Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/19fcc9-cb33-4255-8883-fe027a034449/1/rdlp4L8YDCW2xAQJ2QjEYdbEEWc.roa
File: rdlp4L8YDCW2xAQJ2QjEYdbEEWc.roa (raw, json)
Hash identifier: uwOFjfRdgeudBgM29Mi64jR1M0Ntn89BbOF3dep9cqM=
Subject key identifier: AD:D9:69:E0:BF:18:0C:25:B6:C4:04:09:D9:08:C4:61:D6:C4:11:67
Certificate issuer: /CN=7e1340ed2323a9286e980f66469990a9a1e3075d
Certificate serial: 0194FD8E81FF374F0125A9EDDC73ED3FFE76
Authority key identifier: 7E:13:40:ED:23:23:A9:28:6E:98:0F:66:46:99:90:A9:A1:E3:07:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhNA7SMjqShumA9mRpmQqaHjB10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/19fcc9-cb33-4255-8883-fe027a034449/1/rdlp4L8YDCW2xAQJ2QjEYdbEEWc.roa
Signing time: Thu 13 Feb 2025 04:26:02 +0000
ROA not before: Thu 13 Feb 2025 04:26:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213736
IP address blocks: 2a14:cc00:e001::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 13 Feb 2025 05:33:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:fd:8e:81:ff:37:4f:01:25:a9:ed:dc:73:ed:3f:fe:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e1340ed2323a9286e980f66469990a9a1e3075d
Validity
Not Before: Feb 13 04:26:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=add969e0bf180c25b6c40409d908c461d6c41167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:26:69:f1:9b:41:17:22:20:d7:12:cb:19:99:
06:58:11:6e:f2:e7:6f:e4:1e:ff:3e:42:11:a2:c8:
f1:5e:2d:d4:7f:2f:eb:2f:db:94:80:d1:cf:29:5e:
57:77:27:ff:5e:93:78:2c:e2:d0:7d:14:f1:85:46:
02:2f:ac:1b:6e:a7:19:d0:29:6b:81:1b:88:ec:55:
7f:21:67:23:47:eb:95:93:6e:fe:29:ef:11:43:32:
ee:e1:94:dd:c7:bd:62:20:bb:72:84:c4:c5:9b:ec:
5e:38:78:bc:35:1f:1e:20:e6:94:89:9a:83:5a:ba:
ed:7a:ad:0e:5a:2d:89:b1:00:97:47:8d:af:e9:83:
04:08:ff:2a:56:88:85:85:8f:e5:b8:e3:9a:73:37:
fe:06:65:bb:be:7c:3d:fe:a6:2d:7d:5e:b9:61:09:
17:d0:40:64:e5:84:e0:a9:61:e5:da:2b:e9:1b:d1:
c3:10:10:ef:83:f1:1b:d7:99:7b:58:5f:0d:02:f3:
33:28:bb:01:e7:7a:7c:82:e6:09:3d:7a:ed:f9:03:
a3:75:ab:b3:4d:3a:c3:d7:60:38:b8:04:93:69:2a:
3f:d4:cb:05:a5:c2:64:d8:1e:08:af:13:fd:6b:93:
f9:67:e0:15:7c:13:4e:4e:25:0e:93:99:e0:b1:8b:
96:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D9:69:E0:BF:18:0C:25:B6:C4:04:09:D9:08:C4:61:D6:C4:11:67
X509v3 Authority Key Identifier:
keyid:7E:13:40:ED:23:23:A9:28:6E:98:0F:66:46:99:90:A9:A1:E3:07:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhNA7SMjqShumA9mRpmQqaHjB10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/19fcc9-cb33-4255-8883-fe027a034449/1/rdlp4L8YDCW2xAQJ2QjEYdbEEWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/19fcc9-cb33-4255-8883-fe027a034449/1/fhNA7SMjqShumA9mRpmQqaHjB10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:cc00:e001::/48
Signature Algorithm: sha256WithRSAEncryption
05:0c:1a:52:99:a4:fa:7d:6a:2c:a3:2d:72:3b:c7:8e:ed:ae:
9f:9a:ea:17:a0:1c:69:ac:84:66:d3:1b:88:1c:1e:2c:14:2e:
72:21:38:fe:d9:ff:3f:b5:d7:03:e7:c8:9e:d6:82:c8:4b:8c:
ac:ed:8f:19:35:b2:7b:be:e8:ba:51:b3:6b:80:84:7b:bd:7d:
b3:97:8c:92:7f:16:aa:a0:cf:49:a1:42:af:be:a0:4a:8c:bb:
5e:a1:ba:fb:a3:8a:db:1f:d2:30:71:53:6b:1e:f8:a3:6d:0b:
c2:fb:5c:27:79:bb:d4:82:17:0c:e6:31:5c:d2:2d:8a:63:86:
c9:13:aa:91:e3:4f:0c:08:d6:a6:02:38:e4:4c:cd:a9:55:d7:
87:dd:53:5d:1d:a8:f0:dc:49:c2:49:72:3b:d0:9d:4c:7b:22:
c5:aa:c0:e9:e9:a5:fd:63:0f:6e:7d:74:17:ac:66:4b:4e:9a:
3f:ff:86:d9:d2:36:c5:1d:c3:9e:3d:88:2e:7d:01:10:ed:45:
fc:38:7b:df:5c:45:8e:18:52:ef:fb:40:36:54:c7:6d:7e:f0:
17:cd:44:01:ef:a1:db:a6:2b:e9:07:8d:15:e0:11:63:68:32:
67:60:98:d2:05:fe:57:a1:5f:8a:11:02:43:54:ce:10:4f:32:
48:14:22:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 18:14:21 2025 by rpki-client