Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BqaVITuE7ypq4UhcAFdncHP6otQ.roa
File: BqaVITuE7ypq4UhcAFdncHP6otQ.roa (raw, json)
Hash identifier: tf09Rno/Yj5aViXBe0/pKJBELjRvaydknLFrkH/4UQE=
Subject key identifier: 06:A6:95:21:3B:84:EF:2A:6A:E1:48:5C:00:57:67:70:73:FA:A2:D4
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018D0C18FE0E5B214D1C19AB78FD2D0AE0BC
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BqaVITuE7ypq4UhcAFdncHP6otQ.roa
Signing time: Mon 15 Jan 2024 07:49:40 +0000
ROA not before: Mon 15 Jan 2024 07:49:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198231
IP address blocks: 2a13:2f40::/29 maxlen: 29
2a13:2dc5::/32 maxlen: 32
2a13:2d41::/32 maxlen: 32
2a13:9680::/29 maxlen: 29
2a13:2d42::/32 maxlen: 32
2a13:2dc4::/32 maxlen: 32
2a13:fb00::/29 maxlen: 29
2a13:d100::/29 maxlen: 29
2a13:2d43::/32 maxlen: 32
2a13:2dc7::/32 maxlen: 32
2a13:d706::/32 maxlen: 32
2a06:5280::/29 maxlen: 29
2a13:2d40::/32 maxlen: 32
2a06:3bc0::/29 maxlen: 29
2a13:c902::/32 maxlen: 32
2a13:2d44::/32 maxlen: 32
2a13:c901::/32 maxlen: 32
2a09:b700::/29 maxlen: 32
2a13:d705::/32 maxlen: 32
2a06:35c0::/30 maxlen: 30
2a0d:a9c0::/29 maxlen: 32
2a13:2d47::/32 maxlen: 32
2a13:2dc6::/32 maxlen: 32
2a13:d905::/32 maxlen: 32
2a13:2dc0::/32 maxlen: 32
2a09:7b00::/29 maxlen: 32
2a13:2dc3::/32 maxlen: 32
2a13:d902::/32 maxlen: 32
2a13:c906::/32 maxlen: 32
2a13:c905::/32 maxlen: 32
2a13:d700::/32 maxlen: 32
2a13:d901::/32 maxlen: 32
2a09:7300::/29 maxlen: 32
2a09:4900::/29 maxlen: 32
2a13:d702::/32 maxlen: 32
2a13:c904::/32 maxlen: 32
2a13:c700::/29 maxlen: 29
2a13:c907::/32 maxlen: 32
2a13:d900::/32 maxlen: 32
2a09:7500::/29 maxlen: 32
2a13:d703::/32 maxlen: 32
2a06:35c4::/30 maxlen: 30
2a13:d903::/32 maxlen: 32
2a13:2d46::/32 maxlen: 32
2a0d:b740::/29 maxlen: 32
2a13:2d45::/32 maxlen: 32
2a13:d704::/32 maxlen: 32
2a13:2dc1::/32 maxlen: 32
2a13:2dc2::/32 maxlen: 32
2a13:d906::/32 maxlen: 32
2a13:9180::/29 maxlen: 29
2a0d:2ac0::/29 maxlen: 32
2a13:d907::/32 maxlen: 32
2a13:d904::/32 maxlen: 32
2a13:c900::/32 maxlen: 32
2a09:4500::/29 maxlen: 32
2a13:d707::/32 maxlen: 32
2a13:c903::/32 maxlen: 32
2a13:d701::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 16 Jan 2024 09:58:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0c:18:fe:0e:5b:21:4d:1c:19:ab:78:fd:2d:0a:e0:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 15 07:49:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06a695213b84ef2a6ae1485c0057677073faa2d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d7:c7:7f:67:9a:d6:80:ea:32:0f:26:66:64:
1a:a6:ab:36:3c:30:f7:c1:18:05:37:79:4d:35:3b:
c1:e0:98:ec:bc:c8:6b:24:45:e8:61:d0:14:ce:2f:
9f:17:a2:9d:b4:14:58:18:62:bf:64:39:16:76:45:
f5:05:a4:81:2a:82:c5:f4:90:3a:ef:7a:e2:54:30:
db:1b:f0:c9:b4:02:d8:4a:22:93:81:be:8a:d1:20:
bc:1f:3e:83:d1:36:a5:23:94:27:79:9a:ce:2d:8a:
9d:10:75:8d:df:30:76:fc:68:82:05:6e:3b:80:48:
b2:d3:b2:58:06:59:c3:91:53:aa:5a:c8:22:d1:4a:
03:cc:4d:68:3c:7a:d7:01:9a:d2:1f:24:e6:b8:5b:
63:a0:62:45:0c:75:68:1b:c8:c3:cb:2a:2a:d6:7e:
58:dc:b7:0b:85:a3:00:df:a9:bb:f8:e3:1c:2c:0e:
80:94:b9:39:e7:c6:3b:4e:6f:2f:3e:c9:2a:1a:91:
93:f6:fa:86:4e:13:c6:e6:37:c8:f0:e4:da:26:e6:
