Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/dzUGVkWQchrypeqrtYaiPIwbvB4.roa
File: dzUGVkWQchrypeqrtYaiPIwbvB4.roa (raw, json)
Hash identifier: 1Jtw+89sBLOY/+kjEVbuDyt9fNQR9SJuWVhcz8NGExc=
Subject key identifier: 77:35:06:56:45:90:72:1A:F2:A5:EA:AB:B5:86:A2:3C:8C:1B:BC:1E
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 01969E9E827EA45E0634592FD1B96664C4AB
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/dzUGVkWQchrypeqrtYaiPIwbvB4.roa
Signing time: Mon 05 May 2025 04:05:10 +0000
ROA not before: Mon 05 May 2025 04:05:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33042
IP address blocks: 2001:3380::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 29 May 2025 12:18:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9e:82:7e:a4:5e:06:34:59:2f:d1:b9:66:64:c4:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: May 5 04:05:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=773506564590721af2a5eaabb586a23c8c1bbc1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:ef:45:6a:a3:7d:d9:1b:95:53:69:62:0d:
9f:dd:fb:95:30:72:a0:72:2a:86:8b:62:d7:0f:20:
96:78:fa:5f:33:45:b3:1e:2d:ae:ff:61:53:7f:08:
7c:8f:cd:28:5a:cd:40:68:5a:80:64:05:63:ac:9f:
70:90:b7:b3:fc:df:5d:cf:a9:9f:bb:52:f8:99:32:
02:95:35:bf:2c:7a:b8:19:4a:1c:5b:92:a2:19:6b:
db:f7:e9:c3:8d:89:a1:eb:d7:b3:66:85:c1:a5:98:
da:1a:7b:25:f9:6d:61:db:00:f1:d7:d6:d4:52:d4:
8d:68:ec:d0:b7:06:f1:9e:99:c4:f1:cd:a6:ea:4c:
c2:12:48:1a:2a:a3:3b:cc:7e:5b:6d:96:c6:d4:9e:
7f:cf:4b:21:c4:e6:b5:74:47:c0:c8:31:17:4d:2d:
28:18:d8:2e:a1:b3:f8:6e:73:35:ce:cc:d5:30:79:
30:1b:45:62:c4:a1:24:be:50:9e:0a:ae:9e:f7:1c:
c3:b0:ee:81:3e:4d:c4:2c:da:01:0a:a1:d9:02:ea:
a7:06:62:a1:c0:73:1b:a0:b9:8f:65:8a:79:23:6c:
35:c8:fb:1a:6b:c9:d6:69:eb:71:e6:44:2f:22:e9:
42:57:e6:69:8b:c8:ad:80:b7:f9:c1:95:d6:8d:b3:
12:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:35:06:56:45:90:72:1A:F2:A5:EA:AB:B5:86:A2:3C:8C:1B:BC:1E
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/dzUGVkWQchrypeqrtYaiPIwbvB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3380::/29
Signature Algorithm: sha256WithRSAEncryption
0c:dd:2d:93:31:ab:7e:07:1b:b3:6f:c4:39:3b:8f:76:59:d7:
08:5e:7b:55:cb:b0:d8:61:a9:9c:6d:8e:6d:9b:b5:5b:19:05:
0c:0b:69:d0:3e:c6:b9:f7:9c:32:76:db:55:be:53:97:3d:70:
26:f9:5d:e9:2c:59:a0:df:05:bd:49:44:f8:35:f9:10:84:47:
6a:8f:47:86:bc:71:b7:10:9e:1d:28:e4:b8:b9:11:b4:48:62:
7d:ff:a7:4a:bc:d4:d8:07:b9:cc:d8:93:ff:3b:ce:ad:58:a0:
5f:24:36:53:19:5a:f6:8d:4a:f9:45:62:78:dd:6d:85:ed:ed:
a6:b7:ef:2b:40:29:8e:06:e9:a6:4e:c0:05:56:61:1d:8b:95:
c5:68:13:9f:b3:35:9f:6b:d0:88:d6:2c:00:0d:cc:20:c7:11:
41:34:ae:8a:3d:bb:26:25:be:59:04:38:70:de:dd:b2:7b:d8:
91:53:c6:cc:13:7d:55:6a:f3:a7:21:8a:fe:5a:65:97:f1:7d:
8d:71:29:58:b7:a0:e6:c5:87:60:b0:87:ff:91:8e:0e:0e:2d:
f7:18:cc:03:d1:20:80:78:79:ab:bd:b0:7b:f8:54:ff:30:90:
fc:0e:1b:10:bc:41:70:dd:a2:3f:3c:50:cd:e0:31:d1:9b:20:
32:3a:67:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:44:00 2025 by rpki-client