Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/d4ee39-80b4-4239-8c39-051b00f858ed/1/TQ8scY5R98QBmHehy6LpK5q67rE.roa
File: TQ8scY5R98QBmHehy6LpK5q67rE.roa (raw, json)
Hash identifier: KImZO00FKdr57uh5tq9kiW9UhDvl9Ohiz2ug/vCo/jQ=
Subject key identifier: 4D:0F:2C:71:8E:51:F7:C4:01:98:77:A1:CB:A2:E9:2B:9A:BA:EE:B1
Certificate issuer: /CN=6a26b9e8df5da569854c61af714db303492b62f1
Certificate serial: 0195AD6F080194866152E56277E0EA623A96
Authority key identifier: 6A:26:B9:E8:DF:5D:A5:69:85:4C:61:AF:71:4D:B3:03:49:2B:62:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aia56N9dpWmFTGGvcU2zA0krYvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/d4ee39-80b4-4239-8c39-051b00f858ed/1/TQ8scY5R98QBmHehy6LpK5q67rE.roa
Signing time: Wed 19 Mar 2025 08:04:49 +0000
ROA not before: Wed 19 Mar 2025 08:04:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212665
IP address blocks: 2a14:9980::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Mar 2025 12:15:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ad:6f:08:01:94:86:61:52:e5:62:77:e0:ea:62:3a:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a26b9e8df5da569854c61af714db303492b62f1
Validity
Not Before: Mar 19 08:04:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4d0f2c718e51f7c4019877a1cba2e92b9abaeeb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:81:14:9d:7f:58:16:26:e9:86:ce:66:86:27:
42:7e:5d:9e:75:e1:49:c3:0a:03:6c:e6:0e:3b:f7:
59:0d:2d:fb:27:9a:c7:c4:11:81:52:72:42:24:10:
ee:77:8d:c8:7c:47:32:49:40:8a:54:46:b5:fd:fa:
17:7a:82:85:ad:de:83:b5:e8:0a:38:0e:8c:ad:db:
bb:05:f9:d2:18:f8:fc:85:06:08:78:a7:fd:8c:60:
bc:3c:66:2c:1e:7a:31:8c:f4:f3:13:32:c3:4e:e5:
79:38:07:8b:73:bc:90:94:41:c1:26:4d:f5:60:ce:
41:56:bf:9c:0e:2f:bd:2c:d0:ee:66:63:34:88:df:
05:ef:4e:7b:a5:96:33:63:3f:4e:45:7f:be:6a:b1:
83:04:62:86:ce:88:69:ab:35:57:00:e2:fb:f7:6a:
dd:ee:d6:7a:8a:76:d9:5f:28:a5:95:40:35:2e:b4:
86:b9:54:2e:29:87:41:97:c0:20:7c:23:b8:3d:7a:
c1:23:3d:e1:a3:9c:df:88:f9:cc:1d:f6:c2:da:9e:
cb:cc:4f:61:41:39:74:d8:ee:fc:bd:c0:1e:64:7d:
91:83:c5:89:1c:a3:bf:84:6e:ee:b9:c3:87:cc:87:
47:b8:84:f5:08:42:bd:a1:09:37:87:94:28:5f:3a:
f6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:0F:2C:71:8E:51:F7:C4:01:98:77:A1:CB:A2:E9:2B:9A:BA:EE:B1
X509v3 Authority Key Identifier:
keyid:6A:26:B9:E8:DF:5D:A5:69:85:4C:61:AF:71:4D:B3:03:49:2B:62:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aia56N9dpWmFTGGvcU2zA0krYvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d4ee39-80b4-4239-8c39-051b00f858ed/1/TQ8scY5R98QBmHehy6LpK5q67rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/d4ee39-80b4-4239-8c39-051b00f858ed/1/aia56N9dpWmFTGGvcU2zA0krYvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:9980::/29
