Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/rypuO-6-5xY9QzLvB6CV-_FBTLY.roa
File: rypuO-6-5xY9QzLvB6CV-_FBTLY.roa (raw, json)
Hash identifier: SHupmccV87nStEL0ZE9Z3VS+F+8auLLjnTdhNKt0RS0=
Subject key identifier: AF:2A:6E:3B:EE:BE:E7:16:3D:43:32:EF:07:A0:95:FB:F1:41:4C:B6
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0196AA530A535A743A1393A8878D7B9EC8D2
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/rypuO-6-5xY9QzLvB6CV-_FBTLY.roa
Signing time: Wed 07 May 2025 10:38:10 +0000
ROA not before: Wed 07 May 2025 10:38:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7029
IP address blocks: 2a0e:1a80:1::/48 maxlen: 48
2a0e:c785:1::/48 maxlen: 48
2a0e:f200::/48 maxlen: 48
2a0f:1203::/32 maxlen: 32
2a0f:1580::/32 maxlen: 32
2a0f:1e80:d9a8::/48 maxlen: 48
2a0f:3043::/32 maxlen: 32
2a0f:3d80:bac::/48 maxlen: 48
2a0f:7d06:102::/48 maxlen: 48
2a0f:e847:acab::/48 maxlen: 48
2a10:67c2:3::/48 maxlen: 48
2a12:ac43:1::/48 maxlen: 48
2a13:18c0:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 12 May 2025 07:10:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:53:0a:53:5a:74:3a:13:93:a8:87:8d:7b:9e:c8:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 7 10:38:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af2a6e3beebee7163d4332ef07a095fbf1414cb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:94:4e:fd:ed:af:1e:8b:b7:63:a5:33:f7:d1:
63:83:49:ca:27:93:09:27:43:70:8f:8a:86:fa:c4:
d4:d0:9c:71:d7:df:5e:95:86:42:f8:5d:81:b6:22:
9a:3f:1f:9a:34:e2:d7:b5:3a:86:f8:53:bb:4d:02:
56:3c:70:43:10:d1:df:f4:c2:29:d9:b8:c9:6e:1b:
b7:44:40:ee:7e:3a:ed:7c:8a:53:41:05:2b:0d:c7:
51:87:07:a8:13:23:04:00:91:89:43:23:a4:9b:83:
69:9f:21:d8:e4:ab:b8:ea:1b:00:68:27:8f:82:ea:
57:99:bd:77:e0:fd:ab:fc:5d:fc:9e:b2:18:b6:ee:
66:f1:31:7b:62:fa:2c:c1:6b:fa:3b:0d:01:5e:ab:
6f:5c:6e:2b:e5:13:23:75:31:01:fd:77:7d:fd:c5:
bb:6e:05:3c:84:2c:c5:5a:43:0b:a7:2e:87:03:11:
5a:82:56:ae:2e:ac:27:fa:65:53:38:d6:5b:f5:8e:
db:b3:34:e2:9a:f5:f1:66:0f:36:9a:ee:97:6f:58:
66:33:ce:ec:40:14:ff:65:bb:3c:00:55:49:24:90:
ec:67:81:60:96:f7:77:81:81:23:59:fa:e7:a7:11:
1a:cf:8c:e4:6f:23:a3:2f:74:6c:39:da:d7:ce:d3:
e5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2A:6E:3B:EE:BE:E7:16:3D:43:32:EF:07:A0:95:FB:F1:41:4C:B6
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/rypuO-6-5xY9QzLvB6CV-_FBTLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1a80:1::/48
2a0e:c785:1::/48
2a0e:f200::/48
2a0f:1203::/32
2a0f:1580::/32
2a0f:1e80:d9a8::/48
2a0f:3043::/32
2a0f:3d80:bac::/48
2a0f:7d06:102::/48
2a0f:e847:acab::/48
2a10:67c2:3::/48
2a12:ac43:1::/48
2a13:18c0:2::/48
Signature Algorithm: sha256WithRSAEncryption
5d:9e:dd:1c:23:af:fb:38:e8:e8:35:62:68:d5:26:3a:46:2b:
6f:76:57:2c:0b:79:0f:8e:f1:26:80:92:b7:2d:43:aa:b3:d7:
5b:9a:06:c3:b3:5b:04:2d:a6:47:35:79:a2:29:81:35:2c:a2:
34:ec:39:95:a7:a0:e7:5c:ae:22:f3:7d:9c:b5:8d:40:19:21:
4f:c7:8a:84:fe:0f:34:1d:d8:43:8d:eb:91:0b:d2:2e:35:5c:
36:06:bf:9c:11:00:32:55:70:48:09:6d:3f:53:5b:8f:c7:81:
c0:fb:a4:61:31:00:e6:f3:5f:63:ce:98:d9:5a:a6:bb:48:7a:
71:a9:b4:e1:c2:e5:ee:ce:16:c7:df:da:1b:6f:fa:82:54:4b:
98:a9:84:fd:6b:11:68:2b:73:87:85:e3:e5:57:b4:2b:28:c7:
79:eb:9e:d5:4d:87:2f:b5:9c:7f:7a:56:63:5c:f1:3e:71:43:
8c:59:ea:c5:95:57:39:88:db:c4:64:a2:92:b2:4d:41:30:6d:
1a:cc:a9:1b:f2:fd:a0:27:71:b1:41:5b:74:f5:89:4f:14:c0:
5a:de:fb:49:ed:5f:1a:c1:07:c9:a9:18:e1:bb:fc:ab:9b:c1:
43:3a:b0:bc:90:50:20:7b:6e:ec:8c:44:ce:9a:35:9b:73:40:
a0:30:91:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 04:16:03 2025 by rpki-client