Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/DgrQmem7kuHL3UIKw0zPC4AhYds.roa
File: DgrQmem7kuHL3UIKw0zPC4AhYds.roa (raw, json)
Hash identifier: 8VPx9QDvVAz9wGkd+ZU4Z9u10SqYpvgc+8dXq/oBzlo=
Subject key identifier: 0E:0A:D0:99:E9:BB:92:E1:CB:DD:42:0A:C3:4C:CF:0B:80:21:61:DB
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01971D2023A10B2D670127B586B618E4B4F3
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/DgrQmem7kuHL3UIKw0zPC4AhYds.roa
Signing time: Thu 29 May 2025 17:38:54 +0000
ROA not before: Thu 29 May 2025 17:38:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212477
IP address blocks: 2a0c:4880::/29 maxlen: 29
2a0e:e980::/29 maxlen: 29
2a0f:14c0::/29 maxlen: 29
2a0f:1540::/29 maxlen: 29
2a0f:1740::/29 maxlen: 29
2a0f:17c0::/29 maxlen: 29
2a0f:1840::/29 maxlen: 29
2a0f:2dc0::/29 maxlen: 29
2a0f:2ec0::/29 maxlen: 29
2a0f:de40::/29 maxlen: 29
2a0f:e140::/29 maxlen: 29
2a0f:e5c0::/29 maxlen: 29
2a0f:ee00::/29 maxlen: 29
2a11:5c80::/29 maxlen: 29
2a13:1380::/29 maxlen: 29
2a13:2c40::/29 maxlen: 29
2a13:2e40::/29 maxlen: 29
2a13:9380::/29 maxlen: 29
2a13:9f00::/29 maxlen: 29
2a13:cf00::/29 maxlen: 29
2a13:d100::/29 maxlen: 29
2a13:fa00::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 04 Jun 2025 14:25:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:1d:20:23:a1:0b:2d:67:01:27:b5:86:b6:18:e4:b4:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 29 17:38:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e0ad099e9bb92e1cbdd420ac34ccf0b802161db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:57:f0:52:44:c9:1c:25:89:58:73:d7:00:db:
34:55:cd:30:80:d4:43:3e:2b:e3:55:80:8a:8e:17:
58:61:68:93:34:ec:1d:4b:d1:19:92:86:1f:2f:4a:
a6:cd:d6:dc:81:c4:34:9d:a1:f4:fc:62:d9:fb:4f:
be:13:52:2f:c5:26:bd:52:50:9a:8a:bb:e5:7e:d4:
32:b1:d7:7f:09:e9:92:09:fe:db:1a:7c:52:68:7b:
5f:52:18:2a:1b:0b:a8:95:eb:d2:46:28:48:c1:d1:
f1:c8:9c:aa:5d:74:8b:cf:9a:b0:4f:96:31:b5:dc:
1f:57:62:57:9a:29:f3:20:46:49:61:33:2b:4a:29:
d5:a4:0e:81:4d:6a:e0:db:9f:25:e4:a0:70:30:8b:
d6:a5:40:cd:36:05:fd:98:07:b4:22:5a:e0:29:55:
96:31:cf:68:08:44:18:4a:cb:83:1a:cb:9e:ac:77:
f1:22:42:49:04:8c:79:87:35:84:d5:6d:7b:f4:9a:
5b:84:c8:cd:00:8c:6c:96:d7:f5:fc:ae:2d:fb:3d:
62:e8:3e:d0:34:d7:dd:a1:e3:b8:79:4b:03:a4:88:
f6:9c:7a:a7:2e:cf:3c:ff:63:f9:a7:2a:ad:6b:45:
c5:dc:eb:5d:07:17:3f:18:92:15:12:ae:2a:d2:57:
f3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:0A:D0:99:E9:BB:92:E1:CB:DD:42:0A:C3:4C:CF:0B:80:21:61:DB
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/DgrQmem7kuHL3UIKw0zPC4AhYds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:4880::/29
2a0e:e980::/29
2a0f:14c0::/29
2a0f:1540::/29
2a0f:1740::/29
2a0f:17c0::/29
2a0f:1840::/29
2a0f:2dc0::/29
2a0f:2ec0::/29
2a0f:de40::/29
2a0f:e140::/29
2a0f:e5c0::/29
2a0f:ee00::/29
2a11:5c80::/29
2a13:1380::/29
2a13:2c40::/29
2a13:2e40::/29
2a13:9380::/29
2a13:9f00::/29
2a13:cf00::/29
2a13:d100::/29
2a13:fa00::/29
Signature Algorithm: sha256WithRSAEncryption
a7:f1:73:e8:71:19:d2:dd:86:99:42:08:18:a8:26:c4:58:2d:
c8:77:9d:e2:bf:9f:2a:7f:11:2b:3c:e2:09:ef:ad:d8:94:7b:
2e:68:16:f0:58:2e:15:98:9c:e4:ff:27:3c:27:7b:5e:fc:e3:
39:da:ed:9b:ed:70:75:23:7d:5e:ef:46:d6:68:8d:cc:cc:ed:
df:32:26:15:b4:24:8f:b0:62:99:03:94:f8:b3:7e:a3:df:2a:
29:37:ce:89:03:f3:a4:95:c3:12:4f:79:44:10:da:cd:82:98:
24:63:54:fb:4a:15:e1:1a:0c:9f:1c:91:a3:05:3d:85:e6:93:
4e:73:e7:4d:f3:61:52:9f:95:c1:3a:6b:96:0e:54:95:f0:76:
67:50:fd:d2:b7:aa:56:c7:29:a1:5d:0b:81:0e:80:a2:22:89:
15:b3:ce:ba:d1:d7:df:4d:58:ff:7c:2e:4f:00:7d:6f:79:1a:
84:c9:dd:83:ce:69:f7:c8:f2:f1:35:90:24:02:01:4e:5c:64:
36:33:4e:75:7a:9a:3e:03:25:22:7a:80:02:67:e4:9a:ec:a3:
48:66:ec:f0:06:3d:db:a1:ff:77:3e:20:c1:80:0d:5b:27:a9:
d9:7f:59:38:ac:1c:cd:f3:fe:84:9f:10:b7:07:df:4b:de:11:
cb:a8:60:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:24:33 2025 by rpki-client