Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/AnSQ_vufNYYEDE7AaxO1guq1Mao.roa
File: AnSQ_vufNYYEDE7AaxO1guq1Mao.roa (raw, json)
Hash identifier: qF+8JFk/j5mbst0WQOQ3ae4It2LRwtFJRPSkqfbVUTc=
Subject key identifier: 02:74:90:FE:FB:9F:35:86:04:0C:4E:C0:6B:13:B5:82:EA:B5:31:AA
Certificate issuer: /CN=c2919334ad2ad53616c34fece96ce29230f86349
Certificate serial: 019718805C200C59B8D8039551D52BBE1E47
Authority key identifier: C2:91:93:34:AD:2A:D5:36:16:C3:4F:EC:E9:6C:E2:92:30:F8:63:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wpGTNK0q1TYWw0_s6WzikjD4Y0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/AnSQ_vufNYYEDE7AaxO1guq1Mao.roa
Signing time: Wed 28 May 2025 20:05:54 +0000
ROA not before: Wed 28 May 2025 20:05:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212477
IP address blocks: 2a01:f040::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 05 Jun 2025 10:10:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:18:80:5c:20:0c:59:b8:d8:03:95:51:d5:2b:be:1e:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2919334ad2ad53616c34fece96ce29230f86349
Validity
Not Before: May 28 20:05:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=027490fefb9f3586040c4ec06b13b582eab531aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4b:87:d4:29:78:65:62:0c:00:02:fe:26:ff:
8c:0d:07:6a:4d:c3:6d:e8:60:a5:00:32:e8:16:80:
d0:1f:df:61:39:03:9e:5d:54:41:42:45:fc:ce:ee:
7c:e2:b8:a3:fc:48:29:7b:87:07:76:1d:49:a8:d4:
e3:e8:34:12:a1:25:87:ed:88:4b:a0:51:ba:66:cb:
e3:cc:cd:39:ad:24:5f:20:61:49:97:02:b4:80:85:
85:ec:76:6a:b6:f3:22:66:ae:58:1f:fb:99:6e:70:
32:a6:d0:32:59:7f:6e:7f:99:75:d9:d7:b0:76:80:
d3:2b:51:33:07:d6:e3:8c:c8:1b:db:3c:3b:2b:83:
b6:9f:ce:bb:e4:50:e5:2e:86:96:04:79:95:65:ff:
ba:dc:f0:9d:ac:6c:e0:16:64:41:41:e8:b8:35:83:
b7:38:90:51:ce:02:9d:25:db:1c:24:c1:92:d0:e5:
ad:10:22:57:ae:c2:f1:ec:c5:95:32:b8:f7:a7:e4:
ba:c4:49:3e:1d:ae:5a:0f:8d:5a:f0:26:14:b0:d5:
22:76:6e:9b:e7:2d:b4:c1:f3:03:95:3d:90:e7:db:
f2:a6:65:1d:6f:7c:5e:4c:1f:d9:b6:f4:da:86:1d:
f4:8c:11:56:d9:c7:62:54:02:d9:4f:8d:53:07:79:
f2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:74:90:FE:FB:9F:35:86:04:0C:4E:C0:6B:13:B5:82:EA:B5:31:AA
X509v3 Authority Key Identifier:
keyid:C2:91:93:34:AD:2A:D5:36:16:C3:4F:EC:E9:6C:E2:92:30:F8:63:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wpGTNK0q1TYWw0_s6WzikjD4Y0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/AnSQ_vufNYYEDE7AaxO1guq1Mao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/wpGTNK0q1TYWw0_s6WzikjD4Y0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:f040::/29
