Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/b7S_E9etHzpwVevJ9pxVnr3JclU.roa
File: b7S_E9etHzpwVevJ9pxVnr3JclU.roa (raw, json)
Hash identifier: Q24B6dBK6RoTm2WSHKcR6WZsizCRcMyNex3yLaHDK0s=
Subject key identifier: 6F:B4:BF:13:D7:AD:1F:3A:70:55:EB:C9:F6:9C:55:9E:BD:C9:72:55
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0196816A50AAB7502CEC2D894FC80CCDD6CC
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/b7S_E9etHzpwVevJ9pxVnr3JclU.roa
Signing time: Tue 29 Apr 2025 11:59:10 +0000
ROA not before: Tue 29 Apr 2025 11:59:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201207
IP address blocks: 2a13:b4c7::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 08 May 2025 20:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:6a:50:aa:b7:50:2c:ec:2d:89:4f:c8:0c:cd:d6:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Apr 29 11:59:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6fb4bf13d7ad1f3a7055ebc9f69c559ebdc97255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a4:41:8c:a5:de:50:1f:35:e5:bd:26:4d:1d:
b0:1d:48:7f:b8:3e:95:cb:da:e1:ad:85:88:fb:af:
64:6d:b8:67:d7:e5:37:12:ea:cf:f7:4f:a2:b6:78:
fb:f7:c4:22:47:7d:a3:fc:bc:1c:ba:8d:d5:33:74:
5b:40:f1:fc:f7:79:4e:a5:4f:19:68:bd:df:40:3e:
e1:09:e4:66:d2:80:08:d6:93:95:a4:45:b9:f1:43:
9a:65:81:fb:75:d3:b9:ad:a2:30:78:5b:b6:de:89:
45:30:be:84:02:98:5b:8a:1f:c7:17:b4:fa:5d:3f:
27:bc:51:43:9c:6c:54:5c:1e:a5:1d:6f:af:7d:d5:
f7:d0:8a:a4:e4:cc:85:cd:52:4f:84:48:41:69:a6:
72:f3:22:f0:8a:7f:b0:7a:df:74:8f:d2:ad:9f:17:
b6:88:f9:3a:31:a2:7d:c4:7f:95:6d:60:3f:a1:15:
79:8b:ab:84:cf:d7:17:29:67:78:a0:16:95:f2:3e:
b6:29:ee:78:f1:0b:66:5b:33:f9:6e:a0:9f:ab:91:
a5:97:e7:e3:53:8a:d4:ab:39:5f:0e:3b:91:4b:14:
5a:16:a5:ec:95:ec:16:07:7d:ab:fb:9a:f9:99:53:
d8:48:a7:c6:6a:c4:01:22:66:df:ce:9a:a1:c6:3e:
c2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B4:BF:13:D7:AD:1F:3A:70:55:EB:C9:F6:9C:55:9E:BD:C9:72:55
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/b7S_E9etHzpwVevJ9pxVnr3JclU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b4c7::/32
Signature Algorithm: sha256WithRSAEncryption
26:8c:56:2f:b7:a7:0c:86:f0:e4:8b:8f:eb:c2:c4:b2:19:e1:
a4:93:ca:22:d7:79:19:c9:95:cb:4c:0a:9a:d0:5d:e3:19:a8:
bc:fb:9c:e9:d6:dc:5f:c8:39:32:c1:1d:41:86:2e:d4:ea:ec:
81:c0:d0:bc:b7:89:ac:d5:55:85:3c:10:bb:09:d8:af:65:17:
c1:e6:18:7d:51:fd:fd:a3:33:e8:5f:e3:1d:1f:50:de:0b:e0:
50:8f:94:88:24:e9:e2:fd:61:08:53:a9:24:24:17:b2:d4:7e:
2f:4f:bd:44:38:8a:87:bc:e4:7e:18:6d:46:05:c6:9f:2b:3d:
c2:99:bf:71:3a:f0:16:6d:87:f3:c8:1a:cd:d7:53:a6:0c:19:
94:51:6a:fd:d2:95:16:02:06:69:41:28:28:68:8c:09:59:a6:
0b:53:ba:5f:9c:49:1e:44:85:41:91:be:ea:a1:c1:0c:33:6d:
ef:76:81:ea:73:b4:fe:dc:70:05:8e:c5:01:89:c1:07:80:58:
b0:86:e6:d4:b0:e5:bc:ef:93:45:a6:9d:6a:2e:a3:45:73:d6:
a0:19:41:47:db:82:83:46:ae:18:0f:bd:b1:36:5e:be:36:f6:
5e:ad:89:60:fa:c8:ce:0b:c2:02:71:f8:8e:17:2b:a5:c3:f9:
07:30:92:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:42:56 2025 by rpki-client