Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/5sqker0VbzvUzm3chx9rb26kljc.roa
File: 5sqker0VbzvUzm3chx9rb26kljc.roa (raw, json)
Hash identifier: Z+Ru0ecg+dmktrqT79pJ1B2f4f2q/vPRVqzaIEuPDRM=
Subject key identifier: E6:CA:A4:7A:BD:15:6F:3B:D4:CE:6D:DC:87:1F:6B:6F:6E:A4:96:37
Certificate issuer: /CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Certificate serial: 0194266B6826903906427167515CBF4EC060
Authority key identifier: 6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/5sqker0VbzvUzm3chx9rb26kljc.roa
Signing time: Thu 02 Jan 2025 09:49:20 +0000
ROA not before: Thu 02 Jan 2025 09:49:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:d040:1::/48 maxlen: 48
2a13:d040:2::/48 maxlen: 48
2a13:d040:3::/48 maxlen: 48
2a13:d040:10::/48 maxlen: 48
2a13:d040:11::/48 maxlen: 48
2a13:d040:12::/48 maxlen: 48
2a13:d040:13::/48 maxlen: 48
2a13:d040:14::/48 maxlen: 48
2a13:d040:15::/48 maxlen: 48
2a13:d040:16::/48 maxlen: 48
2a13:d040:17::/48 maxlen: 48
2a13:d040:18::/48 maxlen: 48
2a13:d040:19::/48 maxlen: 48
2a13:d040:1a::/48 maxlen: 48
2a13:d040:1b::/48 maxlen: 48
2a13:d040:1c::/48 maxlen: 48
2a13:d040:1d::/48 maxlen: 48
2a13:d040:1e::/48 maxlen: 48
2a13:d040:1f::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 02 Feb 2025 15:58:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:68:26:90:39:06:42:71:67:51:5c:bf:4e:c0:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Validity
Not Before: Jan 2 09:49:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6caa47abd156f3bd4ce6ddc871f6b6f6ea49637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:52:8a:51:45:2b:a5:31:1a:94:f6:e9:e3:f0:
c9:3a:01:9f:67:b7:73:75:62:cb:e0:00:07:28:c3:
dc:62:95:36:ce:56:35:af:f9:0b:c1:39:81:13:57:
75:3e:78:54:05:66:9e:57:29:7e:b6:b4:1f:4f:6a:
00:be:54:1e:f4:24:44:61:fe:66:0c:6f:e1:4a:40:
fc:f3:48:c6:a0:c7:73:cc:b8:cd:b0:91:be:54:3b:
7d:c2:2e:29:f3:f9:e4:6a:d8:08:58:7d:1d:76:68:
50:0b:93:0c:6d:cb:b1:6b:81:42:4c:a8:e8:e8:e8:
3a:8c:cf:96:92:b4:08:d1:63:66:80:97:7d:8e:63:
24:ca:10:d4:c6:01:dd:75:99:a1:34:3f:88:8c:4d:
fb:38:b8:e6:5f:3b:e7:9e:ae:88:68:ea:34:e9:bc:
72:ca:83:c6:c6:fc:e1:e9:95:ad:98:52:60:70:5a:
aa:35:fb:ff:9d:6d:e6:b6:33:4c:90:81:2f:ef:06:
7e:04:c1:da:5a:9b:2f:98:6e:87:38:78:bb:59:9e:
7c:50:58:a3:a0:e7:5e:ed:ca:96:52:43:4f:93:94:
f4:aa:34:d5:01:1a:52:73:6d:e1:a7:67:76:57:66:
1b:d3:d5:4e:3d:87:7f:ee:e0:33:7e:78:f7:48:b1:
ae:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:CA:A4:7A:BD:15:6F:3B:D4:CE:6D:DC:87:1F:6B:6F:6E:A4:96:37
X509v3 Authority Key Identifier:
keyid:6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/5sqker0VbzvUzm3chx9rb26kljc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d040:1::-2a13:d040:3:ffff:ffff:ffff:ffff:ffff