Signature Algorithm: sha256WithRSAEncryption
a9:a7:be:bb:47:86:bd:9d:3a:df:b2:ae:28:24:70:5e:02:55:
1e:af:4c:57:df:5e:cd:96:f2:18:20:b9:7b:a5:53:69:9d:bc:
49:82:53:fa:60:f3:a0:93:ef:f0:12:6a:ed:74:5f:bf:f3:9d:
d2:ea:5d:39:c0:7a:ab:6b:69:50:34:9f:be:78:0d:49:38:e7:
7a:94:8f:99:36:88:82:05:cb:83:87:8b:f2:6a:48:a9:33:d6:
0f:c7:f3:a0:ec:76:4c:a5:9e:63:3c:89:6c:29:91:12:f0:f5:
44:b1:21:d0:63:cc:b0:5b:f2:8e:dc:e8:74:8b:5c:f3:fc:73:
d2:bb:34:99:08:dd:5e:e2:f0:d1:d1:ea:fe:76:14:92:04:1f:
9c:70:81:c9:d7:b5:44:d5:2c:50:50:70:02:37:ac:76:30:8e:
69:df:f3:8e:b7:82:88:41:89:34:03:f1:60:52:0e:9b:dd:17:
da:9a:2f:e7:fe:ab:93:7b:fe:8b:d5:34:01:35:2c:ba:42:59:
b9:01:7c:7c:35:2a:ae:83:66:a8:2a:2d:98:0a:e6:6d:b6:fb:
c4:d7:84:21:e0:b9:c2:77:1f:d5:12:ac:62:8c:62:46:98:88:
2f:ba:bd:13:cf:17:40:e6:96:0f:a9:c0:a5:85:d2:75:22:9d:
77:ba:c8:9a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZWtbwgBlIZhUuVid+DqYjqWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhMjZiOWU4ZGY1ZGE1Njk4NTRjNjFhZjcxNGRiMzAzNDky
YjYyZjEwHhcNMjUwMzE5MDgwNDQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDBmMmM3MThlNTFmN2M0MDE5ODc3YTFjYmEyZTkyYjlhYmFlZWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIEUnX9YFibphs5mhidCfl2edeFJ
wwoDbOYOO/dZDS37J5rHxBGBUnJCJBDud43IfEcySUCKVEa1/foXeoKFrd6DtegK
OA6Mrdu7BfnSGPj8hQYIeKf9jGC8PGYsHnoxjPTzEzLDTuV5OAeLc7yQlEHBJk31
YM5BVr+cDi+9LNDuZmM0iN8F7057pZYzYz9ORX++arGDBGKGzohpqzVXAOL792rd
7tZ6inbZXyillUA1LrSGuVQuKYdBl8AgfCO4PXrBIz3ho5zfiPnMHfbC2p7LzE9h
QTl02O78vcAeZH2Rg8WJHKO/hG7uucOHzIdHuIT1CEK9oQk3h5QoXzr2KwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFE0PLHGOUffEAZh3ocui6Suauu6xMB8GA1UdIwQY
MBaAFGomuejfXaVphUxhr3FNswNJK2LxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWlhNTZOOWRwV21GVEdHdmNVMnpBMGtyWXZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9kNGVlMzktODBiNC00MjM5LThjMzkt
MDUxYjAwZjg1OGVkLzEvVFE4c2NZNVI5OFFCbUhlaHk2THBLNXE2N3JFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9kNGVlMzktODBiNC00MjM5LThjMzktMDUxYjAwZjg1OGVk
LzEvYWlhNTZOOWRwV21GVEdHdmNVMnpBMGtyWXZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhSZgDAN
BgkqhkiG9w0BAQsFAAOCAQEAqae+u0eGvZ0637KuKCRwXgJVHq9MV99ezZbyGCC5
e6VTaZ28SYJT+mDzoJPv8BJq7XRfv/Od0updOcB6q2tpUDSfvngNSTjnepSPmTaI
ggXLg4eL8mpIqTPWD8fzoOx2TKWeYzyJbCmREvD1RLEh0GPMsFvyjtzodItc8/xz
0rs0mQjdXuLw0dHq/nYUkgQfnHCByde1RNUsUFBwAjesdjCOad/zjreCiEGJNAPx
YFIOm90X2pov5/6rk3v+i9U0ATUsukJZuQF8fDUqroNmqCotmArmbbb7xNeEIeC5
wncf1RKsYoxiRpiIL7q9E88XQOaWD6nApYXSdSKdd7rImg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 10:52:59 2025 by rpki-client