Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/3BGlbjkq6J19IuufpBsu3g_D_aI.roa
File: 3BGlbjkq6J19IuufpBsu3g_D_aI.roa (raw, json)
Hash identifier: w8z67v0LHRRSlEYlfgS05dF6w6tS8kvIHztxoF01DMs=
Subject key identifier: DC:11:A5:6E:39:2A:E8:9D:7D:22:EB:9F:A4:1B:2E:DE:0F:C3:FD:A2
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0196CF272283AB1B538D489DDE3484459480
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/3BGlbjkq6J19IuufpBsu3g_D_aI.roa
Signing time: Wed 14 May 2025 14:16:10 +0000
ROA not before: Wed 14 May 2025 14:16:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14576
IP address blocks: 2a06:a5c0::/29 maxlen: 29
2a06:dfc0::/29 maxlen: 29
2a09:b700::/29 maxlen: 29
2a0f:e00::/29 maxlen: 29
2a0f:2300::/29 maxlen: 29
2a0f:2840::/29 maxlen: 29
2a0f:9e00::/29 maxlen: 29
2a0f:a200::/29 maxlen: 29
2a0f:e540::/29 maxlen: 29
2a0f:e600::/29 maxlen: 29
2a0f:e9c0::/29 maxlen: 29
2a10:3540::/29 maxlen: 29
2a10:6500::/29 maxlen: 29
2a10:7900::/29 maxlen: 29
2a10:7f00::/29 maxlen: 29
2a11:4800::/29 maxlen: 32
2a11:5c80::/29 maxlen: 29
2a11:e580::/29 maxlen: 29
2a12:2c80::/29 maxlen: 29
2a12:4b00::/29 maxlen: 29
2a12:5e00::/29 maxlen: 29
2a12:d540::/29 maxlen: 29
2a12:d5c0::/29 maxlen: 29
2a13:200::/29 maxlen: 29
2a13:3080::/29 maxlen: 29
2a13:9680::/29 maxlen: 29
2a13:f900::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 22 May 2025 19:17:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cf:27:22:83:ab:1b:53:8d:48:9d:de:34:84:45:94:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 14 14:16:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dc11a56e392ae89d7d22eb9fa41b2ede0fc3fda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:33:59:e5:a7:33:71:d2:6f:74:f2:df:f9:cc:
46:f4:81:05:3b:bb:12:50:c1:a2:11:ee:cb:e9:aa:
8d:a4:e2:46:de:19:83:6b:a0:14:6c:24:f6:8b:3e:
f7:c0:f3:0d:dc:07:bb:21:9b:ca:c1:12:fc:49:4f:
bb:5c:ec:ef:bb:34:93:f9:ff:79:ef:96:73:9b:0a:
8e:50:e4:e1:d5:75:c4:0c:1e:ee:9e:03:f7:bc:07:
df:a4:a5:72:74:64:82:89:98:61:74:c5:9f:38:c2:
0a:cb:b7:71:49:01:31:b8:71:78:b9:50:d0:9a:34:
02:b1:29:58:3a:ce:ce:3f:d0:07:ca:98:ba:2d:ee:
e7:03:bf:74:3e:b3:66:83:46:27:4d:4f:60:dc:50:
aa:c7:ee:00:69:74:8f:52:2e:2b:d0:11:8f:89:3e:
2d:bc:2d:c9:60:d1:a1:8c:ac:37:b6:66:a0:53:3c:
0a:cb:d8:ed:54:c6:ba:ec:7f:75:d9:d5:78:0a:81:
33:2e:07:2d:34:c5:f0:1a:99:9d:a5:d7:ed:3f:0d:
7e:38:a2:cf:89:b1:d2:75:50:b6:db:c6:a2:01:69:
0c:2a:62:66:55:23:a7:92:82:6b:fb:46:18:f0:0d:
0a:b5:cb:ef:c4:d0:65:bf:9d:64:c3:cd:6d:90:43:
ab:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:11:A5:6E:39:2A:E8:9D:7D:22:EB:9F:A4:1B:2E:DE:0F:C3:FD:A2
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/3BGlbjkq6J19IuufpBsu3g_D_aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a5c0::/29
2a06:dfc0::/29
2a09:b700::/29
2a0f:e00::/29
2a0f:2300::/29
2a0f:2840::/29
2a0f:9e00::/29
2a0f:a200::/29
2a0f:e540::/29
2a0f:e600::/29
2a0f:e9c0::/29
2a10:3540::/29
2a10:6500::/29
2a10:7900::/29
2a10:7f00::/29
2a11:4800::/29
2a11:5c80::/29
2a11:e580::/29
2a12:2c80::/29
2a12:4b00::/29
2a12:5e00::/29
2a12:d540::/29
2a12:d5c0::/29
2a13:200::/29
2a13:3080::/29
2a13:9680::/29
2a13:f900::/29
Signature Algorithm: sha256WithRSAEncryption
6d:a3:6f:55:af:72:37:e6:ee:8a:13:b3:f5:f3:77:fc:40:f2:
28:78:c2:37:f9:59:af:e3:35:3a:3c:0a:0d:ec:dc:d7:9a:8d:
67:89:97:18:bb:e2:36:ec:3f:5a:78:c3:74:bc:f5:9a:c2:74:
5e:4f:a8:82:87:09:a7:15:6d:8e:56:3a:ab:f2:3d:9a:7f:d7:
e6:cc:03:2c:d5:3b:83:e7:9c:a8:68:d7:bc:b7:7d:e9:7a:36:
08:a7:69:a0:9a:ac:4a:3b:47:7d:95:0d:9e:f5:7c:0e:99:2c:
ac:15:57:f3:f4:de:d3:55:f7:7e:d8:78:76:f4:23:fc:b2:d3:
fc:de:8a:2f:25:d9:00:2e:35:20:0d:68:81:1d:a0:04:3d:f0:
2f:af:9e:84:86:67:25:6b:cc:65:ff:e6:27:ca:25:1d:f7:97:
55:bc:b7:f9:87:3b:f9:86:60:2f:45:98:85:2b:01:cb:62:0e:
32:f6:24:ec:7e:6b:e7:05:4c:20:58:f9:43:31:f6:09:51:ba:
3a:e3:c2:c4:12:e0:36:9e:4c:0a:97:28:21:3a:30:f3:86:34:
d0:91:c1:0a:c5:d8:f2:d5:99:94:b2:57:a7:39:98:9d:c8:8b:
62:07:78:c1:f5:30:4b:cd:51:ce:00:5b:3f:13:79:04:54:46:
48:f1:1d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 07:39:46 2025 by rpki-client