Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/jqU2CLovsfkuOp4pBBhq-DeTbLo.roa
File: jqU2CLovsfkuOp4pBBhq-DeTbLo.roa (raw, json)
Hash identifier: O3kuZyoF5brVzj8TiA74ogTXoyso9aKL2eNqyhmJbRE=
Subject key identifier: 8E:A5:36:08:BA:2F:B1:F9:2E:3A:9E:29:04:18:6A:F8:37:93:6C:BA
Certificate issuer: /CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f
Certificate serial: 01978EA89995E5E302D316CC6CE4A0174B60
Authority key identifier: 7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/jqU2CLovsfkuOp4pBBhq-DeTbLo.roa
Signing time: Fri 20 Jun 2025 18:45:03 +0000
ROA not before: Fri 20 Jun 2025 18:45:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209641
IP address blocks: 2a0c:ac6::/32 maxlen: 32
2a0d:adc0::/32 maxlen: 32
2a11:21c4::/32 maxlen: 32
2a11:21c7::/32 maxlen: 32
2a11:35c2::/32 maxlen: 32
2a11:35c6::/32 maxlen: 32
2a11:3d02::/32 maxlen: 32
2a11:7080::/32 maxlen: 32
2a11:d385::/32 maxlen: 32
2a11:d387::/32 maxlen: 32
2a11:d701::/32 maxlen: 32
2a12:24c6::/32 maxlen: 32
2a12:24c7::/32 maxlen: 32
2a12:35c3::/32 maxlen: 32
2a12:35c7::/32 maxlen: 32
2a12:41c3::/32 maxlen: 32
2a14:9702::/32 maxlen: 32
2a14:9706::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 26 Jun 2025 19:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8e:a8:99:95:e5:e3:02:d3:16:cc:6c:e4:a0:17:4b:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f
Validity
Not Before: Jun 20 18:45:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8ea53608ba2fb1f92e3a9e2904186af837936cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:93:4b:29:b8:bc:d4:00:d6:87:cd:a7:72:b5:
67:d5:ae:14:2e:f7:e4:8d:5b:ed:0d:23:45:4d:75:
b1:4d:68:e6:73:a2:97:e1:8c:c4:a2:ef:a0:0d:2c:
0f:ec:1e:3b:d0:df:84:07:50:c9:52:65:7a:5c:3c:
39:07:39:e0:9d:05:14:fa:0c:92:d0:b6:59:3e:ee:
cb:19:5c:13:5c:48:43:70:33:91:c4:50:ef:80:a8:
50:19:c0:d9:fd:62:63:c6:16:8a:6c:31:89:3d:e4:
78:84:fb:6e:b1:65:74:9c:86:9c:5f:c0:f4:d4:9b:
f0:b8:af:8f:24:3d:28:f9:2d:69:8e:73:57:85:ee:
88:d3:2a:6a:6f:21:b5:38:30:5b:9e:cd:11:a5:12:
6b:7c:bb:c5:73:2f:4c:d4:bd:82:1c:92:80:ca:3f:
7b:61:98:b0:79:a9:7e:7d:a3:0d:1c:3d:7f:17:01:
7d:03:39:12:c9:10:14:4c:b4:bf:e8:0b:63:6c:30:
6e:49:37:8c:18:0e:ab:d5:8b:53:33:56:f5:68:36:
ee:d3:0e:04:35:e6:c7:36:ed:b6:8c:53:64:31:bd:
a8:d2:a1:df:8f:c8:5d:49:f4:04:0f:ee:d4:a4:48:
3f:4b:58:76:ee:f7:b8:36:40:a5:55:47:d9:92:5e:
7d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A5:36:08:BA:2F:B1:F9:2E:3A:9E:29:04:18:6A:F8:37:93:6C:BA
X509v3 Authority Key Identifier:
keyid:7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/jqU2CLovsfkuOp4pBBhq-DeTbLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:ac6::/32
2a0d:adc0::/32
2a11:21c4::/32
2a11:21c7::/32
2a11:35c2::/32
2a11:35c6::/32
2a11:3d02::/32
2a11:7080::/32
2a11:d385::/32
2a11:d387::/32
2a11:d701::/32
2a12:24c6::/31
2a12:35c3::/32
2a12:35c7::/32
2a12:41c3::/32
2a14:9702::/32
2a14:9706::/32
Signature Algorithm: sha256WithRSAEncryption
1f:d5:61:34:58:09:6d:d8:63:9f:c0:53:08:82:fa:5d:14:1c:
13:5e:8c:9b:7f:b0:08:d8:a0:d3:e7:a2:83:9d:3f:90:50:c7:
54:48:cb:c5:ee:af:f1:37:a3:9e:1f:e3:42:6d:d5:27:50:0e:
7a:52:ef:f6:a6:91:8e:84:94:2e:e3:76:7f:1a:40:7e:d5:11:
14:b3:fd:6f:d2:47:1b:c4:93:67:64:65:3b:79:df:f0:93:19:
18:b7:ca:f3:5b:3c:b0:a1:72:e6:ea:cb:0f:f6:c3:6f:f3:19:
6f:1c:33:3e:c5:90:9f:13:23:a8:49:c7:e7:4c:61:be:9d:03:
a1:c6:66:a2:bf:da:53:68:52:33:22:2b:a1:f8:6a:76:09:fb:
37:4b:22:0f:ef:1e:55:ab:75:18:a5:87:92:39:75:c9:da:a4:
06:74:bf:49:5b:25:ee:62:a2:55:60:c3:5c:1f:26:15:ee:c9:
f8:b7:1f:b3:87:75:27:f5:10:c3:3d:a1:d2:1c:a4:05:4d:3b:
52:d0:c4:cc:52:5b:cc:45:35:e0:fb:e9:3d:1f:1a:8d:a2:20:
31:57:61:0a:dd:34:87:28:85:a6:35:06:28:46:c7:b5:89:37:
e0:51:d9:06:ce:82:64:b0:93:67:25:f2:3d:7f:df:00:13:08:
c9:25:00:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 07:11:22 2025 by rpki-client