Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/jZjE9fIyW4ETKQtlqO0rpL5-j-Y.roa
File: jZjE9fIyW4ETKQtlqO0rpL5-j-Y.roa (raw, json)
Hash identifier: WOdE2ysQIa1HpIXDEEpBoOaKRU6dKemn0l6Tfa2rPvM=
Subject key identifier: 8D:98:C4:F5:F2:32:5B:81:13:29:0B:65:A8:ED:2B:A4:BE:7E:8F:E6
Certificate issuer: /CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Certificate serial: 0196E83810842EBF09326E1B6C47EA8B60B1
Authority key identifier: 7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/jZjE9fIyW4ETKQtlqO0rpL5-j-Y.roa
Signing time: Mon 19 May 2025 11:05:10 +0000
ROA not before: Mon 19 May 2025 11:05:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:196:e837:24fa/128 maxlen: 128
Validation: Failed, certificate revoked on Mon 19 May 2025 11:15:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e8:38:10:84:2e:bf:09:32:6e:1b:6c:47:ea:8b:60:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Validity
Not Before: May 19 11:05:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8d98c4f5f2325b8113290b65a8ed2ba4be7e8fe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6a:5f:88:33:f1:e4:2e:34:47:fe:c9:59:de:
24:67:d8:2c:99:e7:ea:99:1c:dc:91:63:dd:c2:d7:
96:40:f7:a8:bf:60:1d:6f:74:91:c0:92:3a:0f:84:
44:92:41:e6:9c:7f:af:6b:80:5e:15:ec:4c:1b:9d:
9a:05:8a:4f:ce:ae:7c:0e:d5:1c:f9:af:7c:2a:5a:
a5:e4:c0:9d:ac:c1:95:7a:ef:ea:69:cf:c9:59:6e:
f5:fd:be:27:e0:ec:9e:e6:78:be:9c:77:5a:19:d5:
34:bb:d2:bc:0f:80:f5:3b:c5:ec:3b:22:16:e7:c6:
89:19:6e:00:90:56:f4:5d:50:65:cc:2d:b5:c8:43:
fa:b1:3e:b7:a8:e8:a8:40:b5:c7:ac:50:39:aa:d6:
1e:a3:17:e8:c8:33:0f:4e:5d:56:56:73:6a:b7:3f:
c2:30:bc:4d:23:33:63:4f:c7:6b:75:ee:ce:78:d4:
a1:d1:e7:b2:34:70:f5:98:0a:86:2c:21:5b:a2:1b:
b2:d2:49:aa:4c:64:0c:eb:54:07:41:9a:19:18:7c:
a6:d8:a1:30:55:60:eb:51:99:16:ab:ea:d0:be:ec:
95:8b:88:39:d7:30:8b:a1:84:dc:77:12:2b:3e:89:
9b:a4:3e:b5:92:4d:52:19:d0:32:f8:b3:d8:3e:48:
0e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:98:C4:F5:F2:32:5B:81:13:29:0B:65:A8:ED:2B:A4:BE:7E:8F:E6
X509v3 Authority Key Identifier:
keyid:7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/jZjE9fIyW4ETKQtlqO0rpL5-j-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/es2BfyWJPn-Is_Ov-pFSxm1rZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:196:e837:24fa/128
Signature Algorithm: sha256WithRSAEncryption
24:8f:33:21:d9:ff:1b:f7:88:50:fd:05:dc:81:d8:71:f1:7a:
23:5d:42:f6:24:9e:16:3e:35:1b:6d:02:2b:1e:df:a4:e9:a7:
ea:15:95:ad:23:af:ea:69:93:23:8e:89:c2:06:3e:e6:ed:8d:
95:0b:00:f6:70:a1:05:dd:dd:70:98:44:81:fa:68:61:f9:0d:
15:d8:9a:f7:0d:15:e0:a4:b5:e0:1f:4f:d8:49:42:7f:17:13:
53:66:e2:73:f5:2c:78:76:40:3d:59:3e:32:1a:76:b8:49:97:
83:84:70:54:41:5f:36:cc:a7:ab:58:7c:36:7c:7b:8e:ac:7f:
58:dc:7f:54:38:62:0d:6d:88:f8:ea:c0:15:61:d9:f8:01:77:
cd:13:13:d5:24:29:52:db:32:30:b7:c7:31:70:0f:05:95:22:
5c:60:21:9a:96:93:ab:f1:1e:ce:fb:01:b1:57:ae:e1:9b:d0:
c3:fd:78:27:d8:71:ad:9b:48:33:70:8b:84:4f:ab:b9:b9:d0:
96:63:22:17:86:0b:79:40:ac:75:68:26:f7:f2:cb:e7:df:aa:
83:0f:d4:3d:5b:9f:53:cb:b4:e4:a4:42:c5:5c:c3:7d:2e:d7:
5f:6f:78:22:b8:82:6b:b1:11:00:48:05:69:ed:e4:54:7d:b4:
cd:12:d7:07
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 8 05:59:29 2025 by rpki-client