Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/yulO_HycuAR94jP6jkY7StsRfnY.roa
File: yulO_HycuAR94jP6jkY7StsRfnY.roa (raw, json)
Hash identifier: 0gS7WEJvaDrrh8pE+KGNF/6dphIJWxfkPbgz0NSnIfY=
Subject key identifier: CA:E9:4E:FC:7C:9C:B8:04:7D:E2:33:FA:8E:46:3B:4A:DB:11:7E:76
Certificate issuer: /CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Certificate serial: 019701593C46A7BCA0BBDB9E9BAB004E0EF1
Authority key identifier: 7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/yulO_HycuAR94jP6jkY7StsRfnY.roa
Signing time: Sat 24 May 2025 08:11:54 +0000
ROA not before: Sat 24 May 2025 08:11:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:196:ed5d:8c28/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 24 May 2025 09:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:01:59:3c:46:a7:bc:a0:bb:db:9e:9b:ab:00:4e:0e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7acd817f25893e7f88b3f3affa9152c66d6b6702
Validity
Not Before: May 24 08:11:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cae94efc7c9cb8047de233fa8e463b4adb117e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ed:ae:3e:2e:68:58:d8:8f:d5:fb:72:41:0a:
30:d0:53:c4:71:42:02:4b:2d:c3:81:00:80:a1:43:
ec:2b:56:02:26:ee:09:a2:ee:af:ac:8e:70:97:d0:
9b:d5:0a:8c:f3:75:3c:66:11:b7:fd:33:c3:a7:4f:
77:cc:85:85:c6:23:93:70:ac:79:20:e0:13:36:84:
8f:e5:fd:c9:11:32:a3:3a:64:34:bc:b6:b4:a6:4f:
9e:45:90:f9:32:58:b4:08:5b:a6:5b:ff:2a:3b:9f:
64:8b:8c:23:14:ae:cf:d1:75:db:27:6a:ba:2a:cc:
f4:8e:1b:3a:94:1c:2c:b0:76:43:06:36:af:64:07:
0a:ac:53:e1:d9:e0:d1:1b:c0:94:4c:6e:2b:ee:de:
a8:d8:f6:63:98:31:d4:a8:f4:fe:44:19:a4:7a:fd:
90:81:1d:51:9c:b1:4e:d7:5f:cd:4a:4e:8e:f6:31:
96:72:cb:06:c2:fa:df:39:18:fc:c3:f2:d1:8e:9a:
2a:c4:bd:da:ac:2e:af:b4:84:42:00:18:01:2d:f8:
80:4f:8e:79:57:86:86:86:68:8b:5b:47:56:a3:d0:
37:59:4f:34:c6:7f:66:9a:73:07:4e:fa:0d:d0:4e:
30:62:b9:1f:a9:7f:8c:32:f0:9e:11:7e:42:38:36:
8d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E9:4E:FC:7C:9C:B8:04:7D:E2:33:FA:8E:46:3B:4A:DB:11:7E:76
X509v3 Authority Key Identifier:
keyid:7A:CD:81:7F:25:89:3E:7F:88:B3:F3:AF:FA:91:52:C6:6D:6B:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/es2BfyWJPn-Is_Ov-pFSxm1rZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/yulO_HycuAR94jP6jkY7StsRfnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/c56a1e-326d-4c67-a0b2-90eb95109d89/1/es2BfyWJPn-Is_Ov-pFSxm1rZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:196:ed5d:8c28/128
Signature Algorithm: sha256WithRSAEncryption
