Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7ZGRDZoueq0WdTqhTgZTPl2-yVc.roa
File: 7ZGRDZoueq0WdTqhTgZTPl2-yVc.roa (raw, json)
Hash identifier: kxS8+iN7BSfqSA8NPJczPBljfuK7ZD9BjEbNPqg/KmE=
Subject key identifier: ED:91:91:0D:9A:2E:7A:AD:16:75:3A:A1:4E:06:53:3E:5D:BE:C9:57
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01983C497BF5AC6D7B8BE53B1A66BFF4FD73
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7ZGRDZoueq0WdTqhTgZTPl2-yVc.roa
Signing time: Thu 24 Jul 2025 11:55:05 +0000
ROA not before: Thu 24 Jul 2025 11:55:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 84.21.188.0/24 maxlen: 24
2a06:a600::/29 maxlen: 29
2a06:b5c0::/29 maxlen: 29
2a06:bf40::/29 maxlen: 29
2a0e:1a84::/32 maxlen: 32
2a0e:f600:5f::/48 maxlen: 48
2a0f:1e84:20::/48 maxlen: 48
2a0f:7d00:1::/48 maxlen: 48
2a0f:bc00:a1c4::/48 maxlen: 48
2a0f:e1c0:37a::/48 maxlen: 48
2a13:2b40::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 04 Aug 2025 16:03:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:3c:49:7b:f5:ac:6d:7b:8b:e5:3b:1a:66:bf:f4:fd:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jul 24 11:55:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed91910d9a2e7aad16753aa14e06533e5dbec957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:25:4a:0c:02:ad:4e:4d:c0:12:44:63:6d:cb:
55:46:c9:10:4c:ea:4a:7c:dd:b7:a1:ae:aa:1a:81:
f6:d5:da:b5:4e:4d:fe:fa:83:0b:fd:d4:cd:51:d2:
9a:2f:92:6a:f8:84:ef:90:81:f8:db:37:84:1a:96:
c3:9a:48:1b:6d:09:d3:01:f6:58:3f:ec:db:d5:87:
c3:51:52:bc:89:1c:2a:98:fe:ad:3f:36:a2:6f:2c:
8d:b9:d7:eb:91:c9:65:d7:b8:3a:44:21:5e:8d:b0:
05:e8:d9:0b:c0:d5:20:13:7f:f0:b3:bd:78:f1:5f:
62:c8:38:be:4b:59:e2:df:cf:c2:4a:61:e3:d6:a6:
91:03:1a:73:a6:b5:d5:c2:5b:80:be:e5:b0:41:f6:
29:28:51:fc:5b:4e:3a:5a:48:1c:8a:33:1f:a8:11:
71:8f:84:f6:78:39:d3:ce:30:8e:00:f8:0b:7f:87:
cc:98:87:db:d6:f7:58:71:2b:d7:7e:6d:d5:bc:e0:
a5:d6:19:6a:a6:43:59:23:e9:6f:35:ee:cc:10:c3:
05:26:64:fe:4e:4a:86:08:53:74:6c:cc:64:cb:83:
5d:25:6c:4e:02:b0:6f:29:47:97:00:d3:b0:89:f0:
aa:ac:4a:eb:9a:1c:58:77:98:44:19:32:13:6e:d8:
f7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:91:91:0D:9A:2E:7A:AD:16:75:3A:A1:4E:06:53:3E:5D:BE:C9:57
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7ZGRDZoueq0WdTqhTgZTPl2-yVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.21.188.0/24
IPv6:
2a06:a600::/29
2a06:b5c0::/29
2a06:bf40::/29
2a0e:1a84::/32
2a0e:f600:5f::/48
2a0f:1e84:20::/48
2a0f:7d00:1::/48
2a0f:bc00:a1c4::/48
2a0f:e1c0:37a::/48
2a13:2b40::/29
Signature Algorithm: sha256WithRSAEncryption
70:f6:62:15:c5:b5:c9:63:0e:7c:69:a6:1e:df:8d:1f:53:d2:
ef:c0:38:47:96:b8:0b:e6:6b:7b:ea:e5:c3:31:f4:21:91:ca:
88:3b:27:c6:93:02:0a:24:c4:63:73:19:18:41:11:eb:57:96:
20:f3:22:45:3e:67:2c:6b:8f:6b:86:55:67:ed:35:f5:ff:41:
5d:24:7e:b0:0a:49:35:1e:e5:90:b5:8b:70:30:f7:f1:c4:bb:
b4:2b:bd:3f:07:1f:c8:bb:06:c2:22:1f:7a:60:9a:56:a0:5b:
5c:9a:77:91:e3:9f:9a:a8:06:d3:02:d7:c1:99:be:ad:e2:57:
89:c8:97:8e:d9:f2:b4:43:2c:d6:3e:ed:b0:29:39:67:ec:32:
de:e4:c9:5d:21:68:cb:0b:ac:19:ff:a4:9a:38:b4:9e:12:7a:
eb:b7:7e:8e:ee:f5:54:35:a0:86:f1:f9:7c:1b:33:0c:72:95:
46:3c:a0:ad:97:9d:2c:b2:1c:5f:3e:29:8b:5b:98:3b:35:82:
a3:96:ed:ce:de:bd:16:f5:c0:38:64:8b:95:af:2f:52:29:39:
2b:43:8d:ae:6f:3a:fe:b2:e1:ca:fb:54:03:8b:40:17:e4:3d:
38:82:79:f3:f7:52:df:65:24:54:3c:6d:a7:ae:fb:4b:a2:db:
00:da:d6:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 11:17:02 2025 by rpki-client