Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/hg_6wzk3cJmKI3guzQfOUZiDx5c.roa
File: hg_6wzk3cJmKI3guzQfOUZiDx5c.roa (raw, json)
Hash identifier: e2UqEungN/48mehGxM+NuwD10mdVjwn/2t2c509Q/qo=
Subject key identifier: 86:0F:FA:C3:39:37:70:99:8A:23:78:2E:CD:07:CE:51:98:83:C7:97
Certificate issuer: /CN=ba23b07a3c0ac9e333f52e8b5d41a768a3d39025
Certificate serial: 0194258EA04D232C80E61F3DC79A1A33F946
Authority key identifier: BA:23:B0:7A:3C:0A:C9:E3:33:F5:2E:8B:5D:41:A7:68:A3:D3:90:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uiOwejwKyeMz9S6LXUGnaKPTkCU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/hg_6wzk3cJmKI3guzQfOUZiDx5c.roa
Signing time: Thu 02 Jan 2025 05:48:11 +0000
ROA not before: Thu 02 Jan 2025 05:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215593
IP address blocks: 2a0e:8340:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 13 Jan 2025 20:15:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:a0:4d:23:2c:80:e6:1f:3d:c7:9a:1a:33:f9:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba23b07a3c0ac9e333f52e8b5d41a768a3d39025
Validity
Not Before: Jan 2 05:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=860ffac3393770998a23782ecd07ce519883c797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b1:f7:22:63:11:50:7f:55:31:ea:f6:3c:78:
72:da:07:92:5f:1a:63:c9:55:84:00:f3:cf:5d:3d:
89:10:26:6f:ad:2b:7a:44:7d:38:f4:29:88:bc:77:
3e:fc:a8:96:d8:e5:bd:e6:54:a3:a0:40:4f:84:7f:
01:3d:26:8b:bc:c3:70:88:df:b5:fc:6f:13:43:80:
16:0f:29:dd:44:ac:24:c8:f3:76:bd:e9:aa:fe:78:
6e:18:19:b0:69:3d:e8:17:b8:d8:f9:39:b6:03:bd:
84:f9:70:ad:d5:dc:03:a5:2e:58:47:ae:9e:98:ad:
e0:5f:2b:ce:6a:55:a4:5f:f0:93:c1:8c:2c:0c:b3:
f2:b0:0e:11:15:94:d2:74:0a:bc:c4:97:34:cd:c8:
ab:3a:c4:3e:6d:d0:13:cd:25:2c:0d:01:c3:26:78:
57:b4:bf:96:c4:00:de:4c:74:62:24:f0:68:64:98:
8a:14:d7:76:6c:b8:2a:8b:db:39:24:0e:4a:69:e6:
ed:9a:f2:0b:11:b1:c3:91:8f:04:80:12:11:ab:41:
78:87:f5:8b:40:12:60:9c:c0:36:f0:0c:59:59:10:
93:c2:be:01:59:f4:c3:68:2f:8c:a9:a3:0e:f6:b6:
b0:83:6a:48:3b:59:2d:cc:a8:96:f9:f4:e2:d0:d6:
cc:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0F:FA:C3:39:37:70:99:8A:23:78:2E:CD:07:CE:51:98:83:C7:97
X509v3 Authority Key Identifier:
keyid:BA:23:B0:7A:3C:0A:C9:E3:33:F5:2E:8B:5D:41:A7:68:A3:D3:90:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uiOwejwKyeMz9S6LXUGnaKPTkCU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/hg_6wzk3cJmKI3guzQfOUZiDx5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/10d5b2-85e3-49ed-bdc1-8069c46771cc/1/uiOwejwKyeMz9S6LXUGnaKPTkCU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8340:2::/48
Signature Algorithm: sha256WithRSAEncryption
07:3f:1b:44:5e:26:ba:fb:c9:d0:27:15:c0:9f:e8:50:77:70:
71:cd:d8:04:42:1a:71:e0:c1:71:7c:d0:09:a4:10:3d:fd:aa:
f3:80:70:56:dc:bb:dd:23:13:50:2c:ea:4a:37:17:f9:32:13:
b5:bc:1a:b3:8a:70:c5:4d:b4:2f:6b:29:de:16:a4:59:25:90:
7d:b4:30:c1:3f:de:0e:3c:13:fc:4c:bf:f7:c5:75:59:dc:95:
fe:32:11:47:98:46:fd:28:d1:b1:6a:90:49:32:78:e9:81:1b:
e3:6f:8f:31:79:8f:a4:a4:8a:a0:d8:b3:91:5f:b0:0c:7a:ac:
51:d3:96:c2:7d:6f:cb:58:7a:50:6d:5f:06:a5:d2:a8:63:04:
a7:d4:0d:f9:34:14:70:3c:a0:9e:77:69:f2:9d:6f:a4:6d:04:
cf:ec:2a:47:df:6f:73:fa:4e:41:4b:b0:aa:00:d3:77:8b:03:
d6:83:3d:5a:2c:47:1a:53:0b:8d:9c:c3:96:c7:b1:a2:10:cc:
44:f1:48:ae:73:38:a0:59:fc:4e:6d:46:f8:96:4a:96:6e:89:
8f:0c:22:e8:c5:e9:68:9b:5b:c2:09:e6:66:6b:f3:ed:24:af:
63:bc:93:68:4a:ee:db:6e:8b:32:df:c9:66:ad:3c:ad:d0:97:
47:77:c3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:00:55 2025 by rpki-client