Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e69yRF9jq0kvATS93UMuU5k5MTM.roa
File: e69yRF9jq0kvATS93UMuU5k5MTM.roa (raw, json)
Hash identifier: KVuts8b6pLhMq8tSReMcp0sFF3h2CtSVlkwmP/Jy2SU=
Subject key identifier: 7B:AF:72:44:5F:63:AB:49:2F:01:34:BD:DD:43:2E:53:99:39:31:33
Certificate issuer: /CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f
Certificate serial: 019687D699FC3F898A2D4A8FA338103F1038
Authority key identifier: 7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e69yRF9jq0kvATS93UMuU5k5MTM.roa
Signing time: Wed 30 Apr 2025 17:55:10 +0000
ROA not before: Wed 30 Apr 2025 17:55:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204490
IP address blocks: 2a11:3d06::/32 maxlen: 32
2a11:d702::/32 maxlen: 32
2a12:41c5::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 15 May 2025 17:59:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:d6:99:fc:3f:89:8a:2d:4a:8f:a3:38:10:3f:10:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b9447fe9a4acc7d6ff72d6c798d43d66cd50c3f
Validity
Not Before: Apr 30 17:55:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7baf72445f63ab492f0134bddd432e5399393133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:31:ed:f2:90:de:f0:b9:54:9c:2e:84:18:f1:
d7:7e:4e:97:11:d1:15:8a:e4:9d:18:6c:ca:49:af:
fe:8d:7c:8a:ca:f9:2f:92:31:6b:44:3a:52:34:a1:
5b:07:21:e7:8e:cb:be:72:0f:ee:bd:4c:c1:de:9d:
82:88:f9:2d:b1:74:9f:4f:1f:db:07:13:3b:01:b9:
bd:12:b4:71:e1:a3:b1:62:d6:26:37:bf:45:e1:96:
27:b5:79:17:66:6a:25:31:54:89:8c:6c:ae:63:d8:
a7:a4:5b:7f:4d:4c:0b:55:48:fd:54:e0:a3:fa:4f:
e2:e1:c9:b0:f3:e2:29:20:da:7a:e6:04:b2:21:0d:
c4:36:b5:bc:7f:7b:59:03:02:95:e8:33:ea:4b:33:
a5:1b:6e:c7:94:70:b7:25:e6:8d:6f:9f:d7:a5:b5:
76:64:ad:44:cf:14:93:0a:43:74:ff:40:47:34:d0:
48:23:72:91:54:08:92:b9:a5:4f:70:9f:4f:9a:72:
5e:eb:45:92:4d:c7:fe:87:64:e5:c8:16:7a:76:07:
40:63:39:4f:8c:00:da:17:3f:ba:aa:f2:d4:ae:21:
94:62:f5:93:25:41:a9:e5:b2:69:49:4b:da:d9:af:
3c:20:7d:c2:7b:5c:0d:0b:7f:74:6e:bf:15:81:77:
e5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AF:72:44:5F:63:AB:49:2F:01:34:BD:DD:43:2E:53:99:39:31:33
X509v3 Authority Key Identifier:
keyid:7B:94:47:FE:9A:4A:CC:7D:6F:F7:2D:6C:79:8D:43:D6:6C:D5:0C:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5RH_ppKzH1v9y1seY1D1mzVDD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e69yRF9jq0kvATS93UMuU5k5MTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/ac24df-09d6-4457-9d2e-9fceb45d6fdb/1/e5RH_ppKzH1v9y1seY1D1mzVDD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:3d06::/32
2a11:d702::/32
2a12:41c5::/32
Signature Algorithm: sha256WithRSAEncryption
48:54:4e:6d:66:e8:fc:29:75:dd:41:13:26:55:ec:90:65:92:
00:07:32:9b:2e:9d:a4:fb:97:13:87:84:13:7d:74:d1:01:53:
62:84:00:e7:6a:1f:19:a3:50:5a:09:64:15:5c:18:63:74:9e:
60:58:12:3c:5e:f7:a8:2d:f6:6e:ea:c5:22:a3:67:4e:2d:9d:
e6:6e:92:29:ed:48:ab:9e:16:30:c3:f5:10:30:a5:ab:84:ba:
08:bf:c9:f4:fa:e6:14:47:84:ba:a3:e3:36:2d:64:d8:00:d4:
ab:3e:46:ba:d3:d3:b5:a9:eb:92:7f:3a:d2:32:8a:d7:1d:b3:
43:37:c6:8e:17:45:59:ff:55:d0:d5:ec:b5:bc:cf:1f:87:cc:
a7:8b:63:e2:37:a1:eb:76:2b:64:40:ab:aa:b5:58:03:ab:ea:
f6:94:a8:62:4a:ef:7b:7e:7f:5e:af:75:97:b3:31:e3:e4:62:
83:33:b1:30:df:80:f6:8c:aa:bf:36:08:1c:7f:39:3c:31:ea:
9c:2a:6f:9f:62:3a:87:c8:b7:e7:58:a5:0e:39:52:8f:60:b3:
cd:bd:b5:85:6b:ec:00:ab:e5:ec:5f:5c:ed:e4:4c:9e:8d:f1:
52:87:a7:dc:2c:b9:ac:9d:0e:b5:26:46:fd:7a:10:f8:fb:d1:
6b:6b:f8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 06:10:12 2025 by rpki-client