2a13:d040:10::/44
Signature Algorithm: sha256WithRSAEncryption
89:a6:af:8a:c6:0a:db:e7:be:27:ad:0e:d4:23:c1:73:98:62:
df:ee:ee:57:57:3e:00:f5:16:59:7b:de:00:d3:5f:db:5b:25:
cb:9f:2e:dc:d4:cb:48:2c:8a:23:0d:dd:0e:ea:90:2e:66:c9:
2f:4b:3c:60:c8:4c:57:5f:1a:e3:6f:76:5c:3c:a3:35:f4:e1:
0f:1f:22:c6:2e:81:93:74:ea:2e:59:78:7d:25:57:12:d1:0a:
e1:54:ec:8a:e7:e6:a4:ed:be:98:7b:29:15:f6:b8:f5:47:e5:
78:6c:85:9f:48:53:4d:e8:36:97:d9:d4:75:a4:07:6f:39:fc:
40:4b:75:b0:c5:70:07:e0:44:ae:4c:c8:11:fe:d6:7d:62:09:
f5:f2:4d:e3:4e:65:f8:5c:8f:78:0d:42:51:bc:5b:b8:d7:e0:
96:f8:1a:bb:12:c4:1e:08:1a:b0:10:8c:68:a4:e8:e8:0a:7e:
81:e2:fc:70:27:d4:7a:04:cd:ad:a0:7c:2d:b4:6f:f4:79:7c:
7c:64:c9:b4:ce:89:d0:00:a5:d2:5c:4b:fc:b2:cd:88:a2:55:
a8:d7:78:c3:64:fc:14:b4:62:32:6f:56:e6:d0:96:f5:3f:9a:
64:4f:df:e7:4d:61:72:5c:f0:da:21:bd:43:c4:38:81:bd:a8:
87:80:97:48
-----BEGIN CERTIFICATE-----
MIIFFDCCA/ygAwIBAgISAZQma2gmkDkGQnFnUVy/TsBgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhYThmYTc1YzUwMjBjZDYyMThjZjdmMTA5ZGU0MjAyNjUy
MDRiYWMwHhcNMjUwMTAyMDk0OTIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNmNhYTQ3YWJkMTU2ZjNiZDRjZTZkZGM4NzFmNmI2ZjZlYTQ5NjM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplKKUUUrpTEalPbp4/DJOgGfZ7dz
dWLL4AAHKMPcYpU2zlY1r/kLwTmBE1d1PnhUBWaeVyl+trQfT2oAvlQe9CREYf5m
DG/hSkD880jGoMdzzLjNsJG+VDt9wi4p8/nkatgIWH0ddmhQC5MMbcuxa4FCTKjo
6Og6jM+WkrQI0WNmgJd9jmMkyhDUxgHddZmhND+IjE37OLjmXzvnnq6IaOo06bxy
yoPGxvzh6ZWtmFJgcFqqNfv/nW3mtjNMkIEv7wZ+BMHaWpsvmG6HOHi7WZ58UFij
oOde7cqWUkNPk5T0qjTVARpSc23hp2d2V2Yb09VOPYd/7uAzfnj3SLGulwIDAQAB
o4ICIDCCAhwwHQYDVR0OBBYEFObKpHq9FW871M5t3Icfa29upJY3MB8GA1UdIwQY
MBaAFGqo+nXFAgzWIYz38QneQgJlIEusMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXFqNmRjVUNETlloalBmeENkNUNBbVVnUzZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy83MDEyZDgtYWZhMS00MTliLThiNjAt
MzVjNjNmYTc2NWEyLzEvNXNxa2VyMFZienZVem0zY2h4OXJiMjZrbGpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy83MDEyZDgtYWZhMS00MTliLThiNjAtMzVjNjNmYTc2NWEy
LzEvYXFqNmRjVUNETlloalBmeENkNUNBbVVnUzZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAjBAIAAjAdMBIDBwAqE9BA
AAEDBwIqE9BAAAADBwQqE9BAABAwDQYJKoZIhvcNAQELBQADggEBAImmr4rGCtvn
vietDtQjwXOYYt/u7ldXPgD1Fll73gDTX9tbJcufLtzUy0gsiiMN3Q7qkC5myS9L
PGDITFdfGuNvdlw8ozX04Q8fIsYugZN06i5ZeH0lVxLRCuFU7Irn5qTtvph7KRX2
uPVH5XhshZ9IU03oNpfZ1HWkB285/EBLdbDFcAfgRK5MyBH+1n1iCfXyTeNOZfhc
j3gNQlG8W7jX4Jb4GrsSxB4IGrAQjGik6OgKfoHi/HAn1HoEza2gfC20b/R5fHxk
ybTOidAApdJcS/yyzYiiVajXeMNk/BS0YjJvVubQlvU/mmRP3+dNYXJc8NohvUPE
OIG9qIeAl0g=
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:54:24 2025 by rpki-client