Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/UElOB5z8xIU3dQR1w92jdMuDa_8.roa
File: UElOB5z8xIU3dQR1w92jdMuDa_8.roa (raw, json)
Hash identifier: zaHEWILyzMwC7/qODbyhNHoZowvWx2zuVPAoxqSSfIk=
Subject key identifier: 50:49:4E:07:9C:FC:C4:85:37:75:04:75:C3:DD:A3:74:CB:83:6B:FF
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 019725C8A2EEE7D7CF3C9AFB304B1786BFC7
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/UElOB5z8xIU3dQR1w92jdMuDa_8.roa
Signing time: Sat 31 May 2025 09:59:55 +0000
ROA not before: Sat 31 May 2025 09:59:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 2a12:bec4:1750::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Jun 2025 18:29:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:25:c8:a2:ee:e7:d7:cf:3c:9a:fb:30:4b:17:86:bf:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: May 31 09:59:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50494e079cfcc48537750475c3dda374cb836bff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:01:c5:be:d2:f6:12:c5:63:f0:ef:30:ba:90:
63:96:0f:66:c2:c6:9d:5b:76:13:d3:a1:80:16:ed:
6c:84:6b:b0:73:84:47:4c:75:49:b4:71:38:57:e1:
58:cd:dd:f9:7b:09:f1:db:90:77:14:12:82:19:8d:
ce:e8:58:26:73:4f:a7:fe:73:92:65:81:4d:f8:c0:
32:a1:5d:5f:ad:9e:50:c4:c2:0f:3c:48:f1:8c:68:
3d:d6:7f:0d:19:9e:2a:e0:4d:2a:b1:8f:dc:88:93:
f5:45:4c:a9:55:cf:11:c8:2d:d3:5a:bb:0d:a9:1a:
49:bd:62:6c:62:fe:91:49:6a:0f:81:e1:5f:4d:b9:
b7:91:08:e2:3d:98:53:5f:4d:ac:74:23:9c:5a:5b:
8b:c1:44:a6:ce:86:8a:6d:b5:78:89:9f:39:ad:23:
87:6f:58:fa:ad:b2:d8:b3:89:f9:5e:ef:94:01:88:
1d:de:cf:3a:d3:34:ff:1b:22:88:7d:2f:19:ca:d6:
af:66:0a:2f:a3:b5:5c:aa:31:b6:a6:2c:2a:e2:44:
e0:5e:ee:96:cb:1e:27:2e:d8:af:41:fb:74:9a:7e:
5f:e4:b8:bb:af:51:66:fc:5b:7b:50:56:b8:3f:da:
60:84:74:1b:0f:37:6d:5b:fd:5e:d1:26:c0:68:17:
40:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:49:4E:07:9C:FC:C4:85:37:75:04:75:C3:DD:A3:74:CB:83:6B:FF
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/UElOB5z8xIU3dQR1w92jdMuDa_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:1750::/44
Signature Algorithm: sha256WithRSAEncryption
02:70:86:c1:37:d9:cd:db:c0:1b:c5:ac:de:5d:f2:ac:27:4b:
bc:7a:cf:04:d1:01:a5:09:b4:d9:33:22:fe:1b:a4:77:81:1b:
e0:7e:45:e0:03:fe:12:86:ca:8c:3f:e1:01:18:e8:52:b0:0d:
da:8c:68:dc:73:73:bd:95:f9:9e:8f:2f:53:d9:23:63:8f:af:
15:b3:c9:16:5a:e1:6f:00:08:a6:d0:72:c1:90:4e:fe:17:18:
23:23:f9:0b:32:a1:23:36:0e:2a:e9:16:7d:0a:63:a9:a3:37:
80:9c:bc:12:94:a7:62:eb:ea:f1:1a:a0:bd:b5:eb:43:fd:99:
0a:6e:c5:8b:bc:b9:84:9a:de:c2:59:a2:30:00:27:ed:60:9f:
15:7f:05:97:2b:21:db:8b:00:b8:a7:b4:10:ae:12:68:20:5f:
46:b8:2e:12:0f:44:b3:b4:62:44:cf:f9:10:f5:24:b9:3f:3a:
56:d4:e5:d2:ef:94:b4:c3:f7:5b:df:5c:ff:dc:43:bd:b0:96:
47:0b:d3:f1:b0:88:34:e4:fa:91:0d:d7:39:27:86:42:4a:25:
2f:38:88:45:c4:03:17:24:40:a0:cc:54:76:8a:cf:7f:58:a6:
a7:79:6e:6a:02:be:16:67:a7:7e:5a:51:33:8f:11:80:b7:5a:
01:ca:15:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 23:47:07 2025 by rpki-client