Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RKcqV5zX2Xj_xwsvywVuYUHf36Y.roa
File: RKcqV5zX2Xj_xwsvywVuYUHf36Y.roa (raw, json)
Hash identifier: QesUJfsKEdfDzJCIgr+mZCcr+XVjNzWPK1LSNYqQ4sA=
Subject key identifier: 44:A7:2A:57:9C:D7:D9:78:FF:C7:0B:2F:CB:05:6E:61:41:DF:DF:A6
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018FCAADA3B8C6697BDBDA629652E44B8BCD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RKcqV5zX2Xj_xwsvywVuYUHf36Y.roa
Signing time: Thu 30 May 2024 18:05:28 +0000
ROA not before: Thu 30 May 2024 18:05:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214801
IP address blocks: 2a0e:b107:1e10::/48 maxlen: 48
2a0e:b107:1e11::/48 maxlen: 48
2a0e:b107:1e12::/48 maxlen: 48
2a0e:b107:1e13::/48 maxlen: 48
2a0e:b107:1e14::/48 maxlen: 48
2a0e:b107:1e15::/48 maxlen: 48
2a0e:b107:1e16::/48 maxlen: 48
2a0e:b107:1e17::/48 maxlen: 48
2a0e:b107:1e18::/48 maxlen: 48
2a0e:b107:1e19::/48 maxlen: 48
2a10:2f00:1a1::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 May 2024 18:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ca:ad:a3:b8:c6:69:7b:db:da:62:96:52:e4:4b:8b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 30 18:05:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44a72a579cd7d978ffc70b2fcb056e6141dfdfa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:be:70:54:d6:45:2f:7a:1b:60:66:04:ce:ee:
71:4a:53:ab:b6:43:fc:58:b3:81:db:3a:ef:fc:f0:
40:f5:a4:4b:3c:cc:4d:c0:a4:3c:65:9c:b7:ab:8b:
46:aa:f6:f4:6e:1f:8c:59:c3:fd:5e:f3:89:68:d8:
d8:55:08:eb:b1:f1:19:b4:6e:2f:7c:78:c8:e2:25:
f1:f6:62:15:35:fb:c9:53:5b:ba:87:a1:4b:cd:7f:
55:16:32:09:77:08:53:f5:94:bb:26:4f:d5:09:72:
6b:9b:d0:57:53:1f:c7:4f:d2:df:90:fc:04:0c:98:
bb:4e:62:e7:94:1b:e0:d5:a9:a2:b0:aa:25:84:7c:
b2:be:50:a9:55:5f:c5:2a:cf:73:2d:94:40:13:cd:
9b:4b:94:3a:f4:9b:c9:e2:b7:34:84:c8:08:14:7a:
b3:6c:0e:fc:2e:c6:e8:ba:0c:12:21:b3:54:7e:33:
68:db:fc:2d:99:fd:34:c1:88:f1:38:c9:b6:09:b3:
24:66:30:fd:bb:7a:5e:6b:ed:55:36:a7:ab:00:dd:
6a:5c:60:de:06:c2:88:77:ef:69:c8:44:ee:86:06:
a2:d7:7f:88:34:3b:7c:ee:c3:32:08:ea:12:c8:40:
69:46:da:17:4b:7c:7f:d9:53:59:5a:9c:2b:86:c3:
4a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A7:2A:57:9C:D7:D9:78:FF:C7:0B:2F:CB:05:6E:61:41:DF:DF:A6
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RKcqV5zX2Xj_xwsvywVuYUHf36Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1e10::-2a0e:b107:1e19:ffff:ffff:ffff:ffff:ffff
2a10:2f00:1a1::/48
Signature Algorithm: sha256WithRSAEncryption
c6:d6:dd:00:7c:18:77:fa:60:68:f9:58:a9:f8:cb:70:3f:f5:
43:c2:d4:26:aa:1f:4d:e2:4c:72:86:b8:11:9d:ed:95:73:00:
ed:80:16:aa:4c:4a:b0:83:e4:c1:57:79:af:0d:55:f1:06:66:
9a:f8:9c:67:b7:69:b8:2b:ba:17:5c:2b:17:94:54:7d:68:90:
f5:21:6c:e3:8c:72:8f:f8:46:8a:cb:a4:ab:27:e3:36:a9:91:
43:94:4c:ea:52:93:c5:f3:a6:aa:3f:02:6d:90:84:91:88:f6:
6f:7e:f1:fc:0f:8d:f7:22:c9:b3:73:c6:8e:7c:a3:bf:e3:17:
a2:cb:29:66:df:7c:24:94:b5:e6:35:f4:7b:a6:d3:b2:c5:cd:
c5:1f:57:92:64:ee:3d:ba:bf:c8:c9:61:dc:59:63:a3:a4:51:
66:5d:af:0f:98:8f:6a:7c:bd:10:88:c9:8a:3f:e1:40:fa:15:
28:ac:0b:32:ac:63:5f:f8:41:70:23:f6:a6:22:f1:07:1e:99:
92:40:b8:0f:78:f3:45:77:39:90:7c:48:61:c7:a3:64:49:09:
60:86:c1:16:f2:60:4f:00:49:1d:f7:51:14:9c:ef:71:37:6d:
3c:8d:4a:b2:77:ea:14:74:90:90:cc:15:a7:c4:66:d9:52:ee:
5a:8d:1b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 23:04:07 2025 by rpki-client