Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/8Of1cuAW0VDCLg8m5iwR4iMWY0w.roa
File: 8Of1cuAW0VDCLg8m5iwR4iMWY0w.roa (raw, json)
Hash identifier: XRzs8axpIm+HSE+t7z4CxS51oJDJi/4KRqvsnFXM4gY=
Subject key identifier: F0:E7:F5:72:E0:16:D1:50:C2:2E:0F:26:E6:2C:11:E2:23:16:63:4C
Certificate issuer: /CN=ea846006cf8b9e388f31451358092502cecc1136
Certificate serial: 019704DFF3D20CCE9C8FFD2D4C7FE1B7D454
Authority key identifier: EA:84:60:06:CF:8B:9E:38:8F:31:45:13:58:09:25:02:CE:CC:11:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/8Of1cuAW0VDCLg8m5iwR4iMWY0w.roa
Signing time: Sun 25 May 2025 00:37:55 +0000
ROA not before: Sun 25 May 2025 00:37:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207252
IP address blocks: 2a06:8ac0:8::/45 maxlen: 45
Validation: Failed, certificate revoked on Fri 30 May 2025 21:41:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:04:df:f3:d2:0c:ce:9c:8f:fd:2d:4c:7f:e1:b7:d4:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea846006cf8b9e388f31451358092502cecc1136
Validity
Not Before: May 25 00:37:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f0e7f572e016d150c22e0f26e62c11e22316634c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:72:dc:fa:05:ae:43:c0:e4:d2:eb:18:21:0f:
2b:8a:a5:ad:38:55:7d:c7:4c:74:55:f5:3c:0a:43:
5c:85:ec:50:28:cd:e9:16:d5:35:39:70:b7:f3:8c:
02:85:32:be:2a:d0:61:1f:5c:df:36:0b:43:04:14:
39:21:dc:01:cd:4d:79:38:5d:23:0d:ce:66:19:d2:
45:c5:40:c7:90:6e:f9:13:ad:a5:f5:94:e8:b6:b6:
98:96:c5:ef:f5:8f:91:39:38:ad:18:ce:53:c7:de:
a9:87:be:95:50:a0:1f:92:2a:45:c4:d4:d6:a7:06:
26:63:7e:bf:74:96:ab:24:25:d2:db:2d:18:88:11:
48:3e:df:29:16:cc:93:bb:37:28:e1:e8:6f:a8:b4:
47:ed:7c:b5:29:bd:d8:b7:91:9f:f1:b4:be:a0:50:
2b:f3:bd:a1:97:db:5d:18:f1:39:7c:83:0c:01:db:
7d:84:bf:07:63:48:0d:ce:8f:c2:98:3d:00:62:8b:
10:c2:fd:bd:ab:63:5e:79:11:88:95:97:22:5c:92:
10:47:c2:cb:a8:72:95:3f:cd:81:b4:66:75:27:73:
60:22:c1:3b:7a:08:1d:d6:e2:e9:ea:f0:1c:34:4a:
64:ac:f4:44:ca:2c:51:04:23:12:b9:58:57:22:0f:
3c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E7:F5:72:E0:16:D1:50:C2:2E:0F:26:E6:2C:11:E2:23:16:63:4C
X509v3 Authority Key Identifier:
keyid:EA:84:60:06:CF:8B:9E:38:8F:31:45:13:58:09:25:02:CE:CC:11:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6oRgBs-LnjiPMUUTWAklAs7METY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/8Of1cuAW0VDCLg8m5iwR4iMWY0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/21cd77-1eca-46b9-9aba-f74cccc4e0a1/1/6oRgBs-LnjiPMUUTWAklAs7METY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:8ac0:8::/45
Signature Algorithm: sha256WithRSAEncryption
73:40:f3:24:9c:eb:9e:4e:6a:a8:95:0a:ce:8c:02:63:01:14:
8f:c5:f6:b3:2d:cb:13:88:9a:8f:19:f5:bc:90:96:da:ed:aa:
ad:1d:f0:82:3a:84:7c:dd:f3:39:ca:a1:ce:fc:c5:1b:fc:83:
cc:76:a6:ac:7b:31:a4:08:3c:06:09:c2:69:c8:c2:01:13:26:
63:a3:7e:11:65:f0:65:c0:80:58:30:ae:5c:df:0c:50:d9:00:
11:f4:d2:d3:6a:55:93:ff:a5:b8:4f:6d:e6:57:c3:c0:27:f4:
b0:a3:58:37:10:a3:15:e2:13:6b:2f:f6:44:d2:e0:69:e2:5e:
f6:8f:2a:9c:cd:64:30:c4:38:9d:2d:d2:95:f9:fb:f0:b2:b6:
0a:f6:84:9d:d5:ef:c8:99:6b:e4:32:99:3d:84:1a:f3:81:8b:
b5:c9:83:90:f6:34:d1:8e:92:74:89:86:7e:24:a8:07:cd:4d:
cd:5b:68:ef:26:fd:b1:bf:a8:f2:1c:18:f1:7b:e6:12:20:32:
57:af:45:3a:c2:24:76:55:2e:a1:bd:b0:4e:a7:a4:a6:8f:76:
ea:36:1b:b9:23:90:52:62:ec:bd:ca:55:1c:ae:2b:a7:40:f2:
a7:f4:6b:35:d4:9a:7e:74:57:a8:ad:32:1d:31:b0:e1:79:cb:
f9:ec:18:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:04:36 2025 by rpki-client