Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/e1E0gQMU4NcrxYXy74wVl9-KRvw.roa
File: e1E0gQMU4NcrxYXy74wVl9-KRvw.roa (raw, json)
Hash identifier: RKLoG+X0QrZor5Fkss73HSzD54p8QKUAf7j8YqdsnRs=
Subject key identifier: 7B:51:34:81:03:14:E0:D7:2B:C5:85:F2:EF:8C:15:97:DF:8A:46:FC
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0194266C2A9E745D43A465034C3A9D34A4B6
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/e1E0gQMU4NcrxYXy74wVl9-KRvw.roa
Signing time: Thu 02 Jan 2025 09:50:10 +0000
ROA not before: Thu 02 Jan 2025 09:50:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 149875
IP address blocks: 5.39.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Feb 2025 11:39:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:2a:9e:74:5d:43:a4:65:03:4c:3a:9d:34:a4:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jan 2 09:50:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7b5134810314e0d72bc585f2ef8c1597df8a46fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0d:e9:33:0c:31:8f:ab:af:ed:54:18:8b:51:
ed:7f:9e:f1:32:9b:be:60:d5:42:cb:00:67:5e:a2:
5f:73:30:6a:c1:92:89:ba:80:4b:d8:ae:53:76:31:
4d:40:a0:6f:da:3d:5a:77:63:9f:7b:ba:78:32:52:
25:44:3e:db:da:85:9a:1f:10:86:fd:5a:02:85:6f:
c7:0e:ae:c1:06:d7:34:08:2c:b7:e8:1a:ce:e3:ec:
7d:02:a9:34:c2:ab:b3:ba:f7:d2:01:55:a5:94:96:
65:a1:5e:13:76:3d:5a:3a:8d:a3:b9:a2:5e:e1:5a:
20:04:b7:9c:4d:a8:0c:40:4b:23:20:ab:ef:4c:a4:
2a:42:32:02:b3:ab:26:c4:03:99:80:25:71:f9:a5:
cb:46:a7:f9:c2:b2:15:88:8d:f7:5e:76:23:26:ee:
73:99:c0:60:91:9e:70:43:76:72:87:1d:e9:b6:8e:
06:f5:8c:fb:29:5c:b0:84:d5:0f:38:6b:2a:29:08:
7c:01:77:25:d9:c9:cf:1d:19:56:5e:38:89:ab:58:
47:37:c7:72:ca:34:c0:8f:36:84:25:3d:2d:b1:e8:
da:a5:0d:2f:0d:4a:0b:06:10:64:55:cd:e8:46:3f:
e4:78:1a:da:be:19:08:d4:2f:ae:d3:05:ea:10:55:
05:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:51:34:81:03:14:E0:D7:2B:C5:85:F2:EF:8C:15:97:DF:8A:46:FC
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/e1E0gQMU4NcrxYXy74wVl9-KRvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.250.0/24
Signature Algorithm: sha256WithRSAEncryption
42:10:bb:40:6f:da:ac:a4:85:4e:fe:03:67:f3:99:15:2a:54:
d5:ec:05:d3:b3:ed:b7:52:a4:be:0f:cc:74:26:30:7c:06:3d:
d3:cd:9e:f5:9a:0b:d5:68:81:6a:f5:d6:24:e8:c2:48:96:b9:
f9:91:c5:31:f8:c8:bd:79:1a:4e:5c:84:0b:23:c4:72:7f:0a:
3a:7b:c8:e7:e5:a6:36:28:49:ea:4b:06:03:30:17:9a:24:8c:
44:73:e4:b9:8d:0d:63:f2:b6:93:7b:88:63:57:d5:ac:94:df:
0d:e6:04:e7:2d:aa:7b:63:2c:87:77:75:ca:b7:ef:95:cc:55:
3d:5f:a4:7e:e0:7b:9d:54:cb:e6:b7:f4:e5:cd:6a:65:d6:aa:
41:44:2c:8b:7c:91:08:3b:7b:5e:31:3e:cc:27:58:11:91:ab:
63:bf:51:7e:e9:1c:83:d9:c4:68:c4:8a:0e:84:83:ab:14:3c:
06:bf:cb:7f:89:d0:7c:b7:16:90:71:32:32:0f:87:9d:0c:44:
bf:6a:2f:33:83:58:4b:08:ea:47:35:8a:7c:3b:05:e3:e7:f5:
5f:22:d1:89:e0:32:86:4b:7c:25:27:a3:3e:8f:83:9b:c6:82:
17:47:55:28:fb:71:b0:31:3d:81:fc:2b:2b:d7:c9:49:07:83:
07:da:ff:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 15:28:29 2025 by rpki-client