Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/blTyYItR6jsUW4uS3_JkbwZqA7A.roa
File: blTyYItR6jsUW4uS3_JkbwZqA7A.roa (raw, json)
Hash identifier: HGxVoMDB++kwiZDfUW2JxzB4bmbo6bs3Fjz/i3iA2o8=
Subject key identifier: 6E:54:F2:60:8B:51:EA:3B:14:5B:8B:92:DF:F2:64:6F:06:6A:03:B0
Certificate issuer: /CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Certificate serial: 01977C1766A03C5F62030764A8C23A0A3803
Authority key identifier: 4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/blTyYItR6jsUW4uS3_JkbwZqA7A.roa
Signing time: Tue 17 Jun 2025 04:13:17 +0000
ROA not before: Tue 17 Jun 2025 04:13:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:197:6851:789c/128 maxlen: 128
Validation: Failed, certificate revoked on Tue 17 Jun 2025 05:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7c:17:66:a0:3c:5f:62:03:07:64:a8:c2:3a:0a:38:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Validity
Not Before: Jun 17 04:13:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e54f2608b51ea3b145b8b92dff2646f066a03b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:2c:88:17:77:e4:56:0c:59:8e:cc:68:49:d1:
18:a7:5c:c4:3d:c5:e0:fa:eb:38:38:c1:0f:7f:b4:
73:2c:b2:dc:fb:05:75:ba:3a:36:ec:be:15:a2:78:
ac:c8:3c:18:41:27:98:7c:41:34:ea:0f:4f:fb:cc:
58:f4:89:08:b9:11:22:d7:91:51:6a:7f:68:3e:f6:
f6:ec:8c:a5:5b:d8:8f:9c:40:62:23:4e:ef:7e:60:
d2:3a:9a:bc:f8:5d:39:35:28:8e:16:b8:e8:8a:0b:
c9:51:9d:f3:d5:64:07:dd:bd:db:59:c9:dc:cc:c8:
2d:57:c7:99:96:d7:78:b0:e1:a3:3a:4f:5a:3d:b2:
ee:9a:b8:24:63:53:f6:f2:13:ba:e6:26:29:52:28:
68:d5:86:8c:33:3c:45:4a:c9:73:26:3f:6b:53:50:
14:8c:78:76:3f:14:55:60:27:9d:a9:56:07:e0:e6:
b0:91:c5:d7:77:ec:c3:91:49:a8:f7:ef:a1:ae:ac:
8a:5a:6e:40:6c:56:d4:04:65:92:a1:52:2a:5c:44:
1b:52:b8:d6:44:02:b8:ef:97:1e:4c:08:66:50:4d:
a8:3d:aa:b8:26:1f:3b:9a:53:49:4b:2c:ad:45:0d:
fc:15:fb:b3:85:45:b2:85:6d:0c:8c:ba:12:5b:fc:
49:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:54:F2:60:8B:51:EA:3B:14:5B:8B:92:DF:F2:64:6F:06:6A:03:B0
X509v3 Authority Key Identifier:
keyid:4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/blTyYItR6jsUW4uS3_JkbwZqA7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ThPQwKcD4JzaZMErCN2it0mgQpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:197:6851:789c/128
Signature Algorithm: sha256WithRSAEncryption
76:c6:fb:41:8b:76:04:40:88:b6:84:e4:49:8e:7d:c8:8c:73:
ab:86:d0:fa:7b:14:89:7a:7a:35:65:e1:5a:db:2e:57:37:6c:
