Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c230b5-4791-48d0-b887-b34d649cfb7b/1/uEIwnSb-n_c9l_1sCuG6pDgL524.roa
File: uEIwnSb-n_c9l_1sCuG6pDgL524.roa (raw, json)
Hash identifier: S9py/w73HFY6Ob01oO2vMrCRizhnvU8NP/ZgLCJy2L8=
Subject key identifier: B8:42:30:9D:26:FE:9F:F7:3D:97:FD:6C:0A:E1:BA:A4:38:0B:E7:6E
Certificate issuer: /CN=6faf48b02b97dc2d312250aa234083b8c1bb9e81
Certificate serial: 0195E2CE5C56B1A596642A93297795D385F9
Authority key identifier: 6F:AF:48:B0:2B:97:DC:2D:31:22:50:AA:23:40:83:B8:C1:BB:9E:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b69IsCuX3C0xIlCqI0CDuMG7noE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c230b5-4791-48d0-b887-b34d649cfb7b/1/uEIwnSb-n_c9l_1sCuG6pDgL524.roa
Signing time: Sat 29 Mar 2025 16:48:49 +0000
ROA not before: Sat 29 Mar 2025 16:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60223
IP address blocks: 2001:30c0:fffe::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 29 Mar 2025 22:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e2:ce:5c:56:b1:a5:96:64:2a:93:29:77:95:d3:85:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6faf48b02b97dc2d312250aa234083b8c1bb9e81
Validity
Not Before: Mar 29 16:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b842309d26fe9ff73d97fd6c0ae1baa4380be76e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bf:34:c8:8e:70:e9:ae:4a:ec:db:c4:d0:f8:
42:51:cd:d8:fc:8b:69:5e:8d:34:76:bf:85:49:73:
4f:8b:39:a5:c8:4d:50:6d:8e:8f:9c:af:00:64:30:
d2:83:2d:9c:44:39:d2:f4:0a:cd:69:69:54:04:87:
d5:ab:5e:f9:da:45:a8:d4:fa:f4:80:5e:9d:2f:49:
06:c3:b9:18:2c:28:c6:f9:da:b7:45:44:fa:80:1f:
e2:92:8c:9f:a3:24:45:0c:a4:3c:b8:b1:01:9b:31:
fc:4a:43:99:4f:76:3a:87:70:a3:96:09:56:e2:bd:
cd:ff:01:b6:17:73:49:0c:ff:6d:d9:ab:64:25:5e:
e1:af:ef:1a:61:b4:14:a6:24:8d:1c:c6:0a:14:7b:
22:bb:72:c4:e1:5a:89:f8:f2:4c:37:20:a9:23:4f:
82:1f:66:2d:7a:c5:b9:2e:f1:99:95:d1:f4:b9:29:
b4:22:3e:13:de:64:de:00:5d:38:82:9f:81:3e:69:
5d:93:51:3a:26:2a:1c:80:55:17:f9:dd:d8:d3:c9:
24:90:00:7e:fa:6b:3b:41:50:67:3b:e3:4c:b6:9c:
0f:51:a0:70:d6:82:15:33:6c:8b:36:0e:8f:1d:88:
a5:b3:9f:46:1f:9e:ca:ac:56:8f:06:93:5e:74:40:
e5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:42:30:9D:26:FE:9F:F7:3D:97:FD:6C:0A:E1:BA:A4:38:0B:E7:6E
X509v3 Authority Key Identifier:
keyid:6F:AF:48:B0:2B:97:DC:2D:31:22:50:AA:23:40:83:B8:C1:BB:9E:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b69IsCuX3C0xIlCqI0CDuMG7noE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c230b5-4791-48d0-b887-b34d649cfb7b/1/uEIwnSb-n_c9l_1sCuG6pDgL524.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c230b5-4791-48d0-b887-b34d649cfb7b/1/b69IsCuX3C0xIlCqI0CDuMG7noE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:30c0:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
43:00:93:7d:20:95:de:7b:42:6e:39:85:23:ef:18:99:4f:b8:
c3:74:78:28:31:8c:f2:11:35:90:c6:06:0a:6c:5b:5d:5e:85:
73:eb:cb:db:9e:13:ee:a7:4b:95:d9:52:8e:8d:09:e1:63:ca:
c5:d1:37:2a:c5:f1:ad:10:82:e8:4e:c5:5b:14:0c:3a:b5:8f:
86:07:a4:49:52:aa:0d:b8:d1:53:86:00:b9:dd:dc:c7:5b:d7:
57:69:14:a1:6e:1b:25:1e:98:bf:fa:7e:85:7b:28:ed:fd:76:
bb:1e:95:18:85:a4:f9:e3:1c:b0:10:9e:71:5c:c3:79:b4:fa:
0b:95:ed:62:b1:e5:fa:fd:51:07:03:49:f7:e7:d9:e1:95:e3:
3d:e9:07:06:58:59:38:6c:26:4b:a6:6f:72:27:57:67:31:b3:
34:e3:17:12:85:c2:da:5d:94:33:7f:89:3e:fc:a9:72:09:ca:
0e:b7:3d:cc:62:5c:d8:1f:7f:30:7a:02:f2:f4:89:f5:32:72:
0e:34:73:db:85:31:47:37:1a:3e:26:14:df:1a:85:6d:1d:8e:
8f:75:8a:1c:a1:3f:e2:b8:fd:86:20:3c:c8:88:71:df:e0:f0:
ab:61:98:ec:cc:52:fb:65:b6:29:9c:2f:85:2e:d2:27:49:68:
65:ed:30:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:18:28 2025 by rpki-client