Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/FVZuElxrFQYeVmLLatYvhPgB1XY.roa
File: FVZuElxrFQYeVmLLatYvhPgB1XY.roa (raw, json)
Hash identifier: +IaRUn0QfXsiY/tbzzp3Xk4SJD2Ddzhf6x/p21Fm4lw=
Subject key identifier: 15:56:6E:12:5C:6B:15:06:1E:56:62:CB:6A:D6:2F:84:F8:01:D5:76
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 0193866CD0FAD7E95CE7B5A3F821D96D869D
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/FVZuElxrFQYeVmLLatYvhPgB1XY.roa
Signing time: Mon 02 Dec 2024 08:11:38 +0000
ROA not before: Mon 02 Dec 2024 08:11:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30811
IP address blocks: 2a00:1c50:1::/48 maxlen: 48
2a00:1c50:5::/48 maxlen: 48
2a00:1c50:6::/48 maxlen: 48
2a00:1c50:7::/48 maxlen: 48
2a00:1c50:94::/48 maxlen: 48
2a00:1c50:2002::/48 maxlen: 48
2a00:1c50:2003::/48 maxlen: 48
2a00:1c50:2004::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Dec 2024 08:25:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:86:6c:d0:fa:d7:e9:5c:e7:b5:a3:f8:21:d9:6d:86:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Dec 2 08:11:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15566e125c6b15061e5662cb6ad62f84f801d576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1a:70:db:31:0a:29:31:e5:81:d6:21:cc:b8:
02:d6:bd:1d:5f:35:d2:a4:f8:a5:da:af:37:98:1d:
31:83:dd:74:84:04:dd:aa:3c:95:8c:3b:3e:18:1a:
77:f9:7e:49:8f:21:02:75:d0:aa:48:92:cf:06:3c:
e6:14:f9:42:cf:48:74:eb:95:d9:ab:bb:b2:5a:83:
06:2f:f2:73:6b:38:12:67:96:56:65:a8:14:d9:76:
1c:86:2f:6a:02:bc:04:49:15:29:ec:8b:71:81:97:
60:71:fb:fc:68:c5:d2:97:d1:33:be:1c:77:7e:55:
08:ab:af:c1:ba:98:a9:ca:25:9b:20:2a:9f:49:01:
cd:be:b4:ad:99:15:ae:45:03:43:e6:d9:87:7b:7d:
11:70:79:fb:b6:be:33:31:43:6f:d7:9e:79:47:ae:
4f:86:c2:72:8b:62:d7:95:25:f9:5d:dd:66:57:13:
83:a3:86:82:8c:0a:c4:2f:2d:d3:1e:bc:08:e1:ae:
5c:aa:7e:f7:e8:88:3f:ad:30:c5:90:b8:9e:0c:a6:
41:ce:ff:9c:ca:0c:5d:ee:1b:8b:8e:e5:8e:1e:cb:
d0:de:74:43:82:23:38:b6:c3:51:8e:fa:dd:b8:09:
50:3f:0a:75:75:fd:65:51:fa:a0:29:37:e3:ee:86:
ef:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:56:6E:12:5C:6B:15:06:1E:56:62:CB:6A:D6:2F:84:F8:01:D5:76
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/FVZuElxrFQYeVmLLatYvhPgB1XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1c50:1::/48
2a00:1c50:5::-2a00:1c50:7:ffff:ffff:ffff:ffff:ffff
2a00:1c50:94::/48
2a00:1c50:2002::-2a00:1c50:2004:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0a:eb:11:46:af:bb:80:36:fb:d1:6b:88:23:e8:10:ba:89:f1:
11:4b:bd:4f:2b:eb:2e:1c:28:b5:55:36:1f:08:4e:b3:f4:bc:
71:51:cd:ab:cc:38:d6:54:c2:08:d4:15:74:09:3f:f6:c5:8f:
0f:1c:21:e9:9e:5b:0f:72:7f:bf:38:4e:14:bb:83:cb:45:74:
56:cf:ac:48:ec:3c:e5:43:3f:b3:52:d3:21:b6:4c:0a:aa:c2:
43:17:24:13:8e:1f:c2:79:7c:a1:e2:8f:6e:3f:0d:74:bb:1e:
7a:a6:8a:e4:de:16:0d:13:f5:b4:82:e2:59:46:03:2b:90:4f:
e4:7c:68:8f:f9:57:8e:6d:d4:37:f3:92:06:94:b2:a6:38:17:
39:94:a5:e6:77:a0:17:8f:cf:82:45:5b:6a:83:0e:b0:3a:06:
4b:3c:b9:93:d4:0c:28:49:12:9a:e8:fc:41:84:47:bd:05:c4:
cf:98:b4:a7:6a:ab:c1:4b:ad:5b:c0:dc:be:a3:f9:e2:c6:22:
70:c3:bd:61:fb:d2:67:fd:f9:f4:c9:58:a8:55:70:7b:25:26:
86:25:5b:3f:81:83:4e:0c:9c:f8:63:7f:3f:d9:ef:b9:92:28:
bc:22:8d:4b:6e:c8:ed:6b:6f:c3:33:40:37:72:b4:ec:39:3f:
32:21:a3:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 08:43:28 2025 by rpki-client