Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/b02cb6-86c7-4f6d-99d1-90776f84c9b7/1/qihrIWB6DMpkjqBNfpnPEwr4KBA.roa
File: qihrIWB6DMpkjqBNfpnPEwr4KBA.roa (raw, json)
Hash identifier: rF1mOaOguf51Lcbv2/OFOd5nwLYRAOlgwGid8LGkaMY=
Subject key identifier: AA:28:6B:21:60:7A:0C:CA:64:8E:A0:4D:7E:99:CF:13:0A:F8:28:10
Certificate issuer: /CN=f79fcfd2875abdf61e19d3270eafe1effadc6662
Certificate serial: 0197AD83734E8AA9147710B150B3CA68B267
Authority key identifier: F7:9F:CF:D2:87:5A:BD:F6:1E:19:D3:27:0E:AF:E1:EF:FA:DC:66:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/95_P0odavfYeGdMnDq_h7_rcZmI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/b02cb6-86c7-4f6d-99d1-90776f84c9b7/1/qihrIWB6DMpkjqBNfpnPEwr4KBA.roa
Signing time: Thu 26 Jun 2025 18:32:42 +0000
ROA not before: Thu 26 Jun 2025 18:32:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207160
IP address blocks: 2a14:d100::/33 maxlen: 33
Validation: Failed, certificate revoked on Fri 27 Jun 2025 08:16:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ad:83:73:4e:8a:a9:14:77:10:b1:50:b3:ca:68:b2:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f79fcfd2875abdf61e19d3270eafe1effadc6662
Validity
Not Before: Jun 26 18:32:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aa286b21607a0cca648ea04d7e99cf130af82810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c7:36:0d:05:09:27:71:0a:b3:05:33:50:b6:
01:e7:18:b2:14:2e:c3:0f:9e:56:a9:57:e4:93:f0:
d0:62:1e:e7:1c:46:be:99:55:49:39:27:71:fb:ad:
3c:9d:8e:41:a7:eb:26:42:17:77:e2:ca:56:24:8e:
91:fc:1d:3c:79:ab:b8:b0:dc:f6:ef:a1:d4:01:a5:
ae:a5:b1:54:42:68:bc:8a:07:5c:be:3f:b0:48:19:
97:ed:ec:95:83:ff:fa:14:de:14:f1:27:a6:d3:03:
eb:4c:64:4a:a6:ce:c3:52:ba:67:02:2c:a6:5d:f7:
67:7c:be:24:0d:30:a6:d7:c2:5c:67:06:9d:fd:7a:
12:bd:3a:21:cc:a5:b8:11:cd:37:c2:ec:b5:b4:ae:
97:22:51:1b:1a:d6:0c:e5:6b:8b:4f:17:51:7d:76:
ec:2c:9a:49:7a:d4:08:4f:0d:53:ed:4f:ec:9a:df:
04:1f:94:9a:d7:b0:e4:e0:e9:51:76:65:a6:87:af:
c6:35:b5:59:97:de:3e:0e:e7:a7:3a:7f:f6:36:87:
51:ca:68:2a:8f:0c:d0:41:3e:c9:25:cd:58:5c:45:
b0:bb:d0:ff:e9:6b:16:72:2a:82:b2:fc:0f:04:a4:
05:74:a1:04:c5:bc:bd:69:c1:66:71:90:a7:a1:af:
62:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:28:6B:21:60:7A:0C:CA:64:8E:A0:4D:7E:99:CF:13:0A:F8:28:10
X509v3 Authority Key Identifier:
keyid:F7:9F:CF:D2:87:5A:BD:F6:1E:19:D3:27:0E:AF:E1:EF:FA:DC:66:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/95_P0odavfYeGdMnDq_h7_rcZmI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b02cb6-86c7-4f6d-99d1-90776f84c9b7/1/qihrIWB6DMpkjqBNfpnPEwr4KBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/b02cb6-86c7-4f6d-99d1-90776f84c9b7/1/95_P0odavfYeGdMnDq_h7_rcZmI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:d100::/33
Signature Algorithm: sha256WithRSAEncryption
24:b4:8b:9a:f8:13:90:32:12:46:dc:b0:7c:25:f2:f5:78:a1:
f1:10:c6:fa:88:29:e3:4f:d4:7f:ac:20:be:f4:3e:45:81:25:
d6:f4:3d:28:c1:91:2c:6a:f8:6d:a2:b4:8d:69:0f:2a:be:dd:
dc:e7:78:41:44:1b:6e:9c:e2:df:40:12:94:e9:06:5f:d0:d6:
4c:46:2b:3f:6e:6d:82:08:4c:10:97:c4:fa:78:18:7a:e8:10:
cb:9b:da:9c:d4:5a:3a:5f:5b:d8:6f:06:67:40:75:29:ad:b7:
56:09:91:7e:d1:35:a3:41:d0:6c:a7:66:ef:f4:16:7a:74:c2:
4c:fb:bd:3c:ef:2c:a0:5a:6f:c3:d1:5a:40:42:58:bd:17:c6:
44:0a:62:bb:2c:6f:b4:ea:24:ae:f7:21:b1:a3:c5:0c:14:3c:
45:97:74:ea:8d:6a:80:3d:64:ef:72:8d:ec:5e:69:c9:aa:d4:
67:3c:e1:4c:9a:ba:e2:21:f3:5f:4b:83:15:2a:b0:4b:e3:0e:
d8:db:ab:33:f6:b5:2d:f5:72:57:7f:b2:a9:e9:ef:a6:84:54:
c9:be:50:80:85:a9:84:aa:55:de:ed:87:8e:b2:47:79:d8:3c:
57:6e:4f:f7:dd:5f:58:58:87:59:30:0c:7a:42:19:45:f0:7c:
9b:2a:01:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 03:51:01 2025 by rpki-client