Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/FMjqk8VlXk8DwG62L4bdSLC55cs.roa
File: FMjqk8VlXk8DwG62L4bdSLC55cs.roa (raw, json)
Hash identifier: KUp6NU89rtfQC+TQL8/MZxO85Lu5cAWUKySb7Nw32Bs=
Subject key identifier: 14:C8:EA:93:C5:65:5E:4F:03:C0:6E:B6:2F:86:DD:48:B0:B9:E5:CB
Certificate issuer: /CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Certificate serial: 019E97FDC0A3CD526821D3F5A9C0C61B26C0
Authority key identifier: 56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/FMjqk8VlXk8DwG62L4bdSLC55cs.roa
Signing time: Fri 05 Jun 2026 13:34:10 +0000
ROA not before: Fri 05 Jun 2026 13:34:10 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 138195
IP address blocks: 2a10:fa83:1000::/36 maxlen: 36
Validation: Failed, certificate revoked on Sat 06 Jun 2026 03:44:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:97:fd:c0:a3:cd:52:68:21:d3:f5:a9:c0:c6:1b:26:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Validity
Not Before: Jun 5 13:34:10 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=14c8ea93c5655e4f03c06eb62f86dd48b0b9e5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ed:a4:30:9c:37:9b:39:f1:bd:78:78:9b:03:
54:61:d1:13:88:56:fd:a7:bf:fc:d5:dc:cc:16:6f:
1e:c5:82:83:c0:22:fe:34:e9:5b:e6:20:a0:84:77:
e3:57:bf:45:1d:34:a6:57:d7:84:c1:37:e5:02:5d:
65:20:d7:aa:fe:68:92:ab:b9:ad:44:41:34:65:8c:
3f:37:16:68:86:c8:4f:f5:50:9a:15:82:0a:bb:d8:
58:a8:6b:7e:27:c9:72:65:73:6b:70:e4:5b:42:8f:
2f:ce:13:76:39:44:2f:33:d3:38:2d:91:c5:15:ba:
68:b5:4b:9f:93:9f:f8:6a:40:11:84:63:65:6e:b5:
f8:85:1f:96:34:64:5c:f2:ab:b2:ce:73:86:81:6b:
c9:16:b6:21:19:f2:e7:97:7e:f3:f1:2a:7a:ac:f5:
ba:82:6b:58:c1:9c:66:c2:15:08:16:d3:ed:a9:81:
d9:22:c1:90:8a:dc:54:0b:3a:f5:6d:55:3a:4c:ff:
62:26:54:9f:84:90:33:2a:13:3c:e3:7a:54:54:b6:
0c:13:2c:42:29:a7:73:52:53:39:07:0a:79:1f:1a:
bf:f2:c6:34:7d:1c:d5:39:3c:17:ac:89:70:95:6d:
dc:cf:15:17:82:1c:08:7b:73:e9:5e:ff:61:13:aa:
56:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C8:EA:93:C5:65:5E:4F:03:C0:6E:B6:2F:86:DD:48:B0:B9:E5:CB
X509v3 Authority Key Identifier:
keyid:56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/FMjqk8VlXk8DwG62L4bdSLC55cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:fa83:1000::/36
Signature Algorithm: sha256WithRSAEncryption
56:c0:92:a1:e2:9f:f3:58:2c:91:d4:d3:42:01:c0:51:25:5a:
5b:31:76:18:f6:35:68:60:5e:b4:75:01:6b:f5:97:3d:83:a1:
ff:b8:ad:91:6f:82:4b:81:82:8b:d1:ac:c8:3e:af:bb:c9:e9:
68:e7:df:38:e2:e1:57:2d:0a:bc:b1:f8:d2:c9:7d:14:10:d2:
bd:b6:ac:ca:2c:c0:29:95:4e:6f:23:26:cd:5c:29:28:1c:ca:
81:64:67:19:ad:bc:ad:06:d8:e5:ec:bd:35:6d:fc:7b:54:6d:
5a:16:56:67:4d:38:82:7c:55:97:40:e7:81:6c:56:91:99:1b:
9d:ce:8f:9a:af:67:cc:f3:e9:c5:d2:f7:69:dc:0a:44:d3:13:
58:a1:22:e5:d4:c1:aa:f5:ae:0d:11:d8:f1:e9:70:30:e7:60:
fc:85:82:21:97:40:ce:e4:13:ec:73:99:db:b0:2b:e4:60:f9:
36:b4:34:89:d9:7b:db:16:b3:ab:8d:4b:c5:82:a7:fa:9c:4e:
e8:89:08:20:42:b6:60:35:2b:3a:ba:ec:36:ad:d3:48:f4:b8:
7e:09:19:b8:54:2f:2d:c8:39:f7:03:46:db:51:66:1f:40:3f:
46:31:f3:ca:e5:cd:41:12:b1:00:90:04:ed:06:5e:af:f7:9e:
29:51:ae:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 05:21:26 2026 by rpki-client