da:af:4a:bf:3e:e4:f0:0f:fe:e2:76:21:7b:1d:38:
7d:43:b7:1c:17:26:06:03:e8:cc:11:40:98:0e:ce:
23:b7:a0:02:cb:d3:82:6e:a5:a9:2d:04:03:07:b1:
e4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A6:95:21:3B:84:EF:2A:6A:E1:48:5C:00:57:67:70:73:FA:A2:D4
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/BqaVITuE7ypq4UhcAFdncHP6otQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:35c0::/29
2a06:3bc0::/29
2a06:5280::/29
2a09:4500::/29
2a09:4900::/29
2a09:7300::/29
2a09:7500::/29
2a09:7b00::/29
2a09:b700::/29
2a0d:2ac0::/29
2a0d:a9c0::/29
2a0d:b740::/29
2a13:2d40::/29
2a13:2dc0::/29
2a13:2f40::/29
2a13:9180::/29
2a13:9680::/29
2a13:c700::/29
2a13:c900::/29
2a13:d100::/29
2a13:d700::/29
2a13:d900::/29
2a13:fb00::/29
Signature Algorithm: sha256WithRSAEncryption
9f:de:38:86:62:3f:33:7c:40:29:d1:f8:1b:97:86:57:63:cf:
50:c1:d1:4c:a3:5b:97:91:9a:cd:60:a9:ba:0c:d0:45:3d:fc:
01:86:1f:b1:e2:da:1d:bd:33:dd:ee:39:5e:29:d3:c6:ea:61:
9c:a5:c6:33:7f:5c:44:db:d6:af:a8:b7:c3:ca:ec:b4:9c:9d:
db:bc:04:c6:8f:9c:c3:cb:66:34:f7:41:34:75:8d:4e:8c:0f:
e7:d7:92:1e:db:04:33:bd:80:d8:74:0f:6b:bc:dc:00:8c:d7:
3b:f0:a0:05:78:23:c0:ed:b6:7e:b8:c4:b7:6b:1a:a3:12:c0:
2f:73:5a:70:22:8b:ea:d1:3b:b3:f7:1a:d9:15:5f:04:61:75:
02:f9:c7:78:3d:76:3b:d5:50:8a:50:18:5f:b8:11:36:36:ec:
dc:d0:14:b5:19:c3:3b:f8:53:b7:6e:50:63:cb:61:a1:94:97:
7c:5d:6a:d5:6a:b0:78:ed:48:ea:00:aa:26:16:f2:87:ea:38:
3a:42:06:9c:a1:f0:c2:25:73:ca:2c:16:68:04:7e:df:74:f9:
13:9e:c2:8e:7c:93:b9:f7:0a:61:dd:d0:85:04:c8:0a:6c:e9:
38:a1:57:25:2d:82:df:e4:b0:cb:c9:b0:c6:32:9c:a2:0a:52:
3e:1e:df:54
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgISAY0MGP4OWyFNHBmreP0tCuC8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwMTE1MDc0OTQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNmE2OTUyMTNiODRlZjJhNmFlMTQ4NWMwMDU3Njc3MDczZmFhMmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9fHf2ea1oDqMg8mZmQapqs2PDD3
wRgFN3lNNTvB4JjsvMhrJEXoYdAUzi+fF6KdtBRYGGK/ZDkWdkX1BaSBKoLF9JA6
73riVDDbG/DJtALYSiKTgb6K0SC8Hz6D0TalI5QneZrOLYqdEHWN3zB2/GiCBW47
gEiy07JYBlnDkVOqWsgi0UoDzE1oPHrXAZrSHyTmuFtjoGJFDHVoG8jDyyoq1n5Y
3LcLhaMA36m7+OMcLA6AlLk558Y7Tm8vPskqGpGT9vqGThPG5jfI8OTaJubar0q/
PuTwD/7idiF7HTh9Q7ccFyYGA+jMEUCYDs4jt6ACy9OCbqWpLQQDB7HknQIDAQAB
o4ICqTCCAqUwHQYDVR0OBBYEFAamlSE7hO8qauFIXABXZ3Bz+qLUMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvQnFhVklUdUU3eXBxNFVoY0FGZG5jSFA2b3RRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG+BggrBgEFBQcBBwEB/wSBrjCBqzCBqAQCAAIwgaEDBQMq
BjXAAwUDKgY7wAMFAyoGUoADBQMqCUUAAwUDKglJAAMFAyoJcwADBQMqCXUAAwUD
Kgl7AAMFAyoJtwADBQMqDSrAAwUDKg2pwAMFAyoNt0ADBQMqEy1AAwUDKhMtwAMF
AyoTL0ADBQMqE5GAAwUDKhOWgAMFAyoTxwADBQMqE8kAAwUDKhPRAAMFAyoT1wAD
BQMqE9kAAwUDKhP7ADANBgkqhkiG9w0BAQsFAAOCAQEAn944hmI/M3xAKdH4G5eG
V2PPUMHRTKNbl5GazWCpugzQRT38AYYfseLaHb0z3e45XinTxuphnKXGM39cRNvW
r6i3w8rstJyd27wExo+cw8tmNPdBNHWNTowP59eSHtsEM72A2HQPa7zcAIzXO/Cg
BXgjwO22frjEt2saoxLAL3NacCKL6tE7s/ca2RVfBGF1AvnHeD12O9VQilAYX7gR
Njbs3NAUtRnDO/hTt25QY8thoZSXfF1q1WqweO1I6gCqJhbyh+o4OkIGnKHwwiVz
yiwWaAR+33T5E57CjnyTufcKYd3QhQTICmzpOKFXJS2C3+Swy8mwxjKcogpSPh7f
VA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:17:23 2025 by rpki-client