Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/Zv4I3_tUbbP0059V8ewF4CxoeYg.roa
File: Zv4I3_tUbbP0059V8ewF4CxoeYg.roa (raw, json)
Hash identifier: WiBI2QqrBKhChaiRYcvUPlbF0bhHZp9ZyqpC06VflE4=
Subject key identifier: 66:FE:08:DF:FB:54:6D:B3:F4:D3:9F:55:F1:EC:05:E0:2C:68:79:88
Certificate issuer: /CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Certificate serial: 0197813CD81A642DA616B04C0C4E4D8F2C6A
Authority key identifier: 4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/Zv4I3_tUbbP0059V8ewF4CxoeYg.roa
Signing time: Wed 18 Jun 2025 04:12:17 +0000
ROA not before: Wed 18 Jun 2025 04:12:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:197:6851:789c/128 maxlen: 128
Validation: Failed, certificate revoked on Wed 18 Jun 2025 05:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:81:3c:d8:1a:64:2d:a6:16:b0:4c:0c:4e:4d:8f:2c:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Validity
Not Before: Jun 18 04:12:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=66fe08dffb546db3f4d39f55f1ec05e02c687988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:82:f6:d9:c5:4a:87:96:fa:1f:4d:18:5f:84:
53:b0:8d:10:65:21:35:01:fd:bc:d2:b9:19:10:7f:
b8:3c:e8:81:93:44:31:43:78:36:27:cf:a6:92:1e:
9f:7b:b5:b1:cc:2f:32:87:7c:35:b1:1c:38:61:5e:
ad:d2:a0:00:fa:cf:f1:74:68:5f:79:ce:ff:71:62:
b1:1e:71:92:57:ac:41:21:6c:58:c9:b8:63:fc:31:
0a:ec:85:cb:83:a6:dc:77:7a:ff:f9:12:ac:5a:94:
2e:fc:84:6f:3e:1b:41:37:38:5d:9e:99:34:ff:a0:
4a:2f:5a:8b:c4:ed:a2:10:11:ad:f3:f7:42:08:94:
ce:b5:b4:10:18:78:0c:e3:ea:3f:7b:0a:6f:c9:f2:
cc:12:d5:2d:eb:aa:f1:12:e4:d2:cc:21:74:b6:94:
89:5f:2f:bd:51:de:9a:ad:d8:8f:c4:06:7e:8d:f4:
9f:f9:b9:05:9d:c0:9d:e9:ba:6d:b8:de:35:4a:5a:
33:c8:37:85:f5:6f:31:b7:ff:21:7f:07:d2:62:9f:
17:27:78:c7:1c:e9:b9:68:63:36:4b:83:d4:02:06:
e3:f2:e6:28:7e:96:2f:d9:03:c3:f9:25:85:94:7e:
e1:a7:3e:23:47:f5:19:1b:25:85:e1:14:07:5b:77:
ef:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:FE:08:DF:FB:54:6D:B3:F4:D3:9F:55:F1:EC:05:E0:2C:68:79:88
X509v3 Authority Key Identifier:
keyid:4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/Zv4I3_tUbbP0059V8ewF4CxoeYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ThPQwKcD4JzaZMErCN2it0mgQpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:197:6851:789c/128
Signature Algorithm: sha256WithRSAEncryption
7e:e3:fd:d1:9c:1b:c5:86:18:a7:a7:29:b9:84:7d:81:24:16:
d5:0f:65:ea:98:02:ed:9f:4f:e2:ac:c6:57:21:13:3e:4a:ee:
d9:2b:54:79:8e:ed:e4:09:7a:57:77:f9:6e:69:21:15:40:ac:
cd:28:56:d5:f1:9b:01:8a:7b:33:4b:06:94:79:6b:bc:75:b5:
f9:1a:e6:33:7b:8f:0e:9f:19:71:ea:88:58:6c:42:f6:7c:91:
55:00:13:2c:63:43:98:e9:c5:a2:98:7c:98:88:cc:ca:e9:85:
47:be:ca:a3:a6:ee:a2:ed:ea:28:63:69:16:71:a2:98:c7:4f:
1a:4c:93:62:df:99:bb:86:23:7a:44:13:ee:15:21:48:f3:9a:
fc:c1:34:62:a4:89:d9:6c:22:57:20:e3:ac:99:4f:01:62:7b:
bc:27:a6:f4:1e:ef:f3:cc:73:81:86:9d:04:9b:57:eb:f3:2e:
15:cd:c4:dc:9f:87:9b:a6:7a:79:b1:71:d2:f9:e4:fa:95:a3:
72:29:66:e4:1d:c5:21:ac:b0:35:46:51:b6:73:d3:37:f6:23:
0d:dd:9d:9e:a3:fc:c6:ee:ea:76:a4:aa:f7:c9:27:35:96:55:
66:6c:ce:83:34:84:21:72:a3:d1:21:6e:e8:2e:43:fe:f7:f1:
83:f1:3d:28
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jul 5 15:27:07 2025 by rpki-client