Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/UNcw3MJvRSzHgEfbM8bh1hw4JuQ.roa
File: UNcw3MJvRSzHgEfbM8bh1hw4JuQ.roa (raw, json)
Hash identifier: MB6iUryJEAJtxmNWKtdOOV6GWp7/C3e5KnmG5/2enNI=
Subject key identifier: 50:D7:30:DC:C2:6F:45:2C:C7:80:47:DB:33:C6:E1:D6:1C:38:26:E4
Certificate issuer: /CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Certificate serial: 019ECACA458624459B6C3FF2C44CA6BD714D
Authority key identifier: 56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/UNcw3MJvRSzHgEfbM8bh1hw4JuQ.roa
Signing time: Mon 15 Jun 2026 10:18:34 +0000
ROA not before: Mon 15 Jun 2026 10:18:34 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 20473
IP address blocks: 2a10:fa80:5::/48 maxlen: 48
2a10:fa80:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 27 Jun 2026 23:37:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ca:ca:45:86:24:45:9b:6c:3f:f2:c4:4c:a6:bd:71:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Validity
Not Before: Jun 15 10:18:34 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=50d730dcc26f452cc78047db33c6e1d61c3826e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:49:e7:1d:bb:8c:56:e1:c0:57:c1:32:dc:57:
9e:b6:0d:4d:13:dc:3e:95:4e:57:8a:b1:2c:c4:89:
6c:80:82:77:ca:1c:53:70:c6:17:e8:f7:63:5f:d3:
be:e4:0e:39:4e:ef:ce:6c:14:22:fe:e9:18:26:69:
48:ce:4d:14:35:b9:1d:d5:37:39:6b:17:b8:4e:4b:
0f:64:e2:a9:40:4a:3a:91:a6:fb:b2:25:b5:4a:ed:
41:ef:67:fd:6e:ec:92:3c:6f:86:f1:53:30:b3:b7:
c4:2f:8d:4d:f5:3d:20:76:a8:e0:a8:68:26:87:c8:
f6:ff:dd:10:83:d2:7a:2a:57:95:8a:15:92:2d:7f:
ee:09:c7:d5:b4:91:fe:42:27:13:02:7c:94:a3:58:
04:eb:a9:4a:64:d3:bb:cb:28:8b:6b:08:0d:ad:5c:
ec:58:7a:8c:6e:f6:8f:ec:83:e4:c1:d7:37:d1:15:
e3:08:ae:12:21:65:58:12:f0:d7:f3:9a:41:87:6d:
fd:2a:b2:fc:fa:f4:f2:94:51:8d:d2:c3:16:d3:1e:
0b:94:0c:de:73:46:8e:cf:ed:e7:a2:58:91:43:f9:
ef:8e:c4:e8:fc:3f:92:49:63:ee:97:fd:fd:1c:ae:
19:dc:47:38:46:7a:e6:dd:71:aa:4d:7c:cb:9c:a1:
80:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D7:30:DC:C2:6F:45:2C:C7:80:47:DB:33:C6:E1:D6:1C:38:26:E4
X509v3 Authority Key Identifier:
keyid:56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/UNcw3MJvRSzHgEfbM8bh1hw4JuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:fa80:5::-2a10:fa80:6:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
86:14:c3:3a:1d:2d:6a:78:fc:35:c6:00:09:bf:d4:a8:cd:1c:
a8:75:f3:dd:52:9c:22:a3:27:14:d1:bb:0f:94:02:96:1b:c2:
32:6c:05:ee:b6:31:c9:78:78:5c:03:79:85:6a:01:00:5b:9e:
21:dc:6c:3f:25:7d:bb:59:9c:f6:78:d0:4f:80:56:cd:8b:5e:
82:b8:3a:09:5e:1d:48:1f:99:ed:c2:9e:17:1d:97:33:e7:27:
91:98:c1:26:b9:7d:9d:c6:11:f1:e6:52:85:a8:e3:bb:d3:40:
c9:d3:81:6e:37:2e:fa:b6:61:a3:bb:3c:52:00:ea:26:cf:d0:
a1:d5:70:bf:b9:3e:c0:d0:a9:12:bf:b6:33:aa:01:dd:00:65:
3d:51:9d:77:df:bc:80:ce:76:82:d1:4c:c0:c7:8a:c7:bc:2a:
5d:c0:f7:22:2b:e5:f3:e5:e5:a0:e2:ff:6e:21:f7:48:68:32:
7d:0b:6f:2f:a5:62:c7:8e:42:af:cd:2f:31:ad:00:7d:b6:67:
d6:e4:69:77:e9:d3:b6:12:b0:74:5a:0e:d0:f5:44:53:fd:7e:
da:79:24:4b:90:c4:d0:5b:e6:1f:9f:24:d9:ae:5d:75:12:06:
d2:8d:df:df:3c:c2:63:4c:7e:57:87:c8:65:95:4a:8f:c1:ec:
e2:ce:89:8b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Jun 28 01:43:56 2026 by rpki-client