Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/6B4Bdf6YfM8YNiFC-HPGc768pvo.roa
File: 6B4Bdf6YfM8YNiFC-HPGc768pvo.roa (raw, json)
Hash identifier: hUibzo3b/icsumOUuNHQISmcluVCtQyB+1D860Un+ug=
Subject key identifier: E8:1E:01:75:FE:98:7C:CF:18:36:21:42:F8:73:C6:73:BE:BC:A6:FA
Certificate issuer: /CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Certificate serial: 0197395BA9001687ECFE573CC239F4D57A8D
Authority key identifier: 7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/6B4Bdf6YfM8YNiFC-HPGc768pvo.roa
Signing time: Wed 04 Jun 2025 05:13:17 +0000
ROA not before: Wed 04 Jun 2025 05:13:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:196:ed5d:8c28/128 maxlen: 128
2001:67c:64:ffff:0:197:108e:927e/128 maxlen: 128
2001:67c:64:ffff:0:197:15eb:6226/128 maxlen: 128
2001:67c:64:ffff:0:197:353f:be91/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 04 Jun 2025 06:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:39:5b:a9:00:16:87:ec:fe:57:3c:c2:39:f4:d5:7a:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Validity
Not Before: Jun 4 05:13:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e81e0175fe987ccf18362142f873c673bebca6fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a0:1a:90:dd:8f:15:bf:e1:02:79:b0:8f:8b:
3f:cf:8d:d3:7a:89:bc:34:fc:cc:8a:19:ae:82:d5:
7e:88:c6:ea:71:86:a6:62:9d:41:8c:92:d1:05:65:
cf:a5:56:bc:11:4b:13:d5:d9:2d:ae:a0:94:f1:5f:
7e:0e:97:98:d9:22:07:31:57:70:36:bc:ca:52:c2:
12:ac:9d:f6:9d:40:40:4c:35:91:93:5f:a9:70:35:
e2:7e:11:58:f2:9f:ae:36:23:40:a9:eb:43:f8:98:
08:43:13:5b:f5:b8:e8:2a:b3:29:c6:49:61:f6:7d:
42:02:ab:28:9d:ca:ec:8d:87:4d:83:dd:11:2b:7c:
22:3f:59:32:69:c8:b6:16:cc:d9:b7:21:d8:a7:10:
64:f4:95:d6:0c:1a:fc:fe:09:6f:e3:2e:81:7e:cb:
e6:33:ab:7a:6a:27:5a:37:d9:d7:c9:d7:dd:5d:ab:
71:bd:b1:ac:29:59:9e:1a:6a:4e:fe:df:5d:ba:b8:
2d:4f:01:cb:ca:66:b4:24:26:45:62:ba:d4:8c:09:
92:cd:49:da:78:c8:d7:bd:c0:63:00:8d:a2:dc:a8:
61:9f:c9:6e:c6:1c:13:eb:3e:06:75:cb:cf:b1:0f:
ab:3a:d8:97:9c:d9:0b:4a:fe:53:ed:68:17:24:1f:
38:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:1E:01:75:FE:98:7C:CF:18:36:21:42:F8:73:C6:73:BE:BC:A6:FA
X509v3 Authority Key Identifier:
keyid:7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/6B4Bdf6YfM8YNiFC-HPGc768pvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/es2BfyWJPn-Is_Ov-pFSxm1rZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:196:ed5d:8c28/128
2001:67c:64:ffff:0:197:108e:927e/128
2001:67c:64:ffff:0:197:15eb:6226/128
2001:67c:64:ffff:0:197:353f:be91/128
Signature Algorithm: sha256WithRSAEncryption
b8:2b:f8:19:88:e7:ee:b3:79:f1:d9:52:0f:03:3c:c8:5e:7a:
33:b2:d0:4f:f3:ff:79:fe:38:19:b0:c9:7b:86:ff:4a:f5:18:
7e:d7:60:b3:6d:eb:6b:03:4a:cf:63:c4:82:17:08:9f:e5:5b:
95:99:e4:5b:48:6d:85:7b:45:9c:c8:56:ac:64:5c:2e:8b:d3:
56:d1:65:e5:ac:5f:82:39:0a:75:91:f6:21:54:cc:38:70:f2:
65:ce:78:f3:e2:d0:5e:b0:dc:66:f9:23:bf:39:8f:19:db:56:
ef:fb:80:81:51:d4:de:22:26:a5:46:b3:88:98:0f:ed:f8:4e:
ce:93:1e:e1:bd:73:39:5a:68:d2:40:a3:f2:b9:e6:da:02:7f:
58:7d:cd:ec:f8:bb:ae:0c:d7:3a:5e:c0:81:da:c7:02:b8:1e:
c9:0f:6e:a5:09:0c:3f:a5:60:d3:30:c2:d3:6b:5c:01:6c:ea:
27:49:a1:7f:c0:6f:75:25:3c:c4:db:3f:ad:fd:3e:58:4e:6b:
60:ce:85:b3:76:80:88:fe:bf:a1:cd:19:80:b2:40:8b:37:05:
d6:a9:4d:79:57:8f:35:51:29:eb:3a:05:df:88:ab:7b:c7:5b:
d9:f1:50:61:59:7b:e9:ae:7d:01:d7:c4:0b:75:12:d9:df:d2:
6b:e9:0f:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:48:07 2025 by rpki-client