Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/Tba3xpu8Ko_RPNsyGTrKDpBIQ_4.roa
File: Tba3xpu8Ko_RPNsyGTrKDpBIQ_4.roa (raw, json)
Hash identifier: 90IkLQsCRrYtka6S8zyN0w7Q1FYhcRa9YMIWc3m62Nk=
Subject key identifier: 4D:B6:B7:C6:9B:BC:2A:8F:D1:3C:DB:32:19:3A:CA:0E:90:48:43:FE
Certificate issuer: /CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Certificate serial: 019769D94B917F03F0BF349E93ACDE81D33A
Authority key identifier: 4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/Tba3xpu8Ko_RPNsyGTrKDpBIQ_4.roa
Signing time: Fri 13 Jun 2025 15:12:17 +0000
ROA not before: Fri 13 Jun 2025 15:12:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:197:6851:789c/128 maxlen: 128
Validation: Failed, certificate revoked on Fri 13 Jun 2025 16:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:d9:4b:91:7f:03:f0:bf:34:9e:93:ac:de:81:d3:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Validity
Not Before: Jun 13 15:12:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4db6b7c69bbc2a8fd13cdb32193aca0e904843fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:dc:29:aa:4d:4a:4a:7d:e7:cb:f8:46:95:e7:
41:68:92:c4:5e:fc:5a:87:82:57:5f:97:bc:ab:17:
f8:b8:36:63:5c:12:91:1d:04:9f:ce:8f:ff:05:98:
ec:16:2e:07:11:02:1c:46:53:ae:bc:a2:0f:eb:a3:
73:d2:ec:df:16:d2:69:7a:cb:3a:3d:65:1f:76:97:
e7:1b:09:18:50:6b:1e:00:b5:b1:9d:db:c6:96:7f:
c3:e1:6a:1d:c4:e0:67:e8:a7:ba:2c:5a:52:b5:67:
47:73:13:f3:bd:15:92:ab:b6:17:6d:f7:fc:5d:c6:
57:3b:13:98:50:20:a6:7e:71:e0:5a:e6:30:68:c7:
65:25:95:7f:51:cd:91:d7:0e:9b:6c:a4:38:00:dc:
ee:4b:19:3f:3f:5c:0d:72:5a:4f:0f:b6:75:d3:43:
b6:57:95:a1:69:de:75:23:6a:8d:3b:f7:9f:55:92:
db:64:d9:6d:f3:aa:e0:1e:28:0c:d8:fd:b5:09:c5:
1d:9a:fa:ad:cc:dc:25:f2:bb:76:06:7a:80:5a:a0:
26:8b:da:81:2d:10:c3:b7:15:32:eb:1f:3b:5e:17:
df:03:a8:52:1c:b0:5f:44:30:5e:55:25:dd:a2:be:
9a:91:18:4d:ed:8c:41:5e:69:3d:ab:a5:61:d7:9d:
df:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B6:B7:C6:9B:BC:2A:8F:D1:3C:DB:32:19:3A:CA:0E:90:48:43:FE
X509v3 Authority Key Identifier:
keyid:4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/Tba3xpu8Ko_RPNsyGTrKDpBIQ_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ThPQwKcD4JzaZMErCN2it0mgQpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:197:6851:789c/128
Signature Algorithm: sha256WithRSAEncryption
82:4a:ba:db:26:e5:20:79:d4:25:f3:63:16:1d:e2:8c:24:8e:
f2:90:0d:1a:42:6f:97:ea:ab:2e:98:5a:59:2b:a5:2b:9a:78:
