Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/U--MTNg-uzlISAjtPyefVvjkFhY.roa
File: U--MTNg-uzlISAjtPyefVvjkFhY.roa (raw, json)
Hash identifier: T6pqVsUChN/JAOsIOx1deixQ05mB22z/D/Ktn6gsYCk=
Subject key identifier: 53:EF:8C:4C:D8:3E:BB:39:48:48:08:ED:3F:27:9F:56:F8:E4:16:16
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0190C4CBE2668A0EB71DDEC4FDF27C9C65B9
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/U--MTNg-uzlISAjtPyefVvjkFhY.roa
Signing time: Thu 18 Jul 2024 07:43:34 +0000
ROA not before: Thu 18 Jul 2024 07:43:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9123
IP address blocks: 2a12:ecc0:f::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 18 Jul 2024 10:58:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c4:cb:e2:66:8a:0e:b7:1d:de:c4:fd:f2:7c:9c:65:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 18 07:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53ef8c4cd83ebb39484808ed3f279f56f8e41616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:10:97:fe:01:a1:0a:3c:c5:17:8d:83:16:93:
51:a6:12:36:f0:7a:9b:1e:1d:ae:6c:90:02:14:25:
38:cf:03:72:68:a0:d3:19:94:27:59:18:09:dc:1e:
8c:36:63:50:f2:dd:25:e7:a0:c2:55:68:8a:af:31:
85:9a:28:c0:6a:d1:4f:e2:71:8a:0b:73:c3:40:78:
06:ce:c9:57:03:a6:bb:27:13:15:f0:c2:47:85:6d:
c4:11:b0:39:c9:8a:9c:dd:f3:7b:e9:70:43:fb:b1:
5d:fb:9f:b1:59:96:6f:77:32:dd:70:48:71:ff:e9:
44:63:54:2e:02:dd:61:ac:33:c7:a8:ba:75:f6:ac:
3c:83:3a:5f:36:50:77:70:b0:79:aa:2b:d0:09:da:
6f:0c:0a:d9:6e:73:a5:78:a6:9a:83:6e:be:df:a9:
75:08:7b:f1:3c:d5:04:d1:a2:35:81:c6:84:0d:b8:
c1:97:58:61:a5:77:46:e0:19:45:49:7d:f5:f8:4e:
46:4a:42:11:fc:d8:93:a4:db:0a:14:95:0b:6e:7e:
9e:4f:23:bd:d7:90:43:95:bd:f9:11:a7:0c:81:85:
3f:9c:c3:46:e5:d5:d6:fa:d9:2b:ca:5a:42:a9:10:
db:fb:a8:31:7a:77:8c:3a:92:9b:4f:33:91:90:e4:
17:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:EF:8C:4C:D8:3E:BB:39:48:48:08:ED:3F:27:9F:56:F8:E4:16:16
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/U--MTNg-uzlISAjtPyefVvjkFhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:ecc0:f::/48
Signature Algorithm: sha256WithRSAEncryption
88:a2:84:5c:68:c6:96:06:45:73:2c:e3:e4:cf:3c:0a:20:a8:
70:00:34:6d:d8:38:0a:f9:cf:5e:b2:b0:dc:18:e3:76:de:66:
10:05:ef:84:ca:d6:49:04:be:8b:9f:bf:64:b7:88:49:2e:04:
e8:bb:a6:b0:05:27:2f:15:fa:76:de:bd:15:40:2f:8c:3b:7d:
17:08:ad:d9:49:b4:7b:0d:30:4a:d6:d2:98:ba:c4:16:13:a9:
7c:ed:b6:e9:30:44:3c:b4:80:9d:74:3c:f0:13:e8:14:12:55:
84:7f:e9:e2:8d:10:f5:39:6d:a7:fa:13:70:e7:d8:8c:2a:b1:
eb:79:47:5d:72:09:64:7f:4d:ef:7d:3f:94:a4:34:ac:63:47:
11:23:0f:ed:4f:02:cd:07:64:59:c7:b2:a1:71:86:f7:c2:8c:
f9:a1:a6:49:b9:9a:13:09:b1:c4:c3:37:6b:b1:78:97:b7:00:
29:9e:69:61:42:74:df:d3:79:5c:a3:57:25:a9:7d:e8:01:a6:
6e:48:33:6d:d3:d7:76:81:e6:03:5c:cb:7e:05:c5:a8:e5:40:
d3:e6:dc:20:b1:ec:82:b9:40:97:37:80:e7:df:b9:e3:c8:a3:
e8:1e:d5:25:81:5e:e7:bd:19:fb:12:19:89:1b:2e:9f:9f:03:
de:ea:85:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:27:16 2025 by rpki-client