Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/XcYEZd2xxsX5g9A1aBSRgxJ3fQs.roa
File: XcYEZd2xxsX5g9A1aBSRgxJ3fQs.roa (raw, json)
Hash identifier: zmYCGNkRUgXWBLslkM8dJL73a7oKGJIk8ygEDC43Qao=
Subject key identifier: 5D:C6:04:65:DD:B1:C6:C5:F9:83:D0:35:68:14:91:83:12:77:7D:0B
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0193F44D4645823E6D014B10AF2918CB0C67
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/XcYEZd2xxsX5g9A1aBSRgxJ3fQs.roa
Signing time: Mon 23 Dec 2024 16:15:25 +0000
ROA not before: Mon 23 Dec 2024 16:15:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 64.226.54.0/23 maxlen: 23
64.226.156.0/22 maxlen: 22
2a0d:8f80::/29 maxlen: 29
2a0e:f500::/29 maxlen: 29
2a0e:f602::/32 maxlen: 32
2a0f:3d83::/32 maxlen: 32
2a10:37c0::/29 maxlen: 29
2a10:67c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 27 Dec 2024 18:29:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f4:4d:46:45:82:3e:6d:01:4b:10:af:29:18:cb:0c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Dec 23 16:15:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5dc60465ddb1c6c5f983d0356814918312777d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:26:59:ba:bd:4c:31:9d:bd:04:93:27:07:b4:
c5:65:e3:09:ce:f0:c0:e6:b3:7e:36:d4:3f:e3:13:
a0:c7:b5:54:2c:94:8a:4f:8f:84:75:8b:49:7b:1c:
67:fd:35:c9:b9:40:54:a8:e1:11:94:5d:c4:0d:f9:
96:b8:4b:5f:ae:ef:a9:50:f7:44:46:0f:1c:dc:7e:
c2:e8:f6:00:fb:ab:c5:db:d6:a5:29:8f:98:bc:03:
50:cc:40:10:51:96:35:3d:d0:fe:f6:c0:07:4d:8b:
12:56:e7:88:ec:67:38:25:dd:fb:51:57:f7:0f:64:
7b:bc:6c:0f:5d:22:47:10:9d:9d:49:02:16:5c:30:
ca:39:58:8c:65:1a:57:d7:ce:b7:18:f9:78:08:cf:
d3:5c:79:44:6c:8d:29:6d:52:0e:45:34:4b:7a:7b:
14:db:e6:82:91:9f:e7:9b:4e:bf:fe:4f:61:d8:ce:
3f:5f:b0:75:72:39:74:84:e9:71:87:55:3f:53:30:
c0:83:23:98:28:ea:6e:82:31:ae:76:ec:61:fd:7b:
b4:34:eb:77:e7:d4:1f:b1:1e:e0:2f:a4:4f:2c:f6:
8c:88:b4:1e:98:a7:39:86:32:39:c5:54:56:3e:63:
30:98:89:72:bc:4c:0e:4f:19:54:8d:1d:ef:7b:73:
91:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C6:04:65:DD:B1:C6:C5:F9:83:D0:35:68:14:91:83:12:77:7D:0B
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/XcYEZd2xxsX5g9A1aBSRgxJ3fQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.226.54.0/23
64.226.156.0/22
IPv6:
2a0d:8f80::/29
2a0e:f500::/29
2a0e:f602::/32
2a0f:3d83::/32
2a10:37c0::/29
2a10:67c0::/32
Signature Algorithm: sha256WithRSAEncryption
2d:f1:3b:44:7b:ac:2e:a5:d4:9e:47:bc:69:54:9a:68:bc:31:
d1:1b:5c:e2:26:e1:48:e1:6e:d4:43:7e:c2:4a:8f:4c:77:a9:
8f:dd:9a:af:7a:66:82:07:95:e7:20:09:2e:26:d1:cd:73:62:
81:9f:e6:2f:2a:47:e9:3b:16:72:f5:e8:4c:ad:53:c7:20:87:
bc:81:23:01:42:84:e2:a9:c3:a9:4b:33:1f:65:26:d3:61:2d:
e2:c5:3c:1d:32:67:44:f2:bf:0a:68:38:b7:6b:45:12:d4:27:
d8:be:29:4e:f4:02:07:a6:f3:28:38:08:d2:e1:dd:70:a4:64:
5d:e0:fc:a1:63:1f:15:67:d8:84:61:c7:83:17:50:c9:1b:e7:
d5:08:a6:bc:d4:df:fe:9e:bb:45:26:4c:41:f3:ab:03:1c:96:
4f:58:dc:1b:d7:e2:b2:93:8a:fe:08:58:cc:13:18:49:db:e9:
8a:d1:c2:1a:0a:7a:ce:8a:26:22:16:b3:68:ab:25:4b:36:f6:
e9:67:4c:a7:a0:db:a8:c1:d6:80:de:7c:68:7d:ab:ee:3b:90:
94:3a:93:fe:0c:87:93:d0:53:e6:2a:46:4a:06:1a:5e:41:da:
e4:f2:86:a6:4a:05:27:bb:e8:ea:ca:38:68:ee:35:67:21:43:
82:68:e1:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 08:47:04 2025 by rpki-client