d8:d1:41:72:d0:72:85:47:45:9f:1e:6c:65:e3:03:43:e6:9b:
8e:dc:a6:a1:cb:ae:91:3b:61:cd:4f:50:c3:0b:d1:90:e0:d5:
c6:92:a7:21:b9:52:2f:2a:34:1d:bd:73:0f:73:34:27:19:b7:
c5:60:68:79:61:5d:29:19:d7:4f:80:1f:06:ae:cc:d4:19:e6:
6f:47:e4:32:3a:a5:b8:2a:d8:88:76:69:32:50:56:05:c1:dd:
62:26:30:7d:15:eb:3b:e7:24:a4:01:70:db:d7:4b:52:41:94:
b0:f8:4f:a9:d4:dd:b8:c5:dc:23:b3:02:a8:68:fc:7c:ab:49:
29:82:1f:92:8d:67:57:9e:52:f9:83:d5:7f:7d:5a:79:72:52:
e4:d8:6c:0f:f6:90:bb:f3:3d:21:6a:9d:eb:a9:63:58:1f:fb:
f6:66:e6:88:a8:6f:e3:41:ea:03:3e:c9:eb:13:c1:5c:0f:78:
e7:3d:cc:c6:bb:c4:4f:a5:71:1c:87:44:33:c7:44:c6:32:b5:
e2:95:fc:aa:f9:ac:f2:b4:ce:62:0e:bb:7e:00:fd:50:22:8b:
07:e4:97:c6
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZd8F2agPF9iAwdkqMI6CjgDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlMTNkMGMwYTcwM2UwOWNkYTY0YzEyYjA4ZGRhMmI3NDlh
MDQyOWMwHhcNMjUwNjE3MDQxMzE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTU0ZjI2MDhiNTFlYTNiMTQ1YjhiOTJkZmYyNjQ2ZjA2NmEwM2IwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3yyIF3fkVgxZjsxoSdEYp1zEPcXg
+us4OMEPf7RzLLLc+wV1ujo27L4VonisyDwYQSeYfEE06g9P+8xY9IkIuREi15FR
an9oPvb27IylW9iPnEBiI07vfmDSOpq8+F05NSiOFrjoigvJUZ3z1WQH3b3bWcnc
zMgtV8eZltd4sOGjOk9aPbLumrgkY1P28hO65iYpUiho1YaMMzxFSslzJj9rU1AU
jHh2PxRVYCedqVYH4OawkcXXd+zDkUmo9++hrqyKWm5AbFbUBGWSoVIqXEQbUrjW
RAK475ceTAhmUE2oPaq4Jh87mlNJSyytRQ38FfuzhUWyhW0MjLoSW/xJcwIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFG5U8mCLUeo7FFuLkt/yZG8GagOwMB8GA1UdIwQY
MBaAFE4T0MCnA+Cc2mTBKwjdordJoEKcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGhQUXdLY0Q0SnphWk1FckNOMml0MG1nUXB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9hZTA0OWEtMDc4Yi00MmVkLWEyOGYt
NmFhNDQzNTI4Y2U1LzEvYmxUeVlJdFI2anNVVzR1UzNfSmtid1pxQTdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9hZTA0OWEtMDc4Yi00MmVkLWEyOGYtNmFhNDQzNTI4Y2U1
LzEvVGhQUXdLY0Q0SnphWk1FckNOMml0MG1nUXB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAAjATAxEAIAEGfABk
//8AAAGXaFF4nDANBgkqhkiG9w0BAQsFAAOCAQEAdsb7QYt2BECItoTkSY59yIxz
q4bQ+nsUiXp6NWXhWtsuVzds2NFBctByhUdFnx5sZeMDQ+abjtymocuukTthzU9Q
wwvRkODVxpKnIblSLyo0Hb1zD3M0Jxm3xWBoeWFdKRnXT4AfBq7M1Bnmb0fkMjql
uCrYiHZpMlBWBcHdYiYwfRXrO+ckpAFw29dLUkGUsPhPqdTduMXcI7MCqGj8fKtJ
KYIfko1nV55S+YPVf31aeXJS5NhsD/aQu/M9IWqd66ljWB/79mbmiKhv40HqAz7J
6xPBXA945z3MxrvET6VxHIdEM8dExjK14pX8qvms8rTOYg67fgD9UCKLB+SXxg==
-----END CERTIFICATE-----
Generated at Sat Jul 5 15:28:34 2025 by rpki-client