Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RImVh51vE0nsrQ5EPR_OcYTjMBE.roa
File: RImVh51vE0nsrQ5EPR_OcYTjMBE.roa (raw, json)
Hash identifier: 1Vf+1kTGsyF7hSKFsTmxxDmykOAJzLuXft/NvJn4KBo=
Subject key identifier: 44:89:95:87:9D:6F:13:49:EC:AD:0E:44:3D:1F:CE:71:84:E3:30:11
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019762CCCB530E14E93C16854C6325A93298
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RImVh51vE0nsrQ5EPR_OcYTjMBE.roa
Signing time: Thu 12 Jun 2025 06:21:17 +0000
ROA not before: Thu 12 Jun 2025 06:21:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212477
IP address blocks: 2a0f:3f80::/29 maxlen: 29
2a0f:b400::/29 maxlen: 29
2a10:3240::/29 maxlen: 29
2a10:3840::/29 maxlen: 29
2a10:5c00::/29 maxlen: 29
2a10:7700::/29 maxlen: 29
2a11:5c80::/29 maxlen: 29
2a11:8880::/29 maxlen: 29
2a12:4ac0::/29 maxlen: 29
2a12:dc00::/29 maxlen: 29
2a13:7400::/29 maxlen: 29
2a13:9380::/29 maxlen: 29
2a13:9f00::/29 maxlen: 29
2a13:cf00::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 12 Jun 2025 19:08:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:cc:cb:53:0e:14:e9:3c:16:85:4c:63:25:a9:32:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 12 06:21:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=448995879d6f1349ecad0e443d1fce7184e33011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:42:2d:a4:93:d1:f6:69:e9:0c:9a:19:13:0f:
1c:17:10:b0:ee:58:4f:86:47:eb:d7:6e:5b:f2:06:
ed:d8:8c:e8:6b:d8:64:97:ac:fe:d0:51:a9:05:0c:
bf:ae:bc:34:fe:1f:65:a0:fa:2f:24:41:23:19:2a:
2a:5f:b3:ce:89:87:41:74:77:f3:58:b5:40:ae:f4:
bc:0c:96:6d:08:09:52:d9:f6:b6:38:fc:ee:ca:65:
cb:c2:ad:13:ff:61:70:43:9c:ab:34:fa:0a:68:9c:
c2:70:2e:42:14:b8:03:eb:49:34:59:6b:fc:30:d0:
42:86:83:ff:0e:27:e8:19:0d:3b:1e:55:50:cd:6c:
fc:ab:d7:a9:4f:90:a3:d2:9d:9f:de:69:21:54:8e:
33:bd:e9:9c:a0:01:11:24:60:6f:d8:46:08:ed:0b:
0d:d3:09:53:05:b3:b3:73:53:32:8c:64:45:a5:9f:
5e:54:b6:6e:71:fd:9f:2a:76:3f:57:48:a4:9c:cf:
19:c0:b3:4f:ad:96:53:84:29:f6:0b:2c:0f:ec:ac:
77:13:62:36:1e:25:75:2c:a2:5f:21:8f:63:ab:6c:
5e:4f:0d:07:f2:93:f7:f5:13:2f:28:06:5e:c4:62:
07:36:dc:e6:53:b0:c8:da:61:c0:de:f5:0c:62:d2:
52:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:89:95:87:9D:6F:13:49:EC:AD:0E:44:3D:1F:CE:71:84:E3:30:11
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/RImVh51vE0nsrQ5EPR_OcYTjMBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3f80::/29
2a0f:b400::/29
2a10:3240::/29
2a10:3840::/29
2a10:5c00::/29
2a10:7700::/29
2a11:5c80::/29
2a11:8880::/29
2a12:4ac0::/29
2a12:dc00::/29
2a13:7400::/29
2a13:9380::/29
2a13:9f00::/29
2a13:cf00::/29
Signature Algorithm: sha256WithRSAEncryption
4a:13:ee:da:1e:8a:8a:ad:40:c6:e2:66:c9:57:48:bd:09:fc:
d1:e5:3d:13:aa:11:75:9e:66:da:c9:ca:0f:bc:f1:c7:fa:8f:
4d:1f:38:be:20:32:89:2b:c1:83:4b:78:33:2a:1c:dd:d9:5b:
01:47:5a:45:e0:e2:b9:87:1f:4e:cb:75:93:cc:6b:0b:54:f1:
2b:f2:8c:d7:52:df:c0:77:6e:50:77:4f:0a:30:dd:9e:4a:25:
42:67:cd:47:59:27:9c:0a:89:ba:36:10:cf:11:a3:0f:30:ac:
88:3f:8a:a9:25:c2:e8:ed:8c:4c:27:9f:b2:cf:8d:fc:ad:d4:
2c:92:a6:91:20:1b:55:62:43:ac:7e:6d:db:68:1d:7c:3f:37:
b7:4f:98:2a:67:38:62:b1:35:bb:ec:0d:db:eb:6a:12:b5:03:
3b:1e:bb:3f:8c:1f:9e:46:6e:55:5d:e5:50:d5:b5:bd:6d:42:
de:73:22:90:67:24:f6:75:5a:dd:c3:c2:a8:0c:58:06:64:b5:
7f:84:01:46:7d:bb:69:cf:3d:aa:d1:f1:61:b5:10:de:4f:84:
42:0a:90:c7:ba:7c:28:b9:f6:c1:a8:07:67:92:48:61:74:1a:
90:e9:5c:bb:9b:c8:56:5f:54:70:a9:64:70:76:cd:21:ab:0c:
90:8f:43:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 03:01:11 2025 by rpki-client