Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/VqJYhw00M29L1bDM1hCbZs7gP2M.roa
File: VqJYhw00M29L1bDM1hCbZs7gP2M.roa (raw, json)
Hash identifier: rYnqqM/+GbFJhTGrGfdDGAHGHj87j7/vZGf/uCyhf4A=
Subject key identifier: 56:A2:58:87:0D:34:33:6F:4B:D5:B0:CC:D6:10:9B:66:CE:E0:3F:63
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 019426D9875C099327957C072ED19FEB6B12
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/VqJYhw00M29L1bDM1hCbZs7gP2M.roa
Signing time: Thu 02 Jan 2025 11:49:37 +0000
ROA not before: Thu 02 Jan 2025 11:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205828
IP address blocks: 2a03:5840:fd::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 Jan 2025 16:52:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:87:5c:09:93:27:95:7c:07:2e:d1:9f:eb:6b:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 2 11:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56a258870d34336f4bd5b0ccd6109b66cee03f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e1:38:14:ba:17:7c:1d:32:f0:1d:55:f0:19:
f0:68:a3:97:98:2c:25:b9:29:af:47:50:15:98:8b:
44:76:32:40:0d:d5:f6:60:6a:b3:db:99:96:23:49:
8f:47:ec:90:b1:c2:27:79:5e:df:87:5f:df:7a:c3:
ea:5b:54:f9:71:d4:e7:32:df:a7:ff:53:43:d4:67:
ef:97:ca:73:c2:ba:38:1f:6c:23:a7:0e:7e:75:8c:
14:9f:c3:f3:e3:88:1d:a6:18:2a:a0:21:85:57:59:
d5:e6:96:00:04:6f:5e:bd:72:bf:fd:f5:24:08:16:
d0:3c:c0:5d:79:b1:a7:03:66:26:09:63:c5:17:19:
60:8b:67:31:ee:e5:2c:a3:e9:4a:c4:d1:cf:d8:41:
a5:6e:50:a2:16:3b:80:03:30:ab:6f:8f:82:93:65:
85:80:d1:c0:35:07:62:bd:f3:ac:57:c9:45:aa:ae:
4d:78:a6:59:3a:16:03:d5:54:92:04:2d:ca:52:ff:
ff:b2:b1:b3:5a:cb:0e:b0:3e:bf:d5:01:cd:cd:49:
b3:79:4f:ed:93:6e:6f:91:ff:64:aa:86:4b:38:34:
b0:98:f5:ae:b6:2b:b0:bd:a5:d2:fa:f0:3b:3d:8e:
8b:f2:d4:42:44:34:fc:ed:4c:6c:33:f1:77:5d:29:
82:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A2:58:87:0D:34:33:6F:4B:D5:B0:CC:D6:10:9B:66:CE:E0:3F:63
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/VqJYhw00M29L1bDM1hCbZs7gP2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:5840:fd::/48
Signature Algorithm: sha256WithRSAEncryption
0b:a7:69:2f:61:2c:3c:32:1a:17:d7:70:f0:62:09:fd:55:4c:
ca:a9:2d:9f:aa:3b:2d:f1:ac:fd:e2:0a:01:eb:9e:6b:54:5f:
f3:79:33:6b:14:61:8f:13:bb:c1:50:a0:1a:66:2e:a5:85:d7:
ed:16:ce:54:ff:59:0c:0f:30:e4:8d:9a:1f:74:da:06:a7:9d:
d7:d9:b5:f4:0f:01:a5:d8:65:ff:1d:e8:07:e2:d3:28:61:16:
2c:4a:db:e3:04:7f:6b:62:f0:8c:1b:02:0b:3d:18:f7:4c:2f:
cf:56:52:8a:64:dd:4b:2d:36:0d:92:dd:3b:12:fe:08:0f:6e:
ea:f3:b0:6e:93:a9:cb:a1:b1:7d:fd:3e:3b:c2:98:04:65:91:
ff:d7:ff:d2:40:0f:bb:b9:3b:0a:b8:16:41:e9:1c:5f:a0:c4:
b5:0e:64:00:a9:bd:00:d2:94:ee:1d:d6:36:c4:87:99:0a:4d:
4f:d2:12:eb:e0:7b:b8:c4:70:f2:b9:43:2a:f6:a0:a0:21:2c:
ee:66:fe:9a:34:5d:04:43:12:38:4d:dc:bf:cb:c4:c7:fb:34:
6b:e9:aa:16:48:c7:8c:04:b9:d0:6e:a6:fc:dc:89:0e:0b:b3:
63:5e:72:49:50:a0:59:6a:3a:ca:98:ba:29:28:f6:25:58:63:
7c:b6:00:b7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQm2YdcCZMnlXwHLtGf62sSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3NzcwNWU4OWJiNjViNDcyZTRlMDE4NGQ2ZmU5YmZiOGM1
ODYzNWEwHhcNMjUwMTAyMTE0OTM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NmEyNTg4NzBkMzQzMzZmNGJkNWIwY2NkNjEwOWI2NmNlZTAzZjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuE4FLoXfB0y8B1V8BnwaKOXmCwl
uSmvR1AVmItEdjJADdX2YGqz25mWI0mPR+yQscIneV7fh1/fesPqW1T5cdTnMt+n
/1ND1Gfvl8pzwro4H2wjpw5+dYwUn8Pz44gdphgqoCGFV1nV5pYABG9evXK//fUk
CBbQPMBdebGnA2YmCWPFFxlgi2cx7uUso+lKxNHP2EGlblCiFjuAAzCrb4+Ck2WF
gNHANQdivfOsV8lFqq5NeKZZOhYD1VSSBC3KUv//srGzWssOsD6/1QHNzUmzeU/t
k25vkf9kqoZLODSwmPWutiuwvaXS+vA7PY6L8tRCRDT87UxsM/F3XSmCSQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFaiWIcNNDNvS9WwzNYQm2bO4D9jMB8GA1UdIwQY
MBaAFPd3BeibtltHLk4BhNb+m/uMWGNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYt
NmNiODk3OTFkN2ZkLzEvVnFKWWh3MDBNMjlMMWJETTFoQ2JaczdnUDJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy8wMjI4MzktNjk4NC00MGQ0LTg3MTYtNmNiODk3OTFkN2Zk
LzEvOTNjRjZKdTJXMGN1VGdHRTF2NmItNHhZWTFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgNYQAD9
MA0GCSqGSIb3DQEBCwUAA4IBAQALp2kvYSw8MhoX13DwYgn9VUzKqS2fqjst8az9
4goB655rVF/zeTNrFGGPE7vBUKAaZi6lhdftFs5U/1kMDzDkjZofdNoGp53X2bX0
DwGl2GX/HegH4tMoYRYsStvjBH9rYvCMGwILPRj3TC/PVlKKZN1LLTYNkt07Ev4I
D27q87Buk6nLobF9/T47wpgEZZH/1//SQA+7uTsKuBZB6RxfoMS1DmQAqb0A0pTu
HdY2xIeZCk1P0hLr4Hu4xHDyuUMq9qCgISzuZv6aNF0EQxI4Tdy/y8TH+zRr6aoW
SMeMBLnQbqb83IkOC7NjXnJJUKBZajrKmLopKPYlWGN8tgC3
-----END CERTIFICATE-----
Generated at Fri Apr 18 15:07:21 2025 by rpki-client