Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/TeIOuPN-6ew5dn1oALjzbWf7BOk.roa
File: TeIOuPN-6ew5dn1oALjzbWf7BOk.roa (raw, json)
Hash identifier: Cl9cCxsuSHbqzoZZTZHVHvTAieahdnMjNI8m2jeA7l4=
Subject key identifier: 4D:E2:0E:B8:F3:7E:E9:EC:39:76:7D:68:00:B8:F3:6D:67:FB:04:E9
Certificate issuer: /CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7
Certificate serial: 019639490A9AC5D168830C4B5189EE750C80
Authority key identifier: F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/TeIOuPN-6ew5dn1oALjzbWf7BOk.roa
Signing time: Tue 15 Apr 2025 11:50:10 +0000
ROA not before: Tue 15 Apr 2025 11:50:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21928
IP address blocks: 2001:3500::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 15 Apr 2025 18:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:39:49:0a:9a:c5:d1:68:83:0c:4b:51:89:ee:75:0c:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7
Validity
Not Before: Apr 15 11:50:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4de20eb8f37ee9ec39767d6800b8f36d67fb04e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:45:75:4a:8b:ed:43:28:9f:f0:e5:e9:b8:1c:
96:f5:d7:8d:5e:c6:18:78:05:3d:1b:4f:0f:b9:00:
0b:0d:a2:69:aa:3b:c8:43:0a:d4:45:c4:b7:c6:76:
da:54:a7:61:22:c0:b8:08:eb:68:5c:31:cf:b1:f0:
05:25:40:c7:d4:92:39:c5:58:31:0c:ee:93:f7:18:
7e:69:62:e6:08:5f:b2:05:4a:0b:06:81:a0:0d:79:
f0:07:be:12:b7:da:dc:3a:99:68:82:93:52:f2:2f:
2a:08:e3:90:ba:27:9e:5e:03:7f:9c:6a:f3:bf:71:
2e:2c:3f:2f:8c:71:34:76:81:8b:80:f7:70:c1:34:
f8:1b:9e:b2:de:89:dd:ce:93:0e:50:ce:df:de:a5:
29:ae:7b:58:b5:38:ad:86:f4:21:53:6a:db:bc:d5:
b7:6a:3d:9b:09:1f:c8:2a:c9:15:ae:2c:ae:2f:15:
91:17:48:66:28:76:55:20:bc:5b:76:20:77:8f:2a:
2c:7e:f6:6f:74:62:b3:b2:64:28:ed:c0:60:29:a3:
04:2f:94:d3:c2:96:5a:91:4f:21:c8:db:c7:58:57:
a2:87:ae:e8:79:c7:3c:66:95:7e:b5:46:b3:90:83:
8c:d2:ff:85:25:9e:78:c7:15:15:84:0e:35:3e:36:
95:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E2:0E:B8:F3:7E:E9:EC:39:76:7D:68:00:B8:F3:6D:67:FB:04:E9
X509v3 Authority Key Identifier:
keyid:F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/TeIOuPN-6ew5dn1oALjzbWf7BOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8qJTzfUHoD4fV50gLY3xHWj1w9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3500::/29
Signature Algorithm: sha256WithRSAEncryption
6e:43:9c:08:e8:3d:0d:11:1a:10:7d:d8:8d:2a:ba:6c:c2:05:
a3:31:23:41:8e:b0:86:82:41:5a:a5:0c:d6:96:25:8c:da:d8:
2e:e8:06:1f:71:ee:5e:c0:cb:5f:8e:92:d4:c4:c9:73:9d:31:
87:02:f7:b5:e6:3b:07:53:d6:72:f1:37:d6:28:19:60:8d:d2:
65:5f:94:35:6e:c1:70:c6:13:f5:b4:bd:e9:22:6a:f4:4c:c0:
12:0a:5c:be:07:c2:62:24:b9:4a:73:d2:72:b5:ca:53:54:6f:
a1:a3:1b:b1:b1:76:7f:94:fa:94:2b:9c:35:c3:9c:8f:9e:9f:
68:ad:e7:47:d1:3f:69:35:a7:70:63:f2:36:a0:ea:3f:7c:08:
29:bd:82:2b:6a:02:2d:47:8a:3b:d5:a8:4f:32:16:28:f1:02:
32:d8:b6:2c:bd:78:74:e2:1c:00:09:8f:68:c1:84:94:33:07:
3e:e8:ef:54:8c:5f:fb:6c:3d:65:fa:9c:8f:f0:e9:61:7f:b5:
a1:f4:a4:58:25:87:2f:8b:e5:67:33:ea:20:c8:f4:4a:22:0f:
89:19:f9:10:08:61:33:c3:51:44:e0:89:ab:15:ee:c4:29:c5:
bd:8d:d2:58:9a:f7:5d:9b:1d:14:ed:e9:0a:85:e9:b4:51:bb:
ee:6c:93:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:15:19 2025 by rpki-client