Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qSix4SibnjC7yfGkgHs7gnfAarw.roa
File: qSix4SibnjC7yfGkgHs7gnfAarw.roa (raw, json)
Hash identifier: 2uKxnhpke4DQOLQzFKZNUDagVYs6bCqFDAIXvHJQ2g4=
Subject key identifier: A9:28:B1:E1:28:9B:9E:30:BB:C9:F1:A4:80:7B:3B:82:77:C0:6A:BC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 01970CF8B378092313A0599E2432B64BC852
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qSix4SibnjC7yfGkgHs7gnfAarw.roa
Signing time: Mon 26 May 2025 14:21:54 +0000
ROA not before: Mon 26 May 2025 14:21:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6939
IP address blocks: 2a0f:b241:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 27 May 2025 16:49:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:0c:f8:b3:78:09:23:13:a0:59:9e:24:32:b6:4b:c8:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: May 26 14:21:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a928b1e1289b9e30bbc9f1a4807b3b8277c06abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e7:00:e1:14:d0:f8:9f:0e:16:ae:ac:1c:e5:
15:0f:22:0c:5b:13:d8:97:58:d0:14:55:bb:a6:37:
9e:e0:6b:ed:09:e0:83:ed:38:97:33:c3:8c:42:30:
7b:80:16:d2:9f:c6:94:b4:8c:ad:ea:59:aa:4d:88:
27:5c:32:2f:b1:88:cd:e1:e7:db:71:7b:39:88:e4:
67:ef:69:56:2b:45:81:11:d7:fa:85:60:a8:d4:cf:
69:c3:5d:bf:97:78:82:ef:0c:fa:f9:4a:ed:35:d1:
a2:2c:d7:55:0c:01:6a:78:80:93:5d:a3:c8:7d:f5:
da:9a:b2:95:b5:2a:73:c5:94:c0:ff:f6:52:b3:96:
00:81:7b:cc:0d:be:ed:e7:15:86:4b:9f:b5:86:d2:
61:b1:0f:4d:36:73:28:60:86:24:f6:43:78:51:23:
e2:5f:0f:3c:36:9c:3c:9a:35:dd:57:94:dd:9f:cf:
28:69:4c:01:19:43:00:09:ec:51:60:10:f9:a0:29:
fc:b0:2a:b2:91:a8:7c:2e:1f:24:84:c0:65:ba:f3:
9a:0b:3b:19:a2:e7:54:25:09:8a:fd:9f:3a:c7:8d:
90:4f:a6:54:2e:2f:8b:a1:1b:54:7e:66:4d:de:15:
e1:9d:d3:c3:c3:35:79:e7:40:0a:d7:85:5d:9e:b8:
79:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:28:B1:E1:28:9B:9E:30:BB:C9:F1:A4:80:7B:3B:82:77:C0:6A:BC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qSix4SibnjC7yfGkgHs7gnfAarw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:6::/48
Signature Algorithm: sha256WithRSAEncryption
22:10:50:19:d4:7d:b6:da:e7:e7:96:cc:fd:4f:78:26:94:f2:
75:c9:85:9b:84:62:59:48:5b:0c:4f:11:a4:b2:2d:d3:5b:a9:
70:62:21:cf:d8:87:d6:82:c8:32:3e:fe:76:cd:0c:1c:69:40:
e9:56:83:7a:e3:0c:9a:df:f3:69:79:44:1b:8c:e4:5c:53:bf:
26:d7:78:53:85:91:09:25:f5:90:b5:94:77:f3:46:cf:bc:63:
f5:11:40:86:34:27:d5:d6:d7:ca:bf:16:c5:37:63:e1:e0:6f:
44:09:ec:fb:ea:d0:42:9a:27:50:12:43:2a:33:1f:47:23:68:
1e:2e:9a:00:50:96:7a:23:e2:8b:d0:7f:b7:aa:f3:f4:1e:f4:
3a:cd:53:eb:98:58:66:d6:8d:4e:33:fb:c3:6a:4a:29:24:b3:
75:48:4b:cc:94:bf:04:d4:db:74:86:0a:5b:ee:0a:49:b6:45:
5d:1d:ef:05:ed:59:07:40:c8:bb:10:c2:7b:a6:9e:51:bc:9e:
81:63:e0:3c:c6:2b:e7:02:62:47:f9:c3:6a:d8:7f:16:2a:8d:
34:1e:ad:14:06:ec:cf:dc:72:e0:ad:b9:6d:ef:0b:6e:0a:18:
00:fa:7e:7b:4e:d1:af:4b:2d:7d:ae:21:06:06:34:fa:dd:76:
b4:fe:fe:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:02:29 2025 by rpki-client