Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/imLaWStpIqdMtiPHfJMAgJm3kkk.roa
File: imLaWStpIqdMtiPHfJMAgJm3kkk.roa (raw, json)
Hash identifier: 4YgnGR8tDmSQXRRShxgkhdz5855uctAIL/B0tIfSKtc=
Subject key identifier: 8A:62:DA:59:2B:69:22:A7:4C:B6:23:C7:7C:93:00:80:99:B7:92:49
Certificate issuer: /CN=051f29462e7a7da7eb5f45da7873f14e403fe3ab
Certificate serial: 0197259BC5909441AC37B3699EE94C35DBBE
Authority key identifier: 05:1F:29:46:2E:7A:7D:A7:EB:5F:45:DA:78:73:F1:4E:40:3F:E3:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BR8pRi56fafrX0XaeHPxTkA_46s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/imLaWStpIqdMtiPHfJMAgJm3kkk.roa
Signing time: Sat 31 May 2025 09:10:55 +0000
ROA not before: Sat 31 May 2025 09:10:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29802
IP address blocks: 45.11.188.0/24 maxlen: 24
188.209.132.0/24 maxlen: 24
188.209.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Jun 2025 20:26:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:25:9b:c5:90:94:41:ac:37:b3:69:9e:e9:4c:35:db:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=051f29462e7a7da7eb5f45da7873f14e403fe3ab
Validity
Not Before: May 31 09:10:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a62da592b6922a74cb623c77c93008099b79249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7a:fe:1a:2e:3f:6d:bd:24:ae:fe:ed:2a:81:
e9:73:20:23:09:75:42:b1:55:cd:a1:cd:3d:a4:42:
da:b0:20:14:1c:f2:e8:30:22:30:20:7a:66:e8:ef:
76:b8:df:ac:7f:9f:2a:95:ce:48:17:12:25:8f:9e:
26:57:c1:45:c5:7f:02:1a:b3:b4:af:ca:f3:8e:ed:
97:8e:19:d1:4e:11:43:65:2e:da:4a:a4:ae:a9:6a:
df:02:71:c0:fa:85:02:82:38:94:fd:26:b3:14:f4:
37:23:16:b6:8e:84:78:c5:7d:de:7d:de:3e:be:83:
26:51:c0:79:c3:0f:85:dc:cb:ad:e3:f6:4f:8f:ed:
77:cc:2c:95:c9:9e:c8:ea:2c:04:13:9d:65:35:0e:
16:7d:c5:69:6f:d6:45:8f:c2:1b:88:ca:48:07:78:
39:7a:e6:9e:70:15:6c:31:25:b4:04:30:f5:19:c8:
69:f2:86:db:9e:a9:1a:a4:44:8c:af:b0:28:22:6f:
89:78:bf:08:0f:be:70:d1:5f:cf:fd:94:51:07:28:
6b:59:9c:92:38:76:0c:b3:09:60:8f:ce:b2:24:f3:
51:18:2c:b1:11:ce:24:24:b3:4a:78:97:0e:bd:e1:
83:85:49:d8:73:2f:bd:21:86:95:5b:b0:75:2a:11:
21:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:62:DA:59:2B:69:22:A7:4C:B6:23:C7:7C:93:00:80:99:B7:92:49
X509v3 Authority Key Identifier:
keyid:05:1F:29:46:2E:7A:7D:A7:EB:5F:45:DA:78:73:F1:4E:40:3F:E3:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BR8pRi56fafrX0XaeHPxTkA_46s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/imLaWStpIqdMtiPHfJMAgJm3kkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/BR8pRi56fafrX0XaeHPxTkA_46s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.188.0/24
188.209.132.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:cb:8e:e7:b2:e1:f8:97:73:af:ea:1d:ef:7d:56:41:54:93:
42:4e:e9:f9:7c:a8:45:bd:7c:db:5b:f3:88:39:95:90:21:d3:
d6:e0:21:e8:3a:6d:25:44:67:13:46:1a:98:81:11:97:75:c8:
15:56:c5:a8:59:f4:a9:31:91:d5:97:50:5e:b1:ba:d6:48:3b:
52:54:1c:d0:1a:93:35:e2:1d:8a:9e:9c:eb:b7:1b:d0:af:a1:
6c:1c:2c:8e:2a:20:df:9d:e5:2f:d4:d3:e0:f9:a8:cf:52:22:
d4:c4:d8:c9:18:29:af:f2:0e:14:73:9d:59:fd:d0:59:a6:5b:
1e:94:37:54:22:15:1f:06:e3:d8:7f:1c:19:57:95:4e:68:97:
9e:8d:ce:c4:8e:53:1d:26:75:c8:6a:af:07:81:cb:db:e2:c3:
ce:ea:af:4b:c8:81:11:2f:c2:33:58:d5:1e:d8:19:a4:ce:67:
1c:85:a5:2a:64:75:b0:42:f5:2a:ad:ff:53:e7:c1:17:d8:e1:
51:f3:f9:78:7f:cd:7f:50:77:01:a9:eb:dc:08:3a:b4:f8:28:
a1:03:ae:5a:97:31:81:1f:27:41:c7:dd:01:82:1e:98:a7:ae:
6a:1c:6a:4b:ca:ea:1d:ca:da:9c:fb:5a:a9:9b:4d:95:cc:af:
5f:0f:a6:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:33:23 2025 by rpki-client