Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/qhUE7Flym0ni6cunzjQWKldIbw4.roa
File: qhUE7Flym0ni6cunzjQWKldIbw4.roa (raw, json)
Hash identifier: FKmd2umoJ5YLKzoyCELGFLzWm489+/H3+109jQFimJU=
Subject key identifier: AA:15:04:EC:59:72:9B:49:E2:E9:CB:A7:CE:34:16:2A:57:48:6F:0E
Certificate issuer: /CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Certificate serial: 0197937C8FDE73443648A1A455E11968A598
Authority key identifier: 4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/qhUE7Flym0ni6cunzjQWKldIbw4.roa
Signing time: Sat 21 Jun 2025 17:15:03 +0000
ROA not before: Sat 21 Jun 2025 17:15:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 2001:67c:64:ffff:0:197:6851:789c/128 maxlen: 128
Validation: Failed, certificate revoked on Sat 21 Jun 2025 18:06:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:93:7c:8f:de:73:44:36:48:a1:a4:55:e1:19:68:a5:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e13d0c0a703e09cda64c12b08dda2b749a0429c
Validity
Not Before: Jun 21 17:15:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aa1504ec59729b49e2e9cba7ce34162a57486f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c5:78:c9:7b:87:f1:b9:42:c9:f4:09:3d:58:
42:d3:d5:30:ba:62:4e:f3:07:1a:6f:09:c4:cc:ac:
53:50:68:ad:e6:c4:6a:36:74:6b:02:2e:75:38:64:
b4:17:fd:01:1a:b9:ca:b3:13:e6:8b:83:40:53:ee:
96:d5:55:16:e5:21:1a:1d:2d:38:94:ac:b5:98:38:
e8:fe:53:d8:70:c4:2d:69:ae:3a:b0:b6:3b:62:a6:
89:3f:51:eb:c8:aa:da:e2:a7:21:ea:df:39:c8:5a:
a6:99:a5:6d:2d:c6:26:3b:ca:11:a7:3c:a3:bd:db:
2c:6b:e0:c3:0d:26:9e:ff:6d:ec:50:35:8a:bc:26:
16:56:38:4f:7f:51:dd:83:4d:2f:f9:1a:01:8d:24:
92:a5:34:95:81:cb:9f:79:0e:94:7b:b8:24:5e:e9:
bf:5e:2a:c7:d2:06:2a:45:02:f1:ae:32:71:92:af:
4a:f2:ff:d2:93:eb:27:6f:99:02:57:72:21:2f:3a:
f3:fd:48:c6:6c:c5:8a:91:63:81:42:6d:f5:d5:a6:
37:30:2e:ed:3d:6f:92:93:fa:18:4d:f4:e5:5a:74:
ec:8b:30:f9:cf:9d:30:27:c8:04:3e:49:f6:8a:3c:
27:63:08:20:11:b4:ba:74:9b:6c:3b:46:23:10:a2:
18:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:15:04:EC:59:72:9B:49:E2:E9:CB:A7:CE:34:16:2A:57:48:6F:0E
X509v3 Authority Key Identifier:
keyid:4E:13:D0:C0:A7:03:E0:9C:DA:64:C1:2B:08:DD:A2:B7:49:A0:42:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ThPQwKcD4JzaZMErCN2it0mgQpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/qhUE7Flym0ni6cunzjQWKldIbw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/ae049a-078b-42ed-a28f-6aa443528ce5/1/ThPQwKcD4JzaZMErCN2it0mgQpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:64:ffff:0:197:6851:789c/128
Signature Algorithm: sha256WithRSAEncryption
62:6d:6d:4f:3e:04:d8:4b:02:03:42:39:14:f5:2d:85:42:e4:
27:39:7a:90:6d:fe:c7:03:98:68:16:0b:58:9d:bd:de:da:4b:
91:73:20:4e:34:91:8c:11:47:f5:61:54:69:07:76:03:37:0e:
a2:90:b9:52:fb:89:e3:86:a8:bb:f4:d2:f0:57:f8:d8:ea:8d:
0e:1c:5c:09:ca:6a:ed:8e:3a:5f:a4:fe:4e:c8:38:c8:8e:36:
1b:5f:bc:09:41:87:1d:8e:1e:cc:8d:27:d9:0f:27:79:18:dd:
42:44:c9:99:eb:16:a8:a9:d0:c2:da:cc:c8:59:13:ad:73:0d:
ca:4a:fa:e1:5d:05:90:85:2d:ba:31:34:82:b3:6c:c3:ed:5e:
5b:45:75:ae:83:dc:d8:70:1e:ae:f0:14:41:04:2a:b0:9f:5e:
02:3e:56:c9:0d:93:70:00:f4:d1:48:af:86:ad:06:5d:ed:c8:
99:fb:8e:02:fc:66:4f:f3:ba:0a:52:df:41:c2:61:c8:59:bd:
77:32:fe:87:14:f6:ae:19:43:60:6d:65:cc:c0:a1:73:51:e1:
b7:8c:1d:3f:48:00:20:0d:9b:e1:6c:59:89:99:9d:7a:60:de:
2b:b3:31:59:41:e1:16:b6:06:ae:46:df:29:fa:21:e5:15:d8:
1c:2e:c5:27
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jul 5 15:50:53 2025 by rpki-client