Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333034333a3a2f34382d3438203d3e20313530383035.roa
File: 326130363a396638313a333034333a3a2f34382d3438203d3e20313530383035.roa (raw, json)
Hash identifier: ulka8vY/qM1y9NVriiOPL1TEiPh20D/jPe2CqKTp52k=
Subject key identifier: 5A:63:CD:4B:28:67:82:88:AB:B8:BE:BF:53:1C:6F:29:93:20:93:4D
Certificate issuer: /CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC
Certificate serial: 6297B77993D285D07588D7FA109BA9D29F33D459
Authority key identifier: 72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC
Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333034333a3a2f34382d3438203d3e20313530383035.roa
Signing time: Fri 05 Jun 2026 20:46:14 +0000
ROA not before: Fri 05 Jun 2026 20:41:14 +0000
ROA not after: Fri 04 Jun 2027 20:46:14 +0000
asID: 150805
IP address blocks: 2a06:9f81:3043::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 13 Jun 2026 15:26:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:97:b7:79:93:d2:85:d0:75:88:d7:fa:10:9b:a9:d2:9f:33:d4:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72D1DDE1B1B045D8BE439DDD101486E6717C93CC
Validity
Not Before: Jun 5 20:41:14 2026 GMT
Not After : Jun 4 20:46:14 2027 GMT
Subject: CN=5A63CD4B28678288ABB8BEBF531C6F299320934D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7c:8c:65:85:4e:46:dc:ad:67:dc:12:4e:6a:
15:8d:c0:5c:81:4d:e3:c9:17:dc:c9:41:12:bb:7b:
e6:af:ee:8f:1e:4f:6a:fb:eb:09:34:83:a3:d6:ec:
77:54:2a:4e:6f:55:3f:a7:28:14:55:c1:88:3d:fd:
f6:84:ea:ab:22:df:30:60:46:5d:9d:77:4b:db:ac:
f6:56:d5:14:4d:8a:75:87:a6:b9:25:8e:82:4e:5e:
76:a0:a6:b3:b2:31:98:a0:7c:3a:de:38:fa:1f:37:
c4:03:ab:fb:01:a5:0a:d1:6e:f3:81:ae:43:ab:63:
fd:f0:ba:b2:1e:87:dd:f1:3a:c6:3c:50:99:80:24:
1f:2a:c2:cb:77:90:a2:23:3b:6f:ba:33:89:a3:56:
c6:f0:6e:16:8d:1a:97:db:9b:d6:ac:ca:21:74:18:
f3:82:a2:f5:f4:18:86:c3:b3:ae:77:8b:a3:f0:72:
41:2e:36:e1:a2:f0:e2:85:dd:19:35:8a:5f:61:f3:
74:ce:a4:c4:2d:29:1f:a5:89:77:0b:0e:bc:82:a1:
d5:a4:66:1b:6d:a0:31:47:90:1c:e4:98:8f:f7:c0:
ba:fe:97:7a:bf:bb:f2:f1:88:cb:69:cf:bc:8b:20:
35:9f:67:24:5d:ec:70:aa:3b:37:73:92:3b:f3:e4:
a8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:63:CD:4B:28:67:82:88:AB:B8:BE:BF:53:1C:6F:29:93:20:93:4D
X509v3 Authority Key Identifier:
keyid:72:D1:DD:E1:B1:B0:45:D8:BE:43:9D:DD:10:14:86:E6:71:7C:93:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.crl
Authority Information Access:
CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/72D1DDE1B1B045D8BE439DDD101486E6717C93CC.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d64ac941-5a7c-42cf-b64b-0b288f1887f2/1/326130363a396638313a333034333a3a2f34382d3438203d3e20313530383035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9f81:3043::/48
Signature Algorithm: sha256WithRSAEncryption
46:f8:d1:50:20:20:67:92:1b:95:71:1d:9c:66:66:de:b9:41:
de:ca:82:66:4f:67:63:7c:f6:cc:36:63:5e:91:39:1f:23:e9:
7e:5b:a8:ba:71:58:c4:6c:8d:95:bb:8e:55:42:51:92:ce:2e:
92:34:74:53:5a:3b:92:13:2b:6f:8a:76:86:8c:c4:07:60:05:
d8:05:35:67:64:39:b5:23:4d:fb:18:d1:0f:92:e5:7d:d4:a3:
53:61:80:3a:de:8d:80:23:5c:37:b7:e7:16:2b:21:d7:ce:07:
76:e4:28:48:97:09:dd:e5:c4:5c:d7:aa:e3:aa:47:8d:6f:f5:
b5:fa:ba:62:d5:62:06:75:3b:3e:41:fd:93:4c:f2:ba:be:45:
fe:40:19:0c:8a:2e:08:26:10:69:3b:2b:92:54:6c:7c:a0:dc:
10:fa:ef:8b:26:18:f7:44:11:dc:9b:a0:be:3e:2d:40:61:df:
9b:c3:d4:f5:a1:60:e8:02:f4:c0:de:91:f3:42:60:f7:a5:a9:
48:90:32:f5:83:30:85:0e:6c:c7:48:37:bd:93:be:ab:ad:ec:
15:66:ff:e4:38:8a:92:b7:77:4c:11:a2:7a:91:5a:3b:ae:75:
fa:4e:98:65:23:92:88:1a:84:a8:ab:4c:50:9f:6c:3f:99:ed:
4c:a2:5d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:31:03 2026 by rpki-client