Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/7dQpeHX8oJcNe36UxMi4Mi5PHdg.roa
File: 7dQpeHX8oJcNe36UxMi4Mi5PHdg.roa (raw, json)
Hash identifier: A2ri9WkR1iHK45JTUmbyiFz1WXEWTyG1MwgFW52CEqY=
Subject key identifier: ED:D4:29:78:75:FC:A0:97:0D:7B:7E:94:C4:C8:B8:32:2E:4F:1D:D8
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019704034EA0FB2B3C222E6742058780C48E
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/7dQpeHX8oJcNe36UxMi4Mi5PHdg.roa
Signing time: Sat 24 May 2025 20:36:55 +0000
ROA not before: Sat 24 May 2025 20:36:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206582
IP address blocks: 2a05:9a45::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 27 May 2025 09:49:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:04:03:4e:a0:fb:2b:3c:22:2e:67:42:05:87:80:c4:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: May 24 20:36:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=edd4297875fca0970d7b7e94c4c8b8322e4f1dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b1:31:94:ce:ca:ea:3f:a6:0c:96:81:2b:55:
ca:3f:ed:71:7b:d6:37:d4:f6:a1:54:f7:64:9d:a1:
0b:74:9c:54:10:d6:d0:49:5f:c0:98:4e:d5:c6:45:
b9:2b:91:7d:cf:2c:12:f9:3a:30:da:08:8e:2b:31:
0a:9c:79:e3:ee:ce:7c:b9:23:c4:00:79:00:d7:79:
4d:d9:5a:8e:5b:9d:e6:d8:41:8d:de:24:bd:b2:7e:
17:6b:f0:30:74:fb:31:df:66:d4:9e:72:01:ea:94:
21:33:2e:22:af:0f:4b:7e:d4:d4:fa:33:6a:3a:4f:
c1:05:ab:4f:b5:64:a8:f7:87:f7:09:a0:ad:76:f3:
3c:9a:f9:00:71:d9:44:ba:c8:74:b5:fd:de:ac:ab:
77:db:54:71:00:11:78:90:d8:c0:a9:5a:99:07:87:
9f:91:f9:6f:a9:62:13:d4:48:1b:f0:19:03:73:09:
41:fa:3c:cb:a4:6b:25:02:b3:a8:5d:ff:15:df:d9:
8a:25:c8:8d:01:9e:1b:90:9f:5d:ab:e5:3d:d6:fd:
71:33:d1:82:20:63:39:73:c1:cc:85:ee:b2:d2:16:
86:2d:e1:7c:8f:4d:e1:c7:72:de:56:2a:1d:80:d0:
b1:3e:3f:be:e2:6d:25:ac:33:aa:57:27:22:7e:a5:
ef:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D4:29:78:75:FC:A0:97:0D:7B:7E:94:C4:C8:B8:32:2E:4F:1D:D8
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/7dQpeHX8oJcNe36UxMi4Mi5PHdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9a45::/32
Signature Algorithm: sha256WithRSAEncryption
81:2d:27:b2:45:c0:4d:34:88:b2:21:76:9f:04:94:01:da:7d:
70:af:13:eb:4a:e3:8d:eb:9e:b1:4f:96:4a:a7:a6:bf:7f:7a:
13:60:9d:a9:3a:cb:4a:82:25:44:5c:8c:8f:cf:19:ed:b3:b0:
fd:df:0d:44:31:a1:a6:23:09:c8:c2:3f:50:37:73:40:e5:1e:
7c:94:f1:41:16:5b:3e:83:11:f5:96:af:c0:93:cb:c5:c2:26:
d9:ab:8e:4d:d6:54:e8:83:4e:db:64:6e:1c:6b:3f:33:0f:d1:
2a:c1:f4:cd:b6:e1:60:6d:19:4d:97:73:d5:0a:80:ae:ec:d7:
bb:de:b8:42:a6:a1:2a:2e:81:8f:93:6d:c8:bb:3e:c3:b8:60:
be:30:68:d4:a8:a2:a1:3d:86:0a:74:91:68:48:42:48:31:0d:
3a:a5:cf:c0:52:66:cf:e5:b8:b1:1e:da:98:39:d3:37:f3:4c:
c8:fd:a1:c4:6a:d5:90:eb:2f:c0:41:56:ec:88:6d:67:9c:93:
07:20:34:8f:a9:dc:c8:8e:dc:bd:56:78:c0:a5:a9:76:84:b8:
46:26:85:4f:ec:6c:16:7f:ee:09:4b:aa:99:0f:fc:8b:c8:e7:
56:0c:cb:d8:74:0f:e9:16:8c:aa:c6:dc:c5:47:15:c8:d8:94:
97:fd:e3:de
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZcEA06g+ys8Ii5nQgWHgMSOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMTQxMTJkMDVlOWQ4NzYxNDlkMjc3OGQ0OGVkYWFhMzI0
ZGIwYTUwHhcNMjUwNTI0MjAzNjU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZGQ0Mjk3ODc1ZmNhMDk3MGQ3YjdlOTRjNGM4YjgzMjJlNGYxZGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh7ExlM7K6j+mDJaBK1XKP+1xe9Y3
1PahVPdknaELdJxUENbQSV/AmE7VxkW5K5F9zywS+Tow2giOKzEKnHnj7s58uSPE
AHkA13lN2VqOW53m2EGN3iS9sn4Xa/AwdPsx32bUnnIB6pQhMy4irw9LftTU+jNq
Ok/BBatPtWSo94f3CaCtdvM8mvkAcdlEush0tf3erKt321RxABF4kNjAqVqZB4ef
kflvqWIT1Egb8BkDcwlB+jzLpGslArOoXf8V39mKJciNAZ4bkJ9dq+U91v1xM9GC
IGM5c8HMhe6y0haGLeF8j03hx3LeViodgNCxPj++4m0lrDOqVycifqXvQQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFO3UKXh1/KCXDXt+lMTIuDIuTx3YMB8GA1UdIwQY
MBaAFE8UES0F6dh2FJ0neNSO2qoyTbClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUt
YmFmYmRmYzgxMzJhLzEvN2RRcGVIWDhvSmNOZTM2VXhNaTRNaTVQSGRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUtYmFmYmRmYzgxMzJh
LzEvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgWaRTAN
BgkqhkiG9w0BAQsFAAOCAQEAgS0nskXATTSIsiF2nwSUAdp9cK8T60rjjeuesU+W
Sqemv396E2CdqTrLSoIlRFyMj88Z7bOw/d8NRDGhpiMJyMI/UDdzQOUefJTxQRZb
PoMR9ZavwJPLxcIm2auOTdZU6INO22RuHGs/Mw/RKsH0zbbhYG0ZTZdz1QqAruzX
u964QqahKi6Bj5NtyLs+w7hgvjBo1KiioT2GCnSRaEhCSDENOqXPwFJmz+W4sR7a
mDnTN/NMyP2hxGrVkOsvwEFW7IhtZ5yTByA0j6ncyI7cvVZ4wKWpdoS4RiaFT+xs
Fn/uCUuqmQ/8i8jnVgzL2HQP6RaMqsbcxUcVyNiUl/3j3g==
-----END CERTIFICATE-----
Generated at Sun Jun 15 03:42:57 2025 by rpki-client