Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/B0f5XfVI2FdkDCeYdwAWZ81p_sg.roa
File: B0f5XfVI2FdkDCeYdwAWZ81p_sg.roa (raw, json)
Hash identifier: k0t8ysORik0ltJ8TXa3QEUtbjK0jZ59KvEVeyKXpHi4=
Subject key identifier: 07:47:F9:5D:F5:48:D8:57:64:0C:27:98:77:00:16:67:CD:69:FE:C8
Certificate issuer: /CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512
Certificate serial: 019837AF3133FF2464F09A1960788395A657
Authority key identifier: 58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/B0f5XfVI2FdkDCeYdwAWZ81p_sg.roa
Signing time: Wed 23 Jul 2025 14:28:04 +0000
ROA not before: Wed 23 Jul 2025 14:28:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 401835
IP address blocks: 2a14:c380:320::/44 maxlen: 44
Validation: Failed, certificate revoked on Thu 24 Jul 2025 09:26:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:37:af:31:33:ff:24:64:f0:9a:19:60:78:83:95:a6:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b3de5f9adb50fe41f6dc78ffd0a2c9086d2512
Validity
Not Before: Jul 23 14:28:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0747f95df548d857640c279877001667cd69fec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9b:a7:a3:20:48:6e:b3:f0:c4:a0:ad:61:30:
b0:f9:b3:dd:24:76:d0:97:67:87:a5:7b:a5:05:e2:
ed:16:3f:72:de:03:94:90:73:82:72:b3:bc:4a:83:
f4:5a:fc:a7:c8:e8:a1:e6:ed:81:2e:5c:97:e9:91:
af:63:c1:51:b4:4d:46:79:52:42:08:c0:fe:64:4f:
5a:a3:2a:24:82:27:bc:96:0f:fd:10:6a:d4:01:60:
2a:0e:81:26:89:cd:85:52:90:31:20:c5:16:ca:f4:
33:5c:4d:af:51:a8:7e:3a:79:f6:77:59:df:5a:b4:
aa:4a:9f:e5:48:72:2b:6c:ff:8e:07:64:aa:15:67:
dd:e3:29:ae:d7:6b:97:ac:ab:c8:6a:2a:37:fa:2e:
b4:f7:00:48:05:52:db:a3:ce:e0:0e:32:5b:a9:80:
6c:af:e7:ae:cd:14:e7:c7:87:2a:a6:dd:70:8c:ab:
50:b4:ab:99:49:cb:02:c2:73:dc:cd:8d:14:fb:4c:
82:c2:95:5d:19:2e:a4:ee:0e:78:65:12:bd:db:d9:
53:55:89:53:1c:b7:ff:ac:5d:a3:81:37:a1:8a:9e:
f2:0c:f5:5a:bf:b6:0d:0e:e7:fa:22:4e:68:8a:c7:
ae:a3:10:2d:db:93:40:a1:15:1f:43:5b:da:33:c8:
30:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:47:F9:5D:F5:48:D8:57:64:0C:27:98:77:00:16:67:CD:69:FE:C8
X509v3 Authority Key Identifier:
keyid:58:B3:DE:5F:9A:DB:50:FE:41:F6:DC:78:FF:D0:A2:C9:08:6D:25:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLPeX5rbUP5B9tx4_9CiyQhtJRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/B0f5XfVI2FdkDCeYdwAWZ81p_sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/6b7490-e10a-42e0-9e2e-5321d69d979d/1/WLPeX5rbUP5B9tx4_9CiyQhtJRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:c380:320::/44
Signature Algorithm: sha256WithRSAEncryption
59:bf:78:15:ea:00:8e:e1:6a:52:a9:01:2a:9b:3f:fd:9a:4e:
1c:76:2d:bc:92:2f:08:d9:1f:17:28:e0:7d:80:89:a4:3f:29:
74:0c:5f:ab:c1:f2:03:c6:1a:16:3e:c6:b1:7a:9b:dd:8c:e8:
42:e8:6f:84:18:f0:c1:84:61:64:91:7c:2c:fa:e6:54:5a:4d:
07:96:ec:05:a6:96:9c:18:9d:4b:79:1d:ac:f4:b2:90:b4:fd:
9d:dd:a2:24:69:0f:51:a2:72:7e:d2:48:25:54:c2:fb:23:25:
ff:f3:72:cf:19:38:00:5b:b4:76:de:85:d8:76:64:5c:47:f8:
05:5f:08:8d:23:bd:d0:95:b1:71:42:f6:20:21:01:66:69:9f:
88:ed:31:0a:1a:34:b7:b8:aa:be:b3:f7:32:a9:7e:af:7a:22:
c5:b2:41:0c:bf:49:76:93:bc:ab:df:f0:3e:85:a4:ff:30:d7:
a2:5d:c0:b2:6f:f8:db:9a:7d:54:86:08:a8:93:d4:ff:b5:d0:
2c:32:a4:e9:7f:66:06:91:17:ac:f2:48:91:6f:0f:d3:29:d9:
02:dd:35:e9:71:c7:37:92:66:f0:84:b0:32:62:c1:fd:cd:0d:
d2:01:18:a2:61:13:00:10:0b:34:b1:2d:80:9e:ba:f3:5b:b9:
eb:21:74:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 15:44:45 2025 by rpki-client