:10:97:65:40:89:
b4:d5:fc:9b:7b:67:bc:e1:43:52:65:90:9a:13:0a:
ca:35:9a:9a:a1:6c:f9:76:b1:8a:11:32:fa:70:d4:
91:30:b7:c7:b3:b0:e5:b8:3d:d1:02:04:d4:3d:62:
9c:fe:45:68:39:3d:a0:03:23:01:3c:4b:d5:8f:c1:
96:5b:81:dc:63:e6:ed:71:50:b1:7d:60:21:6c:90:
c7:ac:5f:54:43:c2:16:91:b6:75:60:a4:10:ff:ab:
f3:b0:e0:2e:68:92:8b:23:4c:68:73:3e:31:7c:e6:
a0:91:31:0c:89:da:f5:bc:aa:33:0c:8c:ab:13:72:
e0:27:7e:4e:36:ff:b0:ef:9b:c8:57:57:13:a4:01:
f9:8a:bf:fb:a6:c2:4e:1f:c6:12:37:c3:0f:4a:da:
5e:8d:42:d0:e0:65:f8:54:20:49:5e:70:ea:85:cd:
d5:69:90:d5:b8:50:5b:59:7d:87:90:4f:7c:ae:cb:
a0:3e:2c:83:a0:d5:98:18:ec:e2:cf:5b:df:a2:f1:
b5:05:87:f1:d1:e4:f2:96:ee:b3:13:b0:ec:2b:43:
3e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:10:0E:EC:65:59:F8:6D:FC:2C:7E:30:2E:F7:F7:A1:75:E3:DB:35
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/ThAO7GVZ-G38LH4wLvf3oXXj2zU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:ea43:1::/48
Signature Algorithm: sha256WithRSAEncryption
69:b7:5a:ae:d9:0e:d4:52:1f:30:c0:c1:eb:f6:05:51:c7:dc:
c8:29:f7:4c:d5:b1:bd:ec:55:a2:90:31:4b:04:1d:ce:ce:04:
a8:f3:e3:61:16:5c:70:d4:47:ce:36:a9:50:b2:86:a1:48:6f:
96:b0:e2:e7:94:8c:80:1f:cf:2d:ad:f5:d3:f4:7b:bd:d6:e5:
04:ef:30:70:f7:6c:8f:d6:68:4d:a7:a0:2b:00:49:65:9b:01:
c2:ec:c8:93:a6:d6:d0:f8:6c:97:63:89:02:a4:b6:86:eb:03:
54:63:37:78:e2:65:82:50:1f:b9:ac:94:0c:24:56:4e:f0:1c:
f8:71:51:f2:f6:a2:47:bf:36:4b:42:c6:42:e8:13:c4:52:c5:
f8:1d:75:c5:47:5e:e9:d3:39:23:6c:9e:c3:3b:c2:3e:5d:1e:
70:97:41:fe:89:c6:7b:1a:c3:ce:e7:35:c8:8f:22:fd:74:77:
b3:3e:6a:b2:21:dd:00:9d:6a:fa:70:ed:5e:8f:21:df:90:e8:
86:06:a0:56:75:db:b5:b0:85:d4:a4:50:22:0d:a7:0a:e8:74:
5f:5b:23:7c:84:5d:b5:68:a7:40:76:bd:f0:32:44:15:d9:cb:
91:d2:6a:c1:93:90:22:e9:9e:a1:ba:e0:6f:97:50:b3:33:8f:
2f:a0:fb:c9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZEtwxMOaq3O8UgGwU71hg4uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwODA3MTY1NDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTEwMGVlYzY1NTlmODZkZmMyYzdlMzAyZWY3ZjdhMTc1ZTNkYjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkJ8QsDpzVRROTZ/h2zOZTRNB8Qec
4dBeiMRqb33A/4lO49BUZFaeEJdlQIm01fybe2e84UNSZZCaEwrKNZqaoWz5drGK
ETL6cNSRMLfHs7DluD3RAgTUPWKc/kVoOT2gAyMBPEvVj8GWW4HcY+btcVCxfWAh
bJDHrF9UQ8IWkbZ1YKQQ/6vzsOAuaJKLI0xocz4xfOagkTEMidr1vKozDIyrE3Lg
J35ONv+w75vIV1cTpAH5ir/7psJOH8YSN8MPStpejULQ4GX4VCBJXnDqhc3VaZDV
uFBbWX2HkE98rsugPiyDoNWYGOziz1vfovG1BYfx0eTylu6zE7DsK0M+DQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFE4QDuxlWfht/Cx+MC7396F149s1MB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvVGhBTzdHVlotRzM4TEg0d0x2ZjNvWFhqMnpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg/qQwAB
MA0GCSqGSIb3DQEBCwUAA4IBAQBpt1qu2Q7UUh8wwMHr9gVRx9zIKfdM1bG97FWi
kDFLBB3OzgSo8+NhFlxw1EfONqlQsoahSG+WsOLnlIyAH88trfXT9Hu91uUE7zBw
92yP1mhNp6ArAEllmwHC7MiTptbQ+GyXY4kCpLaG6wNUYzd44mWCUB+5rJQMJFZO
8Bz4cVHy9qJHvzZLQsZC6BPEUsX4HXXFR17p0zkjbJ7DO8I+XR5wl0H+icZ7GsPO
5zXIjyL9dHezPmqyId0AnWr6cO1ejyHfkOiGBqBWddu1sIXUpFAiDacK6HRfWyN8
hF21aKdAdr3wMkQV2cuR0mrBk5Ai6Z6huuBvl1CzM48voPvJ
-----END CERTIFICATE-----
Generated at Fri May 9 06:40:09 2025 by rpki-client