Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/h0vvk9ESQfKg8Punf-plcXuQw1Q.roa
File: h0vvk9ESQfKg8Punf-plcXuQw1Q.roa (raw, json)
Hash identifier: X+w4g7TILF79pURuNLJaXFSWO4V3asrvtDhTNZA+Ris=
Subject key identifier: 87:4B:EF:93:D1:12:41:F2:A0:F0:FB:A7:7F:EA:65:71:7B:90:C3:54
Certificate issuer: /CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f
Certificate serial: 01977FC490DF168307ACCDB7B29689D1566D
Authority key identifier: 7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/h0vvk9ESQfKg8Punf-plcXuQw1Q.roa
Signing time: Tue 17 Jun 2025 21:21:17 +0000
ROA not before: Tue 17 Jun 2025 21:21:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209641
IP address blocks: 2a09:da46::/32 maxlen: 32
2a0c:ac0::/32 maxlen: 32
2a0c:ac4::/32 maxlen: 32
2a0c:ac6::/32 maxlen: 32
2a0d:adc0::/32 maxlen: 32
2a0d:adc7::/32 maxlen: 32
2a11:21c4::/32 maxlen: 32
2a11:35c2::/32 maxlen: 32
2a11:3d02::/32 maxlen: 32
2a11:5a45::/32 maxlen: 32
2a11:7080::/32 maxlen: 32
2a11:d385::/32 maxlen: 32
2a11:d701::/32 maxlen: 32
2a12:24c6::/32 maxlen: 32
2a12:35c7::/32 maxlen: 32
2a12:41c3::/32 maxlen: 32
2a12:7307::/32 maxlen: 32
2a14:9701::/32 maxlen: 32
2a14:9702::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 18 Jun 2025 18:27:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7f:c4:90:df:16:83:07:ac:cd:b7:b2:96:89:d1:56:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f
Validity
Not Before: Jun 17 21:21:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=874bef93d11241f2a0f0fba77fea65717b90c354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5b:6b:e8:22:cd:66:50:6a:5f:a7:7f:e2:13:
0d:e7:0f:bf:32:31:f3:4d:a0:27:f8:92:85:70:df:
3b:95:d0:50:01:e3:3f:52:0e:53:a8:10:76:71:fe:
32:82:a3:19:1c:62:f1:c8:18:a3:8e:34:e4:a5:53:
d9:e1:f4:92:96:29:29:8a:90:a9:05:0d:97:23:fd:
5f:0d:95:74:d8:2c:1e:03:b5:ba:51:29:9b:68:43:
ce:19:a5:92:54:07:46:f1:b2:00:a6:95:8a:04:85:
93:b1:32:c0:1c:df:e3:3f:55:fc:21:dd:c7:b1:50:
85:4c:b2:d5:37:de:96:1e:13:a1:98:ea:33:de:4d:
de:6f:26:7d:b8:9b:6a:d6:d0:14:ac:90:fa:eb:11:
08:df:3c:71:26:e9:55:aa:f8:65:00:4e:1a:71:19:
53:cf:80:5c:6b:85:e5:5d:f9:fe:c0:3d:48:eb:c8:
51:97:64:f1:3f:59:64:71:a1:37:0f:3a:a1:e2:15:
8a:4b:4f:b3:2c:9d:b8:25:d0:21:22:bf:28:48:d8:
3a:49:71:e7:ae:c6:e8:3f:5c:59:c5:c6:ef:f1:8f:
11:cd:cf:26:aa:8e:5d:38:22:df:80:ce:b0:03:56:
cc:1d:d4:4e:ad:b0:39:fa:27:61:0f:17:0c:06:1b:
8b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:4B:EF:93:D1:12:41:F2:A0:F0:FB:A7:7F:EA:65:71:7B:90:C3:54
X509v3 Authority Key Identifier:
keyid:7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/h0vvk9ESQfKg8Punf-plcXuQw1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:da46::/32
2a0c:ac0::/32
2a0c:ac4::/32
2a0c:ac6::/32
2a0d:adc0::/32
2a0d:adc7::/32
2a11:21c4::/32
2a11:35c2::/32
2a11:3d02::/32
2a11:5a45::/32
2a11:7080::/32
2a11:d385::/32
2a11:d701::/32
2a12:24c6::/32
2a12:35c7::/32
2a12:41c3::/32
2a12:7307::/32
2a14:9701::-2a14:9702:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
0d:73:e0:e8:65:aa:bf:85:e8:ba:56:c1:5e:16:ff:7f:cd:70:
f0:04:d7:19:57:1a:c2:5a:59:1e:12:09:ad:c7:fe:74:eb:55:
62:f6:eb:a0:ed:5a:b9:9b:a5:d5:5c:5c:97:ed:1b:fa:e1:31:
36:fe:b6:9e:f4:b8:a3:d5:28:ec:a8:04:18:98:8d:19:7c:b8:
f7:6f:b2:8d:e8:eb:96:92:f0:ca:b3:d5:76:92:96:73:b0:09:
a7:e2:5c:e0:fa:e3:69:c1:6f:87:9d:48:49:64:79:e6:39:82:
cf:b9:c2:c6:8e:13:99:be:e3:4b:36:d7:de:af:d9:1f:ec:04:
c7:d9:bb:1e:cd:77:a5:b6:8f:28:cd:88:03:f5:20:1f:87:9e:
a1:3f:5d:e7:dd:3c:cc:82:15:aa:9f:dd:8d:9c:55:22:d1:f8:
27:db:85:65:62:51:0c:ab:ed:28:2b:9a:12:a4:22:0d:e1:4f:
d2:6b:c0:69:e5:1f:3e:9c:d7:ef:c3:45:1d:d8:18:39:3a:37:
4a:0f:ae:ea:ff:c8:6f:ee:25:2f:13:42:01:83:1f:2b:db:7e:
2d:7b:c9:48:b1:ad:02:60:cb:b2:09:14:5a:e4:92:43:00:b9:
d5:f4:40:7c:db:74:4c:e6:ce:18:4c:e3:2b:2c:01:cc:48:65:
fe:06:64:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 07:13:21 2025 by rpki-client