Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5vPCewnhwGfommcCe4ZgHvqITSw.roa
File: 5vPCewnhwGfommcCe4ZgHvqITSw.roa (raw, json)
Hash identifier: Cdfdc58+t4pWbnSxqu+DKp3iMiFbrRpPbXgKA3dCs7A=
Subject key identifier: E6:F3:C2:7B:09:E1:C0:67:E8:9A:67:02:7B:86:60:1E:FA:88:4D:2C
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01962680884CEFB20A80834C07608BEAC8D8
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5vPCewnhwGfommcCe4ZgHvqITSw.roa
Signing time: Fri 11 Apr 2025 20:17:59 +0000
ROA not before: Fri 11 Apr 2025 20:17:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213542
IP address blocks: 2a09:17c0:8743::/48 maxlen: 48
2a0e:f600::/48 maxlen: 48
2a0f:1581:100::/48 maxlen: 48
2a0f:3046:85::/48 maxlen: 48
2a0f:3d80:49ff::/48 maxlen: 48
2a0f:df45:25b::/48 maxlen: 48
2a0f:df45:fe5e::/48 maxlen: 48
2a0f:e202:100::/48 maxlen: 48
2a0f:e7c3:1::/48 maxlen: 48
2a0f:ea43:1::/48 maxlen: 48
2a13:c900:fd1a::/48 maxlen: 48
2a13:e107:3d7::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 11 Apr 2025 20:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:26:80:88:4c:ef:b2:0a:80:83:4c:07:60:8b:ea:c8:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 11 20:17:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6f3c27b09e1c067e89a67027b86601efa884d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:00:b1:86:9c:17:6a:da:07:01:9f:a7:30:
01:2c:69:3b:8c:17:39:5c:c6:a5:cd:e2:60:60:e2:
c5:82:f6:4f:77:d6:b3:2f:b9:5f:51:c7:72:f6:01:
17:f3:70:4d:9e:b1:15:08:71:92:26:55:f8:3f:3c:
f4:c0:b0:c6:99:d4:bd:67:c8:5a:b2:0b:ef:be:c1:
da:c1:cb:da:ee:8a:86:bc:23:49:49:6e:4b:97:a4:
ae:60:40:1b:d6:93:a4:f0:03:25:c4:ab:9f:67:22:
bf:5f:e7:70:60:de:a6:4d:da:01:55:00:52:36:dd:
09:c1:9f:7f:e0:eb:62:ee:f1:2d:bc:80:c3:d7:23:
61:cd:7c:7e:fa:f7:4c:72:42:3b:ab:8f:69:88:cd:
01:70:d8:72:07:a1:b5:15:0f:67:98:d7:f0:96:ff:
bd:a6:89:cc:52:19:6e:0c:de:5f:9c:a5:f2:4c:fb:
12:a8:a0:47:db:1e:0d:6b:2c:b1:2d:d3:0f:78:db:
f5:e3:a3:64:73:28:b9:70:3b:05:95:99:cf:88:da:
fe:e6:5e:13:f4:67:7f:52:1b:f8:92:06:78:19:98:
c2:30:57:99:c6:d3:f0:2b:30:f8:74:ac:46:35:2a:
b3:be:d8:07:67:56:0d:cc:05:36:a2:23:43:69:bf:
e7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F3:C2:7B:09:E1:C0:67:E8:9A:67:02:7B:86:60:1E:FA:88:4D:2C
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/5vPCewnhwGfommcCe4ZgHvqITSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:17c0:8743::/48
2a0e:f600::/48
2a0f:1581:100::/48
2a0f:3046:85::/48
2a0f:3d80:49ff::/48
2a0f:df45:25b::/48
2a0f:df45:fe5e::/48
2a0f:e202:100::/48
2a0f:e7c3:1::/48
2a0f:ea43:1::/48
2a13:c900:fd1a::/48
2a13:e107:3d7::/48
Signature Algorithm: sha256WithRSAEncryption
cc:d4:a0:79:f7:05:2e:ce:46:59:ac:4f:1b:25:75:fa:5d:fe:
cc:89:5b:50:22:ff:59:09:95:9f:cf:1a:60:3e:4f:dc:09:10:
24:8b:d1:e7:69:2f:9a:b5:a8:c5:6a:d6:94:50:49:2b:e8:63:
d7:db:d4:84:5a:10:bd:8d:c5:e2:93:54:af:92:73:9d:21:a8:
23:f1:ab:24:4a:a8:d3:97:29:fd:eb:ea:7d:84:0d:c2:67:cc:
5e:91:c4:ed:e3:e3:72:69:cc:0b:5c:77:94:d5:fd:4c:2d:20:
fb:c9:8d:a9:8d:c9:7e:47:09:90:02:80:e8:1c:87:2e:66:d5:
4a:f1:9f:1b:f9:d1:c7:a7:3c:91:db:67:a4:f8:f4:a9:06:6c:
7c:44:a2:83:bb:e2:58:ab:79:4b:84:76:ba:4a:ee:cd:9f:e1:
4e:09:bb:a3:55:07:9d:ac:0e:9e:a7:c1:42:12:6b:89:56:ec:
50:54:8a:aa:70:0c:7b:4f:8f:e1:88:ed:f2:64:c6:c6:d6:d1:
18:8d:df:7b:97:e3:ad:e6:1f:8d:df:77:1a:2f:96:90:df:0e:
f1:aa:43:ae:a2:46:de:bd:1d:b3:77:fa:0f:2c:96:c8:38:08:
f7:a2:11:c7:80:0e:a0:f8:b3:57:2f:f4:84:d2:49:44:8b:5b:
92:c0:00:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 23:43:37 2025 by rpki-client