Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/LyXmMJFU9f3KFXxfj37b9Ew9ZKg.roa
File: LyXmMJFU9f3KFXxfj37b9Ew9ZKg.roa (raw, json)
Hash identifier: 7EQQYDnHDjDNSKCBKwwnS8F3F09Out3cxLIzgTJg2eU=
Subject key identifier: 2F:25:E6:30:91:54:F5:FD:CA:15:7C:5F:8F:7E:DB:F4:4C:3D:64:A8
Certificate issuer: /CN=c236e8c216f05a9d9e0327f1222bf12198aba5da
Certificate serial: 01948003E517406966FFF4BE92FE9F77F79E
Authority key identifier: C2:36:E8:C2:16:F0:5A:9D:9E:03:27:F1:22:2B:F1:21:98:AB:A5:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wjbowhbwWp2eAyfxIivxIZirpdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/LyXmMJFU9f3KFXxfj37b9Ew9ZKg.roa
Signing time: Sun 19 Jan 2025 19:22:06 +0000
ROA not before: Sun 19 Jan 2025 19:22:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213915
IP address blocks: 2a07:2486:4ff0::/44 maxlen: 44
Validation: Failed, certificate revoked on Sun 19 Jan 2025 21:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:80:03:e5:17:40:69:66:ff:f4:be:92:fe:9f:77:f7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c236e8c216f05a9d9e0327f1222bf12198aba5da
Validity
Not Before: Jan 19 19:22:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2f25e6309154f5fdca157c5f8f7edbf44c3d64a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b9:00:b2:6f:d4:c1:75:05:19:f6:b4:ea:a7:
06:25:88:b2:14:f3:52:ab:25:d5:11:1e:83:2c:c9:
53:48:b2:01:f9:a5:32:db:5f:5d:52:95:e8:b2:6e:
d2:cc:d2:c5:6f:bb:4c:c0:7f:7f:d5:eb:f2:cb:47:
a5:d4:ca:f5:3b:b4:dc:c9:35:2a:b5:8e:bf:9c:3f:
a1:45:1a:9a:ec:1b:56:62:33:81:fb:99:66:a7:36:
ae:95:88:87:df:cd:ea:5d:50:16:79:54:8b:d7:23:
ca:f9:d8:8d:54:c8:ac:97:19:a7:50:0b:61:2c:ad:
89:a8:56:4e:25:ee:35:1a:61:ea:f1:db:2a:6c:5c:
e9:a3:aa:f7:a0:c0:e0:81:39:04:00:ea:a3:14:9e:
b3:6b:4e:41:87:3a:28:be:d8:4e:38:f7:7f:6d:81:
c9:09:04:d2:d0:f5:d7:c5:95:40:9d:15:1d:96:c1:
9f:79:4d:63:d4:2b:f7:ac:d9:63:3c:31:06:af:29:
a9:19:59:54:af:41:11:eb:35:de:47:46:16:99:4d:
55:d1:ad:27:3a:62:e6:b8:1f:e4:9a:be:97:3b:60:
5f:ea:92:f9:6d:6b:89:c8:bd:b8:2b:41:06:33:e7:
05:42:29:0f:ce:60:66:66:e2:54:b8:75:d6:9a:d7:
d1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:25:E6:30:91:54:F5:FD:CA:15:7C:5F:8F:7E:DB:F4:4C:3D:64:A8
X509v3 Authority Key Identifier:
keyid:C2:36:E8:C2:16:F0:5A:9D:9E:03:27:F1:22:2B:F1:21:98:AB:A5:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wjbowhbwWp2eAyfxIivxIZirpdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/LyXmMJFU9f3KFXxfj37b9Ew9ZKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2a413e-8974-4dc7-9ce8-384ffce77f52/1/wjbowhbwWp2eAyfxIivxIZirpdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:2486:4ff0::/44
Signature Algorithm: sha256WithRSAEncryption
b7:2a:84:0e:79:38:51:ec:95:03:cd:76:24:54:8d:c1:9b:5e:
00:f4:90:df:23:79:94:9f:23:d5:76:69:08:13:ad:1c:75:ad:
24:bd:95:3d:3f:36:47:dd:d9:28:82:fb:9f:4b:b9:51:0d:d2:
e4:bd:85:45:31:16:7e:f1:9f:d5:5f:60:67:49:8b:66:49:b5:
f9:ec:6d:72:1d:b1:42:55:a1:c5:1d:79:f9:1b:d8:e1:ab:68:
e7:de:1b:c7:9b:15:3e:ed:6e:5f:42:fb:fb:64:1b:b7:5a:6f:
00:9a:98:b1:92:ee:8e:63:f2:3f:85:3b:6a:f6:2c:ed:f5:36:
02:9b:1d:b7:bb:37:6a:2e:f3:38:97:e5:09:e7:50:b8:f0:fe:
66:71:41:21:aa:69:ef:85:41:10:44:1c:84:66:17:bf:c2:ad:
14:c2:3a:d2:e9:e3:3a:c4:59:ea:87:54:aa:87:af:01:80:e8:
12:26:a7:7f:f1:5b:97:aa:b8:85:87:ca:c1:c5:12:70:3c:c0:
d9:a3:09:a9:58:f0:a8:bc:02:fe:ad:6a:4e:77:a6:20:f9:21:
25:9b:5c:dd:17:43:73:6e:41:40:a3:6c:c1:29:d4:4f:00:a8:
af:d6:db:be:30:9c:39:28:56:4a:d2:3b:ca:d6:e9:e5:48:ed:
27:d1:4c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 06:28:08 2025 by rpki-client