Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/boYpUJtv94rZBsaf1SG5TOx07cw.roa
File: boYpUJtv94rZBsaf1SG5TOx07cw.roa (raw, json)
Hash identifier: 4PBbyjpv2HDAp52xwqVjqMGdnOKlDtBlZoKfVCKuQaM=
Subject key identifier: 6E:86:29:50:9B:6F:F7:8A:D9:06:C6:9F:D5:21:B9:4C:EC:74:ED:CC
Certificate issuer: /CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Certificate serial: 01976EFEBD37A9F6FB090E203188EDA8791B
Authority key identifier: 4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/boYpUJtv94rZBsaf1SG5TOx07cw.roa
Signing time: Sat 14 Jun 2025 15:11:17 +0000
ROA not before: Sat 14 Jun 2025 15:11:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:197:6851:789c/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 14 Jun 2025 16:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:fe:bd:37:a9:f6:fb:09:0e:20:31:88:ed:a8:79:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Validity
Not Before: Jun 14 15:11:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e8629509b6ff78ad906c69fd521b94cec74edcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f5:fa:4d:e1:30:d3:eb:a1:ab:f9:0a:8c:ec:
d5:4c:52:69:a6:03:3a:d4:e3:85:79:09:38:f4:ff:
c8:d1:89:84:27:9f:36:f2:ec:d7:74:4e:e0:79:00:
f1:be:f6:5d:3d:76:a5:aa:f4:a7:89:1f:c7:14:f5:
a5:18:94:5e:aa:3b:ad:88:9f:4c:c8:41:78:93:39:
fb:aa:eb:1d:81:b0:71:35:f9:64:52:95:3e:b0:36:
02:f1:35:62:ab:f0:0b:f0:06:af:1f:60:bc:a9:6c:
81:76:79:7a:43:eb:ad:9a:b3:7e:5d:fe:20:1f:86:
7e:c3:8f:c0:a5:19:01:8b:bc:49:17:5f:39:48:2a:
ab:48:6d:fc:46:2e:8c:29:aa:4a:1a:7a:62:7b:32:
83:45:9c:c5:0b:f0:b2:87:dd:f2:4c:e9:54:9e:f9:
6a:e1:7a:da:bd:80:59:14:a4:c2:49:c3:5c:3e:e9:
13:73:0a:6d:3e:5a:0f:1a:66:86:0f:08:01:97:40:
a3:ff:ff:0f:4a:32:b3:58:f9:74:8b:52:f2:17:48:
c0:d8:8b:7c:09:20:c1:78:6a:0e:13:92:80:9a:15:
18:97:6b:77:f4:23:63:42:da:95:07:ae:f3:4e:71:
aa:70:2c:15:3a:0a:95:56:6c:cb:44:69:66:eb:0b:
40:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:86:29:50:9B:6F:F7:8A:D9:06:C6:9F:D5:21:B9:4C:EC:74:ED:CC
X509v3 Authority Key Identifier:
keyid:4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/boYpUJtv94rZBsaf1SG5TOx07cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ThPQwKcD4JzaZMErCN2it0mgQpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:197:6851:789c/128
Signature Algorithm: sha256WithRSAEncryption
24:4f:46:0d:48:8e:74:eb:c6:30:90:e2:c5:b9:54:3b:0d:bb:
a3:74:da:a2:7e:1f:43:f3:ab:97:b2:0a:90:a0:78:e6:d1:e2:
88:76:a7:21:30:06:bd:07:47:35:6b:76:1e:8c:a3:88:d3:8f:
65:81:15:8e:1b:3b:1c:c9:56:b3:5e:16:db:3c:0f:68:0a:91:
fa:b3:7e:5e:5a:c2:b5:bb:f5:5e:eb:e2:d4:aa:d3:e0:6f:3a:
83:4c:81:df:11:ba:68:51:55:f4:69:de:3b:14:7c:73:35:a8:
2f:bc:cf:30:ac:8e:b7:75:a4:81:de:70:91:8f:78:0a:e8:8f:
3f:bd:5a:53:6e:4a:ae:2d:f2:0b:69:68:20:71:8d:51:94:f3:
a1:73:69:75:a6:3f:49:a9:c7:a5:af:b2:cb:45:90:59:1f:29:
ae:af:d1:29:38:78:8a:69:e6:dc:99:e5:6f:f3:8a:c5:e1:e7:
32:80:30:35:db:a5:56:2c:9b:8f:08:9d:26:2f:59:25:35:a5:
0c:c1:91:f9:e0:be:0b:3c:2b:87:f3:c2:de:c8:39:27:21:da:
79:b5:8f:5d:d2:a8:f2:0a:2c:ff:99:e3:29:c4:f4:c9:8e:4d:
b0:2d:5a:01:ed:a6:d7:b2:06:a0:33:cc:30:92:12:fa:64:09:
d3:72:29:b2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 15 09:22:55 2025 by rpki-client