Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/1-EHY6vDFYt5WhWo9luql23gWugA.roa
File: 1-EHY6vDFYt5WhWo9luql23gWugA.roa (raw, json)
Hash identifier: I/V81tTnvHkq+7ycMKUru1AeeaJ1y+wcMBLFKbEsltI=
Subject key identifier: F8:41:D8:EA:F0:C5:62:DE:56:85:6A:3D:96:EA:A5:DB:78:16:BA:00
Certificate issuer: /CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Certificate serial: 0193B17D5A4AD43CCCE13ADF1BE50C9FF419
Authority key identifier: CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/1-EHY6vDFYt5WhWo9luql23gWugA.roa
Signing time: Tue 10 Dec 2024 16:53:22 +0000
ROA not before: Tue 10 Dec 2024 16:53:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a06:d640::/32 maxlen: 32
2a06:d646::/32 maxlen: 32
2a09:e302::/32 maxlen: 32
2a09:e306::/32 maxlen: 32
2a09:ef01::/32 maxlen: 32
2a09:ef02::/32 maxlen: 32
2a09:ef05::/32 maxlen: 32
2a09:ef07::/32 maxlen: 32
2a0a:b385::/32 maxlen: 32
2a0b:9001::/32 maxlen: 32
2a0b:9005::/32 maxlen: 32
2a0d:3c44::/32 maxlen: 32
2a0d:95c1::/32 maxlen: 32
2a0d:95c5::/32 maxlen: 32
2a0d:afc0::/32 maxlen: 32
2a0d:afc6::/32 maxlen: 32
2a0d:c105::/32 maxlen: 32
2a0f:3105::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b1:7d:5a:4a:d4:3c:cc:e1:3a:df:1b:e5:0c:9f:f4:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccd76159bfd9e337523ee930f3df111d6bae7306
Validity
Not Before: Dec 10 16:53:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f841d8eaf0c562de56856a3d96eaa5db7816ba00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:84:57:4a:a4:96:0c:a7:01:23:10:2c:05:0a:
e3:0e:bd:43:c2:56:ad:c3:bb:ab:9a:f2:1d:84:8a:
ca:67:61:40:ae:37:c0:48:8d:f9:9b:70:46:15:86:
c5:de:ab:00:2e:17:6f:af:05:4d:69:c8:1c:ec:2b:
21:3d:4b:95:0f:48:4e:74:d9:c7:c0:2e:48:49:c0:
8a:9e:2a:ab:75:7c:ac:73:a7:78:34:93:3d:f6:f8:
fe:77:d3:7e:0c:b3:dc:3a:b2:17:d8:3d:17:ff:8e:
f0:aa:ae:84:48:f4:4e:fc:f6:a3:98:0d:49:95:14:
dd:5b:47:86:8c:d6:a8:66:4b:1a:ef:4d:75:e3:b9:
5b:01:8f:f4:6b:92:87:06:fd:f4:13:34:fc:82:c5:
98:30:a1:47:5a:71:e1:06:30:4e:36:17:97:6e:fb:
7f:79:8d:eb:a0:58:d0:21:f0:ab:08:99:37:ab:3e:
1b:10:a2:66:60:39:33:d9:17:f6:1c:fc:4a:1e:c0:
36:c1:b9:08:5b:c3:a6:d1:e9:12:fc:98:58:f3:7d:
fc:b1:62:93:93:75:95:21:ed:64:94:ec:93:df:32:
3f:d6:c9:d5:0a:70:74:dc:fe:29:e9:66:9e:15:c3:
f6:93:c8:fb:0b:70:fc:f1:75:09:db:dd:44:ad:2e:
b6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:41:D8:EA:F0:C5:62:DE:56:85:6A:3D:96:EA:A5:DB:78:16:BA:00
X509v3 Authority Key Identifier:
keyid:CC:D7:61:59:BF:D9:E3:37:52:3E:E9:30:F3:DF:11:1D:6B:AE:73:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zNdhWb_Z4zdSPukw898RHWuucwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/1-EHY6vDFYt5WhWo9luql23gWugA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/f6ada1-7e8a-4b3e-b7e8-f8589f682691/1/zNdhWb_Z4zdSPukw898RHWuucwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:d640::/32
2a06:d646::/32
2a09:e302::/32
2a09:e306::/32
2a09:ef01::-2a09:ef02:ffff:ffff:ffff:ffff:ffff:ffff
2a09:ef05::/32
2a09:ef07::/32
2a0a:b385::/32
2a0b:9001::/32
2a0b:9005::/32
2a0d:3c44::/32
2a0d:95c1::/32
2a0d:95c5::/32
2a0d:afc0::/32
2a0d:afc6::/32
2a0d:c105::/32
2a0f:3105::/32
Signature Algorithm: sha256WithRSAEncryption
17:00:ab:bc:1f:9e:d4:9f:87:79:ea:67:e9:87:ec:25:d6:08:
85:57:61:fd:f3:29:9b:f4:47:ab:4b:ff:3b:79:f3:f3:57:e4:
dc:55:90:16:67:53:be:48:73:8e:7d:a1:83:c0:86:78:c2:f0:
6c:ff:54:1d:42:a6:0b:e1:41:47:20:e9:a2:20:70:ad:02:b2:
99:16:9b:8d:5d:21:32:4d:1c:78:bd:b0:2f:fe:cf:ce:cd:9c:
16:d2:c7:2d:8d:21:ac:e3:84:de:e5:58:ff:5a:bf:66:09:c0:
90:14:3b:19:8d:e3:97:d5:92:f9:7e:ab:d7:24:b8:c4:0e:2f:
dd:3d:d5:7c:fa:49:8b:21:aa:e0:58:83:4a:04:3c:e9:27:de:
74:a3:86:78:9b:ad:c1:fd:fc:cd:0d:0b:b6:da:ee:b4:e4:55:
52:4e:7b:81:7a:d4:6e:80:49:0f:63:5b:de:31:d8:6a:99:4a:
94:6c:b6:f1:63:3c:b3:25:22:ee:de:52:b4:a1:2f:ee:ba:52:
8a:8f:15:6c:89:9c:b8:ad:13:85:71:8c:29:92:04:e4:8a:f4:
4b:2b:86:78:f5:d2:3a:8f:2a:7d:03:7a:6c:dc:3a:16:ef:53:
49:94:36:a8:f1:ec:bc:8d:40:a9:2a:04:53:ba:10:bd:2f:58:
7b:c6:7d:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:06:51 2025 by rpki-client