15:cf:d6:40:6f:d1:9b:e2:68:6a:69:58:96:05:9e:84:5e:17:
84:d1:b1:f1:b7:b8:b0:c9:29:78:fa:b2:0d:97:25:9a:62:98:
b0:92:9e:79:e9:cb:ba:1d:05:7b:8a:f0:cf:db:5e:59:0a:ff:
82:02:51:76:84:e5:ff:ee:a4:b3:80:fb:26:3f:1f:dd:fb:4a:
38:57:0e:bb:1c:60:be:54:37:ce:55:05:e1:75:d7:b7:3d:fb:
98:00:67:4e:6e:12:64:42:2e:ad:9d:1f:c9:ee:63:c0:0b:cf:
a9:5e:f0:8e:e7:57:19:eb:9a:b1:d9:e9:a7:57:a4:5b:7a:3f:
0f:dc:2a:b0:81:30:73:dc:8f:c8:9a:8d:90:05:2b:4a:5f:91:
d4:df:4c:4e:da:ba:c8:51:a3:b1:ed:58:85:39:54:89:b5:08:
12:89:ab:29:95:c6:41:dd:39:8b:53:27:84:97:3e:61:b6:eb:
34:30:3b:08:1e:87:c7:e2:5c:f9:36:3e:34:0b:74:40:4a:1a:
58:24:33:6d:5a:26:0a:d6:6c:a0:b1:43:8c:16:25:a0:5c:72:
b5:cf:d2:28:87:9f:b3:1e:80:79:a9:a0:2f:da:74:df:f4:cd:
55:ee:ad:80:3f:8c:a7:fa:22:f1:54:2f:60:fb:e4:23:82:80:
43:c3:1b:6d
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZcBWTxGp7ygu9uem6sATg7xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhY2Q4MTdmMjU4OTNlN2Y4OGIzZjNhZmZhOTE1MmM2NmQ2
YjY3MDIwHhcNMjUwNTI0MDgxMTU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYWU5NGVmYzdjOWNiODA0N2RlMjMzZmE4ZTQ2M2I0YWRiMTE3ZTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsu2uPi5oWNiP1ftyQQow0FPEcUIC
Sy3DgQCAoUPsK1YCJu4Jou6vrI5wl9Cb1QqM83U8ZhG3/TPDp093zIWFxiOTcKx5
IOATNoSP5f3JETKjOmQ0vLa0pk+eRZD5Mli0CFumW/8qO59ki4wjFK7P0XXbJ2q6
Ksz0jhs6lBwssHZDBjavZAcKrFPh2eDRG8CUTG4r7t6o2PZjmDHUqPT+RBmkev2Q
gR1RnLFO11/NSk6O9jGWcssGwvrfORj8w/LRjpoqxL3arC6vtIRCABgBLfiAT455
V4aGhmiLW0dWo9A3WU80xn9mmnMHTvoN0E4wYrkfqX+MMvCeEX5CODaN0wIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFMrpTvx8nLgEfeIz+o5GO0rbEX52MB8GA1UdIwQY
MBaAFHrNgX8liT5/iLPzr/qRUsZta2cCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXMyQmZ5V0pQbi1Jc19Pdi1wRlN4bTFyWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9jNTZhMWUtMzI2ZC00YzY3LWEwYjIt
OTBlYjk1MTA5ZDg5LzEveXVsT19IeWN1QVI5NGpQNmprWTdTdHNSZm5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9jNTZhMWUtMzI2ZC00YzY3LWEwYjItOTBlYjk1MTA5ZDg5
LzEvZXMyQmZ5V0pQbi1Jc19Pdi1wRlN4bTFyWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGW7V2MKDANBgkqhkiG9w0BAQsFAAOCAQEAFc/WQG/Rm+JoamlYlgWehF4X
hNGx8be4sMkpePqyDZclmmKYsJKeeenLuh0Fe4rwz9teWQr/ggJRdoTl/+6ks4D7
Jj8f3ftKOFcOuxxgvlQ3zlUF4XXXtz37mABnTm4SZEIurZ0fye5jwAvPqV7wjudX
Geuasdnpp1ekW3o/D9wqsIEwc9yPyJqNkAUrSl+R1N9MTtq6yFGjse1YhTlUibUI
EomrKZXGQd05i1MnhJc+YbbrNDA7CB6Hx+Jc+TY+NAt0QEoaWCQzbVomCtZsoLFD
jBYloFxytc/SKIefsx6AeamgL9p03/TNVe6tgD+Mp/oi8VQvYPvkI4KAQ8MbbQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 16:37:53 2025 by rpki-client