Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/Hv5-02lPkDe2H8LQT_oSF4--1V8.roa
File: Hv5-02lPkDe2H8LQT_oSF4--1V8.roa (raw, json)
Hash identifier: yED8s9rA9aEZO2aVsQ5uwpN6lhytlQbyLw1JOrfmZmI=
Subject key identifier: 1E:FE:7E:D3:69:4F:90:37:B6:1F:C2:D0:4F:FA:12:17:8F:BE:D5:5F
Certificate issuer: /CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Certificate serial: 0197BD5214ADEBBF865650704D003262C8E3
Authority key identifier: 4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/Hv5-02lPkDe2H8LQT_oSF4--1V8.roa
Signing time: Sun 29 Jun 2025 20:12:42 +0000
ROA not before: Sun 29 Jun 2025 20:12:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:197:6851:789c/128 maxlen: 128
Validation: Failed, certificate revoked on Sun 29 Jun 2025 21:04:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:bd:52:14:ad:eb:bf:86:56:50:70:4d:00:32:62:c8:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Validity
Not Before: Jun 29 20:12:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1efe7ed3694f9037b61fc2d04ffa12178fbed55f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fe:b6:72:5a:de:83:ea:0e:da:dd:6c:4e:29:
e7:0f:6d:df:bd:47:59:cf:17:20:fc:a7:b0:cd:b6:
fc:69:b1:1a:2e:b7:15:85:0f:59:08:da:b4:1f:16:
80:14:41:40:6e:65:55:9b:96:71:5c:ff:3a:57:0a:
b7:41:b9:a8:c2:dc:83:f0:e6:25:7e:65:62:ba:d4:
c9:11:02:dd:a5:4e:ea:df:88:06:2c:36:7e:d7:78:
40:16:ba:c2:34:e9:48:ee:91:cb:19:bb:4b:56:19:
e1:45:df:47:fb:7a:ae:83:ba:b4:a4:8e:b6:91:eb:
b2:5d:90:df:d6:67:95:a1:81:53:50:f6:a3:d2:e7:
d4:59:91:b3:97:97:94:56:59:5e:f7:e5:6c:00:79:
9b:64:11:72:21:0b:e1:1c:e1:0b:6c:cc:52:f2:47:
93:88:bc:05:fa:cc:cb:93:b2:cc:a1:f4:4e:e3:e9:
24:60:c5:e9:6c:3a:90:97:b2:8b:74:c2:e6:81:05:
3b:1a:3f:f0:ee:33:42:e7:1e:fb:41:7d:a7:b1:15:
09:ed:0c:bb:19:fd:da:98:5a:4a:eb:64:09:62:9a:
3b:64:e7:ef:f0:fa:91:cb:16:6e:53:ce:5f:04:40:
28:14:48:71:31:2d:27:15:91:51:23:14:01:ad:23:
ff:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:FE:7E:D3:69:4F:90:37:B6:1F:C2:D0:4F:FA:12:17:8F:BE:D5:5F
X509v3 Authority Key Identifier:
keyid:4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/Hv5-02lPkDe2H8LQT_oSF4--1V8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ThPQwKcD4JzaZMErCN2it0mgQpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:197:6851:789c/128
Signature Algorithm: sha256WithRSAEncryption
1d:cd:42:b6:94:4e:44:49:04:df:1c:4e:96:2c:3d:f6:45:8a:
61:7d:38:d3:12:6f:b1:a3:10:40:09:1f:53:98:ee:45:97:af:
14:b6:2e:e2:83:f9:81:87:83:17:9f:1d:8e:d9:9d:bd:5c:b8:
00:b8:89:34:c2:32:08:00:53:b0:ed:c2:40:5a:e9:cc:e8:ee:
bf:07:a0:b2:94:c8:c9:0a:c9:68:05:95:32:21:2e:57:b1:89:
b5:1b:a9:7a:96:a7:b9:9f:f1:a1:ff:eb:10:65:83:80:1a:26:
d5:5f:b7:f7:01:bb:32:61:f9:e0:1a:e8:12:65:e7:aa:3c:de:
9d:a3:7e:70:9e:55:b7:0b:54:3c:53:0d:ba:09:9a:e8:ad:61:
d3:6d:b5:f8:4b:d0:b8:2b:49:db:00:42:56:32:b6:c7:70:14:
ad:c7:82:49:4c:a8:4b:66:25:7c:55:87:cc:4c:ef:25:36:5a:
4b:01:0d:03:3f:36:5a:27:fd:65:25:4e:d1:d4:4a:d6:e2:59:
fc:98:9d:0e:31:1b:b0:e0:8b:04:fa:d3:0c:1f:80:e8:81:b1:
0e:fb:f9:a7:08:4e:9d:f8:b1:79:5a:91:39:07:e5:ba:77:bf:
0f:fc:f4:80:30:c3:14:a6:e2:4a:23:00:b7:cf:b6:a3:bf:a5:
b5:11:c5:f1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jul 5 16:38:46 2025 by rpki-client