Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/6ms9g82p-0zeKgDhrit7XPU7F3Q.roa
File: 6ms9g82p-0zeKgDhrit7XPU7F3Q.roa (raw, json)
Hash identifier: fjuPog2OaZqO/wSM2s6iOZAaI2Rk2cY5+1Fh9M0hG+U=
Subject key identifier: EA:6B:3D:83:CD:A9:FB:4C:DE:2A:00:E1:AE:2B:7B:5C:F5:3B:17:74
Certificate issuer: /CN=bbf98f8a44fd60eef6b749d214e56c811897660c
Certificate serial: 01968FD12578C96E9A7140ABE62584AEA632
Authority key identifier: BB:F9:8F:8A:44:FD:60:EE:F6:B7:49:D2:14:E5:6C:81:18:97:66:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/6ms9g82p-0zeKgDhrit7XPU7F3Q.roa
Signing time: Fri 02 May 2025 07:06:10 +0000
ROA not before: Fri 02 May 2025 07:06:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 2001:67c:24b4::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 09 May 2025 10:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:d1:25:78:c9:6e:9a:71:40:ab:e6:25:84:ae:a6:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbf98f8a44fd60eef6b749d214e56c811897660c
Validity
Not Before: May 2 07:06:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ea6b3d83cda9fb4cde2a00e1ae2b7b5cf53b1774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a0:0c:b2:1c:c5:ef:9b:7b:2d:42:66:dc:3c:
9d:34:04:dc:4c:32:69:a2:a5:9a:11:0d:cb:75:77:
66:9e:7a:43:c7:72:e7:65:45:dc:33:c9:eb:6e:c9:
d6:8f:10:6c:fb:f6:88:26:aa:38:23:b2:60:47:8b:
60:9c:af:f4:f8:bb:4c:bf:51:1c:37:40:27:51:80:
b2:47:82:80:69:33:93:bc:a2:97:09:74:cd:bf:96:
2f:7a:23:0a:3b:92:0d:a7:62:38:03:1b:69:4b:29:
e4:9b:95:77:29:b0:3c:b6:19:05:e0:99:44:a1:0f:
95:a5:4a:04:c4:ea:83:85:8a:27:39:93:f7:22:60:
02:56:8c:f0:a3:59:af:07:dc:4b:76:1c:99:86:05:
da:ed:3a:d5:df:80:3f:b4:1a:9f:82:e0:d1:3f:76:
46:7e:6c:ed:7d:f7:76:42:b3:51:99:dd:b1:88:22:
de:19:f1:45:b4:af:0b:0c:88:4c:3c:14:42:33:12:
d3:0e:dc:2f:fc:1f:22:6d:ab:73:a7:76:eb:0e:67:
4f:5f:90:b4:ae:e0:03:34:bb:d3:7e:e2:56:f8:af:
88:94:d5:25:b6:35:ca:0f:2d:f2:c6:38:74:b7:ef:
38:5e:ed:f6:a1:a3:e1:c3:e2:0b:27:c9:4e:89:f6:
33:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:6B:3D:83:CD:A9:FB:4C:DE:2A:00:E1:AE:2B:7B:5C:F5:3B:17:74
X509v3 Authority Key Identifier:
keyid:BB:F9:8F:8A:44:FD:60:EE:F6:B7:49:D2:14:E5:6C:81:18:97:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/6ms9g82p-0zeKgDhrit7XPU7F3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:24b4::/48
Signature Algorithm: sha256WithRSAEncryption
24:75:2a:53:48:5b:eb:6e:e1:76:7b:5b:8b:27:df:bf:9b:57:
b2:8a:2a:77:f1:bb:1c:25:7a:6c:ec:3d:82:e8:93:65:5e:5d:
bc:53:b2:df:a9:e0:f0:3e:8f:a7:de:b9:8e:0f:23:16:19:bc:
86:af:a2:1b:05:5c:49:94:23:b2:f9:dc:ea:73:bd:4f:4e:e4:
9f:74:e3:6f:be:0e:2f:9f:e8:99:e3:89:71:35:43:94:58:70:
5a:5d:f0:69:80:c7:dd:89:89:61:1d:ee:d5:4c:6c:f6:b1:6c:
59:ba:31:ef:39:0f:a2:32:bd:a8:21:47:e3:4f:e4:9c:4c:de:
25:5b:87:a0:d6:b5:73:6e:5d:26:40:6f:cb:b3:02:20:d9:79:
15:69:48:73:00:1a:a6:61:54:1a:5a:a8:34:f6:af:c2:8a:b6:
9b:16:56:fe:1e:b9:b5:0e:ef:ef:ae:29:46:a3:46:bf:cd:8d:
a3:01:66:c8:6c:71:53:89:fc:07:a8:41:1c:9b:70:9d:7a:eb:
7d:36:94:a0:da:62:2e:a3:5d:40:00:93:3f:fc:2e:e7:da:19:
d8:c4:5d:63:15:32:e9:1d:55:50:63:e7:c8:d2:0b:3b:25:41:
97:1d:42:de:11:83:d4:ee:77:74:8c:ba:6a:b7:d0:0e:0d:26:
81:17:97:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 18:18:53 2025 by rpki-client