Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/N-DkvD8BVv4QaUGwYBNElND5YoI.roa
File: N-DkvD8BVv4QaUGwYBNElND5YoI.roa (raw, json)
Hash identifier: hhlHFhYN1ldiigGx7HbF7Z3BHaq5164OBcrGwh8VCrI=
Subject key identifier: 37:E0:E4:BC:3F:01:56:FE:10:69:41:B0:60:13:44:94:D0:F9:62:82
Certificate issuer: /CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Certificate serial: 0197AB82C25EA27062D1CB085DF4EFBB1B9C
Authority key identifier: 4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/N-DkvD8BVv4QaUGwYBNElND5YoI.roa
Signing time: Thu 26 Jun 2025 09:12:42 +0000
ROA not before: Thu 26 Jun 2025 09:12:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:197:6851:789c/128 maxlen: 128
Validation: Failed, certificate revoked on Thu 26 Jun 2025 10:05:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ab:82:c2:5e:a2:70:62:d1:cb:08:5d:f4:ef:bb:1b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Validity
Not Before: Jun 26 09:12:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=37e0e4bc3f0156fe106941b060134494d0f96282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:fd:82:8c:64:83:30:e3:7e:6d:cb:22:dc:a0:
18:f1:3e:fe:77:f6:c7:82:e2:31:bf:e3:56:9b:24:
c7:ca:2a:fd:c1:27:12:69:ad:78:77:17:d7:9d:ef:
f3:05:e1:cf:9c:de:fd:0c:38:0b:45:e2:c4:b8:05:
84:67:f0:b1:7b:ee:d0:6d:f4:c6:cf:cb:69:42:d8:
73:fc:9b:9c:8f:32:91:e6:1b:68:9d:4e:32:ea:69:
56:e7:ff:db:6c:f3:a4:ed:e0:b4:75:4d:9e:5d:3b:
10:92:23:4c:37:a7:c7:30:5d:71:8a:ee:7e:91:42:
4d:16:79:83:83:c0:20:cb:33:9c:03:27:1a:1c:52:
ca:f0:7e:9c:88:2f:bd:84:4b:c4:69:ca:31:ac:3a:
19:d7:41:71:77:8e:0e:05:96:82:dc:2c:0d:88:5a:
1c:9b:3c:01:74:2e:56:27:23:0e:93:bf:ab:96:7d:
a6:f9:4b:9d:64:97:fb:14:47:48:06:d8:6b:22:f5:
c3:ca:ef:dc:c2:4f:11:9d:fa:86:8d:0d:61:d2:26:
76:47:cb:1e:c1:ae:b1:ee:c2:cb:e3:5d:0a:86:97:
8b:48:e5:be:cb:99:d1:d6:b1:f0:7b:07:9a:c2:74:
78:d6:66:16:a1:2b:5e:9f:0b:46:94:39:a9:e8:8a:
9c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E0:E4:BC:3F:01:56:FE:10:69:41:B0:60:13:44:94:D0:F9:62:82
X509v3 Authority Key Identifier:
keyid:4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/N-DkvD8BVv4QaUGwYBNElND5YoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ThPQwKcD4JzaZMErCN2it0mgQpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:197:6851:789c/128
Signature Algorithm: sha256WithRSAEncryption
22:49:7b:a4:36:58:24:95:28:21:88:4e:64:fe:e1:7f:8b:a1:
af:dc:0c:20:e2:a1:35:d7:02:6d:35:9d:72:39:16:d9:37:dd:
ee:d9:1b:9b:14:32:c3:51:92:ea:86:67:b1:38:aa:d8:a6:c0:
df:b1:be:06:10:ed:12:b9:9c:1f:b3:58:d9:62:81:c5:8e:b1:
0a:5c:e7:f3:f0:64:82:82:58:94:80:32:84:0f:f9:a7:fb:a8:
fe:b2:1e:3a:01:f1:bd:22:22:e9:ac:27:9a:58:cb:76:8e:ae:
a3:36:ed:ba:2a:5f:21:bc:df:ee:3e:0c:84:e6:9d:f8:2d:e0:
7b:f6:40:e3:65:88:5a:90:cb:7b:7d:b2:de:41:11:72:e3:93:
eb:2b:d2:4c:69:8c:31:37:22:86:88:5a:f0:cd:62:ed:1c:31:
0a:1e:86:ce:7d:53:ba:01:e1:df:eb:50:27:77:c0:4a:b2:5c:
e9:9f:60:2b:67:47:96:12:82:1f:56:ac:e1:56:bd:a9:d4:59:
cb:e3:79:9c:50:80:b9:e4:97:e1:53:8c:89:b4:9f:30:2b:4b:
c4:77:f4:c8:c8:ac:de:45:b0:c7:e3:ca:e4:7a:28:d4:02:cb:
6c:e2:46:55:0c:25:71:f4:f1:72:b1:36:82:8d:52:f3:79:33:
53:da:25:e2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jul 5 16:19:08 2025 by rpki-client