Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/KSVVDSzhYmsRubRyXxwKRa-qEuE.roa
File: KSVVDSzhYmsRubRyXxwKRa-qEuE.roa (raw, json)
Hash identifier: ppAu0k3TW5M8F+84I/G5aUr9rX60WKGHkYuha4AUFU4=
Subject key identifier: 29:25:55:0D:2C:E1:62:6B:11:B9:B4:72:5F:1C:0A:45:AF:AA:12:E1
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 01968A87151FE8785F223FDD0F8C6F12F7FA
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/KSVVDSzhYmsRubRyXxwKRa-qEuE.roa
Signing time: Thu 01 May 2025 06:27:10 +0000
ROA not before: Thu 01 May 2025 06:27:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200216
IP address blocks: 2a13:c244:8000::/33 maxlen: 33
Validation: Failed, certificate revoked on Thu 08 May 2025 20:25:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:87:15:1f:e8:78:5f:22:3f:dd:0f:8c:6f:12:f7:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: May 1 06:27:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2925550d2ce1626b11b9b4725f1c0a45afaa12e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5e:67:5d:a4:21:31:1a:22:39:3d:6a:c9:39:
dd:40:8c:f0:24:28:d9:16:e6:40:be:f1:8f:a1:a8:
9d:20:8f:95:9b:82:0f:82:d3:ff:ca:41:a8:41:e3:
97:0e:46:68:e6:16:d2:87:83:72:bd:b4:d9:b9:6e:
08:70:c5:61:c1:df:b8:ce:84:dd:9b:7a:68:20:37:
d6:9d:7e:7e:2d:00:85:61:1b:54:c2:5c:b9:36:b7:
9d:28:6b:d3:c4:c9:34:07:b4:64:58:d7:dd:d4:cc:
6b:e2:31:ad:7e:61:a6:d0:0a:ea:78:42:4a:54:f9:
72:49:e9:72:00:ce:3a:d9:46:3a:c3:b2:b9:f3:ec:
fc:3a:aa:f7:28:9d:fe:dd:85:dd:7b:f8:16:67:8c:
e4:16:e8:4a:04:a5:0a:4e:bb:ea:67:21:3f:63:c3:
a9:76:49:7a:0c:f6:9c:59:a2:08:a7:5b:b9:8a:e4:
ba:1f:47:2d:77:de:3a:93:c3:7e:60:87:d0:a0:36:
aa:ad:4b:33:3b:d8:a2:2e:63:1a:e4:0e:de:6a:78:
cf:77:a4:46:9b:90:24:ef:91:1e:30:d5:25:5c:61:
76:85:4e:1a:57:92:0d:df:77:a2:ca:47:08:6c:21:
5c:a2:07:50:39:23:80:a3:62:76:eb:be:21:0a:4c:
9a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:25:55:0D:2C:E1:62:6B:11:B9:B4:72:5F:1C:0A:45:AF:AA:12:E1
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/KSVVDSzhYmsRubRyXxwKRa-qEuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c244:8000::/33
Signature Algorithm: sha256WithRSAEncryption
bc:6d:a2:59:be:c7:c5:33:03:73:b0:57:6b:68:28:9e:b4:96:
9c:f2:3b:29:2f:05:b0:cb:93:b4:83:43:10:cf:ce:fa:86:cb:
5f:50:50:fd:67:1b:d4:c1:4b:f0:45:b6:50:7b:1e:e3:e9:58:
c5:4a:3a:14:05:16:92:b8:31:ac:7d:f8:35:0c:1a:ef:4e:19:
32:8f:97:62:05:70:0d:4f:38:88:67:16:bb:05:4b:26:24:f1:
d0:f4:0e:78:be:53:b3:d3:f1:f7:2f:e4:80:00:37:75:ac:18:
e8:32:20:e2:c2:bd:90:a6:38:02:91:b2:a6:63:a5:bc:2d:0f:
cf:11:df:6b:1a:93:49:6a:70:da:65:b5:45:de:0e:8f:48:1c:
70:58:d2:46:ee:36:ae:a9:6d:98:0c:5a:43:e8:c0:69:4c:89:
6b:38:3d:f1:11:33:08:71:04:63:93:98:aa:67:7f:8c:4e:b0:
78:98:11:6f:06:45:50:bf:a4:a7:df:11:60:73:1f:8f:4d:09:
e7:c0:84:14:23:b6:7f:67:e4:bd:ac:6d:d1:9f:36:09:c5:66:
c7:79:6f:36:19:71:cc:fc:09:4a:b5:d6:e8:43:11:1b:af:98:
8d:86:a6:58:51:f0:5b:98:91:0b:ff:86:f7:38:18:fb:98:07:
76:f5:51:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:48:47 2025 by rpki-client