Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/GcLuM9P34cq00TA3YlNPRNEKg54.roa
File: GcLuM9P34cq00TA3YlNPRNEKg54.roa (raw, json)
Hash identifier: PE9n6QWfpuVv43xEM84qmFpDk7optQzES4i4g/IC05Q=
Subject key identifier: 19:C2:EE:33:D3:F7:E1:CA:B4:D1:30:37:62:53:4F:44:D1:0A:83:9E
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019704034F04D1A7DFEFD4F86492C22C9EC0
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/GcLuM9P34cq00TA3YlNPRNEKg54.roa
Signing time: Sat 24 May 2025 20:36:55 +0000
ROA not before: Sat 24 May 2025 20:36:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206623
IP address blocks: 2a05:9a46::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 27 May 2025 09:49:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:04:03:4f:04:d1:a7:df:ef:d4:f8:64:92:c2:2c:9e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: May 24 20:36:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=19c2ee33d3f7e1cab4d1303762534f44d10a839e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cc:40:cd:66:a4:76:0d:55:c1:31:3b:61:b5:
31:c7:59:22:cc:08:0c:3b:3b:af:35:2d:9a:d4:dd:
f1:15:c3:07:ca:27:bc:b4:fd:a4:88:b8:a6:c5:8d:
62:3f:a1:29:91:46:de:e4:0a:7f:21:cd:11:b7:10:
58:03:3f:10:70:73:f9:22:46:90:6e:80:86:ae:21:
6b:5c:36:d7:ea:a4:3f:01:5e:31:a2:90:56:0b:3d:
b6:a2:b6:f3:35:93:b9:40:26:98:8f:c5:1c:9f:81:
e9:2b:7c:98:60:b3:81:46:68:26:4a:0b:75:08:a0:
06:c7:40:15:7c:3d:83:05:51:6b:6f:68:7c:8f:60:
e8:34:a8:2e:72:73:bf:71:7b:f8:61:fa:5d:82:5a:
d2:8f:b0:5b:18:ee:76:a3:8b:13:b0:21:3a:e0:a9:
02:66:fd:46:d2:15:58:d1:93:cb:36:6f:46:9f:c1:
8f:a0:15:7d:4e:c2:3b:32:43:89:bc:fd:ef:a9:55:
40:33:38:e2:f4:8c:f5:14:5d:49:91:97:38:47:ce:
6f:db:e7:0d:fa:94:37:b9:87:66:4b:0f:a2:68:af:
d5:18:32:32:c8:00:2c:83:55:10:e2:e1:0e:76:61:
b1:6b:c0:05:42:e4:63:c1:03:c1:c5:38:a3:6d:aa:
69:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:C2:EE:33:D3:F7:E1:CA:B4:D1:30:37:62:53:4F:44:D1:0A:83:9E
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/GcLuM9P34cq00TA3YlNPRNEKg54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9a46::/32
Signature Algorithm: sha256WithRSAEncryption
d9:d3:68:55:a0:9b:e0:4a:82:d5:6d:8a:71:14:2d:70:f3:a0:
ae:df:44:f1:d3:88:01:fd:a4:db:b5:2f:21:1e:3c:cd:66:7f:
3e:82:85:90:e6:c6:07:82:bb:4e:d0:8b:35:06:70:f9:44:e3:
7a:a3:3d:bd:7b:75:2c:b1:35:c5:b4:e3:7c:f4:57:33:d5:d6:
01:50:29:ef:6b:8b:b1:74:4a:26:2a:f1:4b:fc:ef:4e:01:9f:
9a:1c:b5:ea:c6:07:72:9d:68:6d:0f:b1:89:3e:f9:a3:9e:76:
1f:20:cd:3b:f4:89:dc:ba:7b:89:04:f7:17:4a:e2:be:5c:82:
44:94:57:c3:4a:ed:c5:d9:d3:a9:65:34:2b:ea:6f:97:31:33:
1b:60:ec:bd:9c:44:2e:39:12:eb:fd:21:c5:75:88:89:26:9b:
20:87:98:c8:fb:7c:05:b1:26:ff:68:64:c8:83:3f:02:79:49:
23:82:b0:90:53:3e:82:45:d9:e9:31:a0:c8:7c:fd:eb:ad:d3:
8e:c2:51:fb:a7:9a:2f:6d:18:8c:9d:6a:ad:50:54:cf:b7:ca:
c2:0f:92:f8:56:1f:78:84:f3:b1:14:df:5f:c4:0f:49:8e:37:
59:1a:f1:af:a0:3e:8b:2c:56:7b:16:82:9c:68:cd:82:29:1a:
ed:8e:78:bd
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZcEA08E0aff79T4ZJLCLJ7AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMTQxMTJkMDVlOWQ4NzYxNDlkMjc3OGQ0OGVkYWFhMzI0
ZGIwYTUwHhcNMjUwNTI0MjAzNjU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOWMyZWUzM2QzZjdlMWNhYjRkMTMwMzc2MjUzNGY0NGQxMGE4MzllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsxAzWakdg1VwTE7YbUxx1kizAgM
OzuvNS2a1N3xFcMHyie8tP2kiLimxY1iP6EpkUbe5Ap/Ic0RtxBYAz8QcHP5IkaQ
boCGriFrXDbX6qQ/AV4xopBWCz22orbzNZO5QCaYj8Ucn4HpK3yYYLOBRmgmSgt1
CKAGx0AVfD2DBVFrb2h8j2DoNKgucnO/cXv4YfpdglrSj7BbGO52o4sTsCE64KkC
Zv1G0hVY0ZPLNm9Gn8GPoBV9TsI7MkOJvP3vqVVAMzji9Iz1FF1JkZc4R85v2+cN
+pQ3uYdmSw+iaK/VGDIyyAAsg1UQ4uEOdmGxa8AFQuRjwQPBxTijbappUQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBnC7jPT9+HKtNEwN2JTT0TRCoOeMB8GA1UdIwQY
MBaAFE8UES0F6dh2FJ0neNSO2qoyTbClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUt
YmFmYmRmYzgxMzJhLzEvR2NMdU05UDM0Y3EwMFRBM1lsTlBSTkVLZzU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUtYmFmYmRmYzgxMzJh
LzEvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgWaRjAN
BgkqhkiG9w0BAQsFAAOCAQEA2dNoVaCb4EqC1W2KcRQtcPOgrt9E8dOIAf2k27Uv
IR48zWZ/PoKFkObGB4K7TtCLNQZw+UTjeqM9vXt1LLE1xbTjfPRXM9XWAVAp72uL
sXRKJirxS/zvTgGfmhy16sYHcp1obQ+xiT75o552HyDNO/SJ3Lp7iQT3F0rivlyC
RJRXw0rtxdnTqWU0K+pvlzEzG2DsvZxELjkS6/0hxXWIiSabIIeYyPt8BbEm/2hk
yIM/AnlJI4KwkFM+gkXZ6TGgyHz9663TjsJR+6eaL20YjJ1qrVBUz7fKwg+S+FYf
eITzsRTfX8QPSY43WRrxr6A+iyxWexaCnGjNgika7Y54vQ==
-----END CERTIFICATE-----
Generated at Sun Jun 15 04:29:29 2025 by rpki-client