Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/EhPNRLZzgEMTTqJDRWhQ5YFhUGA.roa
File: EhPNRLZzgEMTTqJDRWhQ5YFhUGA.roa (raw, json)
Hash identifier: 8MmS0SD5v7wju4owCVVaZdXHT+hV+JgAoOwSFPv0p/Y=
Subject key identifier: 12:13:CD:44:B6:73:80:43:13:4E:A2:43:45:68:50:E5:81:61:50:60
Certificate issuer: /CN=16055801b775e774306321455fd463fbd9273c4c
Certificate serial: 019566EA353EA866372A786FA72B503E18EC
Authority key identifier: 16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/EhPNRLZzgEMTTqJDRWhQ5YFhUGA.roa
Signing time: Wed 05 Mar 2025 15:26:19 +0000
ROA not before: Wed 05 Mar 2025 15:26:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215727
IP address blocks: 144.56.7.0/24 maxlen: 24
144.56.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Mar 2025 16:12:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:66:ea:35:3e:a8:66:37:2a:78:6f:a7:2b:50:3e:18:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16055801b775e774306321455fd463fbd9273c4c
Validity
Not Before: Mar 5 15:26:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1213cd44b6738043134ea243456850e581615060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:08:94:ed:f5:87:62:66:72:3c:9b:a0:2f:a1:
a3:89:c5:9a:66:ca:e4:37:9a:50:62:4c:1d:1e:35:
fc:41:76:e1:e6:c4:6e:39:46:86:84:b0:2a:c2:99:
28:4f:5c:14:b7:b0:20:6e:ef:e2:da:5e:0f:3a:c2:
f7:be:4f:10:1a:6c:a4:2f:f2:d8:a6:49:44:45:b0:
3a:11:d4:08:0a:48:c1:29:dc:0f:a9:2c:bd:ed:d9:
c5:f1:4f:e9:80:56:fa:96:cc:26:13:b8:15:e3:49:
69:2a:3b:27:8d:84:83:07:8b:ba:a8:f1:bd:4d:11:
06:3b:b5:07:46:a1:02:dd:a8:81:6d:39:8e:68:ae:
01:fe:a6:aa:cb:5f:03:ea:dc:62:5a:85:b3:7a:9b:
e8:d2:37:fb:70:79:62:05:0e:b5:05:46:ff:4b:87:
55:42:3b:d5:c9:ca:cb:60:b7:c1:62:96:d8:30:63:
5b:6c:9e:10:1d:68:c9:61:16:8d:49:b8:69:74:62:
8f:5b:1f:bb:92:5f:d7:bb:90:cb:db:2c:ca:b7:7f:
4e:9e:c2:2e:00:f9:42:92:6e:93:06:eb:b0:06:b2:
7c:4c:d1:af:29:cf:f8:85:74:80:af:9c:ec:f3:fa:
77:61:8c:3b:7e:f6:ff:e0:de:b7:c5:7e:f4:5d:4d:
17:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:13:CD:44:B6:73:80:43:13:4E:A2:43:45:68:50:E5:81:61:50:60
X509v3 Authority Key Identifier:
keyid:16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/EhPNRLZzgEMTTqJDRWhQ5YFhUGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.56.7.0/24
144.56.12.0/24
Signature Algorithm: sha256WithRSAEncryption
35:0d:84:e4:de:f4:ee:66:d2:35:f3:ac:f4:05:a7:4a:92:67:
cb:a5:3e:de:10:8e:69:1a:6b:a1:a4:1c:14:4b:e8:79:86:47:
34:de:7d:70:90:e5:c6:3d:54:e2:76:21:a3:b9:ec:8f:13:dc:
24:2d:62:2a:a3:e1:5e:19:31:21:03:fe:82:5d:2c:77:17:4d:
83:9e:29:47:a3:6f:f7:8f:47:00:16:59:19:bf:7d:60:1a:9c:
e2:95:d9:30:a6:b7:b3:b1:05:17:51:fb:0b:2e:7b:ed:70:02:
7a:fd:e1:55:1c:5b:53:f0:2b:88:52:91:f6:bf:0c:da:65:65:
4d:56:55:49:fe:2e:74:7b:a6:d5:7e:d5:05:b3:46:bf:3d:b8:
43:00:d5:cd:b5:18:bf:f7:88:a9:ee:a1:06:d0:c9:06:5e:3a:
3a:37:49:70:62:e2:6d:68:80:23:5d:90:be:c4:8b:6f:08:cc:
ea:ac:65:60:5d:d2:6e:ac:fd:53:05:6f:32:16:c3:21:b2:61:
29:6b:51:a7:a2:93:aa:c8:a2:32:62:60:35:25:f2:3e:6f:8a:
1f:d5:25:50:8d:e0:9c:00:90:05:c3:12:99:ec:03:56:71:d3:
08:54:66:7b:1d:08:fe:57:30:13:24:44:e5:f0:85:a0:45:db:
d0:65:80:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:22:05 2025 by rpki-client