Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/s0vsR_BRMib_59i1zhuSblKsGOU.roa
File: s0vsR_BRMib_59i1zhuSblKsGOU.roa (raw, json)
Hash identifier: yaJ3GZ7OMKEqQQkvp38uY59QNfHw8tua0HsW8hUZrl8=
Subject key identifier: B3:4B:EC:47:F0:51:32:26:FF:E7:D8:B5:CE:1B:92:6E:52:AC:18:E5
Certificate issuer: /CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Certificate serial: 01968213B00B0223B3545D308DB267EF2410
Authority key identifier: 7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/s0vsR_BRMib_59i1zhuSblKsGOU.roa
Signing time: Tue 29 Apr 2025 15:04:10 +0000
ROA not before: Tue 29 Apr 2025 15:04:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:196:8213:9ebe/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 29 Apr 2025 15:15:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:13:b0:0b:02:23:b3:54:5d:30:8d:b2:67:ef:24:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Validity
Not Before: Apr 29 15:04:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b34bec47f0513226ffe7d8b5ce1b926e52ac18e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:70:30:32:86:4f:ad:84:55:a3:ca:8e:97:63:
61:29:4a:68:92:92:3b:79:10:29:76:66:dc:3d:16:
e5:af:b0:9e:1e:47:9e:31:a1:0a:a7:56:a8:14:c0:
50:9d:9c:3b:d7:88:ce:a8:7a:e4:1e:90:16:b3:2c:
7c:d1:ff:42:b4:35:cc:da:2f:72:31:6c:09:48:76:
cc:28:90:fa:0a:d0:c9:fb:aa:ca:38:66:d7:69:8a:
a8:8c:6b:38:b2:f0:51:61:99:43:42:0b:09:5c:e2:
48:8e:c8:5e:d2:bf:bf:62:bf:61:b3:e4:8b:16:c7:
72:a4:a8:7d:b9:e7:13:b0:e8:62:b4:a2:b9:0a:5d:
49:f7:bd:d8:96:3d:46:b8:57:f6:de:03:02:9c:67:
e8:97:de:d6:6a:08:52:47:ad:27:39:be:bd:74:96:
a5:83:fd:b8:a4:92:7f:ce:d5:29:3f:45:82:55:d9:
34:49:56:b7:65:72:eb:f5:e4:e7:c9:72:f7:c4:bd:
f9:b4:a4:0a:d8:31:c3:17:ad:ee:7e:e6:97:75:6f:
c7:34:48:81:f5:26:ac:03:93:a5:9d:65:ce:2c:71:
df:51:ad:e4:a1:95:d6:7f:46:8d:24:ae:fd:6f:06:
fd:10:cd:76:f0:b2:9b:71:62:55:eb:29:7c:e3:c0:
8c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:4B:EC:47:F0:51:32:26:FF:E7:D8:B5:CE:1B:92:6E:52:AC:18:E5
X509v3 Authority Key Identifier:
keyid:7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/s0vsR_BRMib_59i1zhuSblKsGOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/es2BfyWJPn-Is_Ov-pFSxm1rZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:196:8213:9ebe/128
Signature Algorithm: sha256WithRSAEncryption
4e:b2:b5:3f:d8:89:d7:b1:0d:38:5e:d6:69:38:f0:8f:5f:92:
f4:52:f0:04:b8:0c:92:48:79:b4:d7:b6:0a:2c:af:22:28:bf:
a3:f7:ee:2d:00:7b:ca:91:f7:56:62:31:8e:7a:1a:bf:1c:ca:
37:f4:e7:07:3c:e3:2d:3d:cf:d1:62:14:d3:e7:1f:62:f0:f7:
f0:d0:94:33:85:e8:aa:73:8d:16:97:33:bf:33:ad:ab:ed:6c:
1c:f3:61:4e:47:a1:3c:f1:1e:67:62:b7:f8:15:df:67:44:15:
14:00:f5:8a:96:9c:5e:3e:b0:33:83:e1:e5:28:9b:68:24:db:
7a:fb:43:4a:11:64:0b:a0:6f:c1:66:b8:65:a1:25:3f:b9:33:
37:03:87:50:92:06:2e:b7:ae:e0:51:ee:af:f6:97:55:8a:5d:
a6:2f:73:e4:12:ac:b2:54:d5:32:6f:c1:f9:20:d8:a8:4c:42:
e9:07:17:70:e5:22:cb:fa:e9:17:fb:91:98:d6:04:65:02:b4:
9d:87:99:70:b5:aa:16:42:21:90:14:1f:5f:6f:34:f9:04:24:
56:6b:5b:f9:8d:52:f4:d6:48:c3:3b:ce:35:e0:a5:01:9d:9f:
b0:60:c2:1d:a8:a5:73:b0:02:2a:97:cb:3b:fd:cf:88:d0:a4:
88:38:5e:9d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:45:12 2025 by rpki-client