Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ES2ieutjuwMYtr0F3epSv-Bi7UA.roa
File: ES2ieutjuwMYtr0F3epSv-Bi7UA.roa (raw, json)
Hash identifier: 7QbH1tsbN8ghEipxjbSOEVXkaHFX1x/IPqLkhof1sYo=
Subject key identifier: 11:2D:A2:7A:EB:63:BB:03:18:B6:BD:05:DD:EA:52:BF:E0:62:ED:40
Certificate issuer: /CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Certificate serial: 0197B4F3BF055C5198DDA2756B7A4DF1C1D6
Authority key identifier: 4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ES2ieutjuwMYtr0F3epSv-Bi7UA.roa
Signing time: Sat 28 Jun 2025 05:12:42 +0000
ROA not before: Sat 28 Jun 2025 05:12:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:197:6851:789c/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 28 Jun 2025 06:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b4:f3:bf:05:5c:51:98:dd:a2:75:6b:7a:4d:f1:c1:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Validity
Not Before: Jun 28 05:12:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=112da27aeb63bb0318b6bd05ddea52bfe062ed40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:fb:d2:bf:d1:2b:fa:c5:9c:7a:f8:29:5c:69:
fe:1a:9c:0f:a8:d6:f1:49:8f:2f:de:60:82:03:d1:
ef:04:77:13:b5:f8:20:d4:ff:19:06:b1:cf:03:6a:
4b:cf:42:4d:1a:0f:d7:6b:67:e6:51:e4:c8:2b:82:
d8:e6:43:32:6c:5b:58:d1:46:41:cd:5d:d6:f9:ae:
0a:28:29:32:fc:ea:6f:a3:8b:68:ea:bb:21:48:e3:
36:ec:d5:b7:fe:3c:5e:ed:c3:28:0b:69:61:01:4c:
e5:e2:23:cd:6c:1c:e2:d6:f4:2c:11:ab:07:7d:9d:
98:6f:db:12:43:b9:cc:78:99:e9:db:fa:71:0c:5d:
0a:a9:98:f5:f7:3b:37:64:fc:86:74:f8:2b:2a:f8:
0f:13:ac:93:d7:73:3c:96:a5:ac:d4:15:55:e6:09:
7c:4e:97:15:a7:71:f0:86:3d:f2:7b:a2:57:c0:78:
7c:53:ca:bf:b2:4b:b5:dd:fa:b9:91:45:f0:07:e8:
75:fb:e2:f2:ab:f2:45:21:b2:ba:53:4e:ba:8c:bf:
be:2a:b5:fe:82:92:72:2e:67:2c:c9:19:28:e5:4e:
16:06:60:3f:f2:57:ea:cb:be:b9:57:ac:5a:b4:bb:
cc:66:03:ac:ef:15:d2:cc:7e:27:21:51:4a:d3:f5:
a6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:2D:A2:7A:EB:63:BB:03:18:B6:BD:05:DD:EA:52:BF:E0:62:ED:40
X509v3 Authority Key Identifier:
keyid:4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ES2ieutjuwMYtr0F3epSv-Bi7UA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ThPQwKcD4JzaZMErCN2it0mgQpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:197:6851:789c/128
Signature Algorithm: sha256WithRSAEncryption
7c:10:32:42:a7:bd:b2:9c:4c:d0:33:16:9d:ea:fb:84:04:96:
1d:fe:f2:3c:ca:24:24:88:a1:b3:1a:bc:ef:24:d1:8c:3d:f8:
34:71:4e:e2:ad:c6:79:44:ab:27:9b:82:ee:33:12:ee:36:fc:
73:fd:83:90:bc:f9:cc:fe:17:4a:46:e6:7c:4d:5d:7d:07:48:
83:a2:c8:d4:fd:b7:f2:6f:30:39:c1:36:79:be:6a:26:fa:d9:
a3:21:b3:a0:d3:cb:0c:0e:ef:c7:85:cb:55:08:ab:d4:ac:50:
8f:ce:41:4e:49:95:f1:f8:54:97:fd:b6:eb:fa:1c:86:57:39:
94:9a:7d:d5:c5:4a:97:63:40:3c:04:ec:62:42:75:e6:24:b3:
05:8a:fc:63:dc:c4:b6:fe:f7:e8:c4:22:d6:a8:07:94:e1:8e:
89:ec:a1:d7:ca:1e:d6:59:69:a6:35:90:a7:bf:f9:81:8d:f8:
28:56:47:59:2d:2f:3b:52:a4:fe:cd:98:ae:49:54:26:70:9f:
87:ba:fa:c4:79:05:47:7a:4f:b3:e7:81:44:e1:ff:e0:f0:77:
bc:fd:bb:4a:1a:77:4c:e6:92:79:c6:36:fc:3c:a9:4d:1a:4f:
cc:cc:aa:a9:c5:6a:62:94:25:6d:78:06:4f:be:d2:cc:60:66:
26:d9:5f:0f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jul 5 15:46:48 2025 by rpki-client