Signature Algorithm: sha256WithRSAEncryption
44:f3:39:f0:0e:0d:ef:5c:88:27:6e:34:ac:ec:7a:70:9c:99:
08:46:46:14:e4:dc:25:6f:b8:e3:23:a4:e1:70:a6:e4:79:15:
a5:2c:48:d9:b9:e3:ce:3a:26:44:5d:1a:4a:05:f8:3d:bb:9c:
e1:0a:1c:4e:c2:a3:b0:54:95:ff:85:8e:fc:58:48:6b:86:2e:
bb:41:b2:d5:15:dc:fa:1a:eb:de:f4:2c:76:d8:15:b9:1b:5e:
48:04:4d:28:5a:2b:47:12:c9:b8:c3:29:0c:93:d7:8c:7e:b5:
a4:e8:00:60:49:09:b4:4e:1d:7f:ca:6f:c9:11:61:b3:c1:e4:
86:42:20:40:71:eb:a7:e0:39:44:e0:7e:34:30:e7:a5:4a:8f:
dc:81:08:7c:fa:59:ec:7f:85:64:dc:cf:b6:6d:78:93:d8:be:
38:8e:73:3c:64:84:c9:8f:0a:49:08:ec:4f:f6:bb:48:e4:d8:
61:e4:c5:8b:17:59:d5:5a:63:07:4d:45:4f:36:9b:80:69:b8:
9e:53:67:34:dc:78:e7:c4:35:5c:cc:8b:22:e0:bf:71:e2:91:
c7:2c:3b:25:7c:22:b2:56:6c:e6:48:71:12:b7:f8:ab:ef:6e:
c6:77:5c:f6:a0:24:70:d6:21:c2:80:8d:2c:93:dd:b0:6a:ba:
1f:10:38:52
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZcYgFwgDFm42AOVUdUrvh5HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyOTE5MzM0YWQyYWQ1MzYxNmMzNGZlY2U5NmNlMjkyMzBm
ODYzNDkwHhcNMjUwNTI4MjAwNTU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjc0OTBmZWZiOWYzNTg2MDQwYzRlYzA2YjEzYjU4MmVhYjUzMWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUuH1Cl4ZWIMAAL+Jv+MDQdqTcNt
6GClADLoFoDQH99hOQOeXVRBQkX8zu584rij/Egpe4cHdh1JqNTj6DQSoSWH7YhL
oFG6ZsvjzM05rSRfIGFJlwK0gIWF7HZqtvMiZq5YH/uZbnAyptAyWX9uf5l12dew
doDTK1EzB9bjjMgb2zw7K4O2n8675FDlLoaWBHmVZf+63PCdrGzgFmRBQei4NYO3
OJBRzgKdJdscJMGS0OWtECJXrsLx7MWVMrj3p+S6xEk+Ha5aD41a8CYUsNUidm6b
5y20wfMDlT2Q59vypmUdb3xeTB/ZtvTahh30jBFW2cdiVALZT41TB3nyOwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAJ0kP77nzWGBAxOwGsTtYLqtTGqMB8GA1UdIwQY
MBaAFMKRkzStKtU2FsNP7Ols4pIw+GNJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3BHVE5LMHExVFlXdzBfczZXemlrakQ0WTBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi84OTRiZGMtMjhhNi00YzM2LWJhNDIt
MTY1MzE4OGQ4MTI2LzEvQW5TUV92dWZOWVlFREU3QWF4TzFndXExTWFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi84OTRiZGMtMjhhNi00YzM2LWJhNDItMTY1MzE4OGQ4MTI2
LzEvd3BHVE5LMHExVFlXdzBfczZXemlrakQ0WTBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgHwQDAN
BgkqhkiG9w0BAQsFAAOCAQEARPM58A4N71yIJ240rOx6cJyZCEZGFOTcJW+44yOk
4XCm5HkVpSxI2bnjzjomRF0aSgX4Pbuc4QocTsKjsFSV/4WO/FhIa4Yuu0Gy1RXc
+hrr3vQsdtgVuRteSARNKForRxLJuMMpDJPXjH61pOgAYEkJtE4df8pvyRFhs8Hk
hkIgQHHrp+A5ROB+NDDnpUqP3IEIfPpZ7H+FZNzPtm14k9i+OI5zPGSEyY8KSQjs
T/a7SOTYYeTFixdZ1VpjB01FTzabgGm4nlNnNNx458Q1XMyLIuC/ceKRxyw7JXwi
slZs5khxErf4q+9uxndc9qAkcNYhwoCNLJPdsGq6HxA4Ug==
-----END CERTIFICATE-----
Generated at Fri Jun 6 12:35:12 2025 by rpki-client