0d:f2:d6:18:be:a0:23:94:a0:f2:0c:46:2e:d9:59:97:d7:93:
23:9b:bb:85:64:38:e9:a3:04:07:30:96:a2:93:04:37:b4:18:
0d:ba:4f:4c:7e:45:b8:45:f9:4a:c7:aa:8c:06:93:3a:ed:79:
31:4b:88:2f:a9:21:3e:e0:18:17:b1:f5:5c:b9:cc:f3:d0:8c:
c6:d9:df:fa:bd:23:08:bf:a0:2a:7d:17:64:5b:d1:af:6d:13:
ab:a5:b7:e6:a8:15:fa:40:e0:28:09:d0:e8:17:33:f5:c0:40:
e6:86:23:02:a8:c0:7e:24:fa:66:78:56:b8:87:43:e2:97:75:
c1:5e:9a:97:57:fa:51:73:e2:29:31:77:b2:47:b2:e8:22:12:
7f:d1:38:74:c7:96:e5:34:b7:81:df:cf:c2:b5:04:02:98:57:
b5:ef:dd:ee:29:51:2d:70:b2:99:9d:85:6f:b0:5d:4d:0b:ff:
59:ae:4d:af:6c:81:72:57:5b:51:db:0d:4b:d6:1e:e9:1c:16:
90:b1:98:04:c7:b9:1d:4d:e6:12:dc:22:06:f0:ca:33:d9:a4:
da:01:24:78
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZdp2UuRfwPwvzSek6zegdM6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlMTNkMGMwYTcwM2UwOWNkYTY0YzEyYjA4ZGRhMmI3NDlh
MDQyOWMwHhcNMjUwNjEzMTUxMjE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGI2YjdjNjliYmMyYThmZDEzY2RiMzIxOTNhY2EwZTkwNDg0M2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdwpqk1KSn3ny/hGledBaJLEXvxa
h4JXX5e8qxf4uDZjXBKRHQSfzo//BZjsFi4HEQIcRlOuvKIP66Nz0uzfFtJpess6
PWUfdpfnGwkYUGseALWxndvGln/D4WodxOBn6Ke6LFpStWdHcxPzvRWSq7YXbff8
XcZXOxOYUCCmfnHgWuYwaMdlJZV/Uc2R1w6bbKQ4ANzuSxk/P1wNclpPD7Z100O2
V5Whad51I2qNO/efVZLbZNlt86rgHigM2P21CcUdmvqtzNwl8rt2BnqAWqAmi9qB
LRDDtxUy6x87XhffA6hSHLBfRDBeVSXdor6akRhN7YxBXmk9q6Vh153ftQIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFE22t8abvCqP0TzbMhk6yg6QSEP+MB8GA1UdIwQY
MBaAFE4T0MCnA+Cc2mTBKwjdordJoEKcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGhQUXdLY0Q0SnphWk1FckNOMml0MG1nUXB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9hZTA0OWEtMDc4Yi00MmVkLWEyOGYt
NmFhNDQzNTI4Y2U1LzEvVGJhM3hwdThLb19SUE5zeUdUcktEcEJJUV80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9hZTA0OWEtMDc4Yi00MmVkLWEyOGYtNmFhNDQzNTI4Y2U1
LzEvVGhQUXdLY0Q0SnphWk1FckNOMml0MG1nUXB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGXaFF4nDANBgkqhkiG9w0BAQsFAAOCAQEAgkq62yblIHnUJfNjFh3ijCSO
8pANGkJvl+qrLphaWSulK5p4DfLWGL6gI5Sg8gxGLtlZl9eTI5u7hWQ46aMEBzCW
opMEN7QYDbpPTH5FuEX5SseqjAaTOu15MUuIL6khPuAYF7H1XLnM89CMxtnf+r0j
CL+gKn0XZFvRr20Tq6W35qgV+kDgKAnQ6Bcz9cBA5oYjAqjAfiT6ZnhWuIdD4pd1
wV6al1f6UXPiKTF3skey6CISf9E4dMeW5TS3gd/PwrUEAphXte/d7ilRLXCymZ2F
b7BdTQv/Wa5Nr2yBcldbUdsNS9Ye6RwWkLGYBMe5HU3mEtwiBvDKM9mk2gEkeA==
-----END CERTIFICATE-----
Generated at Sun Jun 15 09:15:21 2025 by rpki-client