Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/ad05f2-ab39-4132-8492-fd814455a868/1/zv81fkI3Q2TSXwjuxFrY0IWnK0I.roa
File: zv81fkI3Q2TSXwjuxFrY0IWnK0I.roa (raw, json)
Hash identifier: UofIshPX+IU+9j1hlx7jiFm9OZR+CRB18/MyGsvvXmM=
Subject key identifier: CE:FF:35:7E:42:37:43:64:D2:5F:08:EE:C4:5A:D8:D0:85:A7:2B:42
Certificate issuer: /CN=363f09508fdf256448219b284bb09b23b2b51396
Certificate serial: 0194BC895DA340739C372429527E04067B80
Authority key identifier: 36:3F:09:50:8F:DF:25:64:48:21:9B:28:4B:B0:9B:23:B2:B5:13:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nj8JUI_fJWRIIZsoS7CbI7K1E5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/ad05f2-ab39-4132-8492-fd814455a868/1/zv81fkI3Q2TSXwjuxFrY0IWnK0I.roa
Signing time: Fri 31 Jan 2025 13:25:06 +0000
ROA not before: Fri 31 Jan 2025 13:25:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12989
IP address blocks: 2.59.22.0/24 maxlen: 24
212.104.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Feb 2025 16:47:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bc:89:5d:a3:40:73:9c:37:24:29:52:7e:04:06:7b:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=363f09508fdf256448219b284bb09b23b2b51396
Validity
Not Before: Jan 31 13:25:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ceff357e42374364d25f08eec45ad8d085a72b42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d0:2d:45:61:3c:4f:d3:ac:b5:30:92:3e:66:
6b:2b:29:e7:34:ef:b8:12:78:44:54:9f:50:77:ce:
82:6f:01:21:4f:f7:ff:10:12:44:d9:b9:b0:0b:ff:
74:7f:b8:69:f6:85:69:aa:c4:13:04:96:6c:62:24:
e5:cc:1a:00:38:54:5a:ff:c1:15:ef:b8:e3:3c:da:
fe:27:73:db:e8:54:22:dd:04:cc:48:4a:f3:b2:1d:
9c:6d:ed:c4:f0:9c:81:2d:bd:30:cb:08:ee:2f:ac:
2e:6d:67:64:e8:4e:20:7d:f6:c6:65:20:a8:8c:8f:
60:f7:73:4a:c1:e9:b6:3d:73:4f:1a:1c:5c:38:63:
b4:f7:23:8d:0b:8e:72:56:49:bf:8b:c2:34:c4:b9:
8b:67:56:ea:40:3f:81:c4:42:9e:f4:23:9f:e6:81:
49:c4:d1:09:d3:89:b6:5d:51:c8:0c:02:8f:24:7f:
ff:66:ca:27:32:c5:a5:ff:62:80:c2:fa:d7:1c:e1:
77:69:87:c7:66:bd:f1:9a:b6:2b:4f:f5:3a:ab:f8:
04:b6:2f:26:da:0b:d4:cc:fe:0f:dc:66:db:32:9a:
34:76:6a:25:16:08:fb:fb:92:b7:63:75:5d:38:92:
cd:85:23:17:46:8f:65:4e:71:ca:60:9d:71:b6:c9:
62:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:FF:35:7E:42:37:43:64:D2:5F:08:EE:C4:5A:D8:D0:85:A7:2B:42
X509v3 Authority Key Identifier:
keyid:36:3F:09:50:8F:DF:25:64:48:21:9B:28:4B:B0:9B:23:B2:B5:13:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nj8JUI_fJWRIIZsoS7CbI7K1E5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/ad05f2-ab39-4132-8492-fd814455a868/1/zv81fkI3Q2TSXwjuxFrY0IWnK0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/ad05f2-ab39-4132-8492-fd814455a868/1/Nj8JUI_fJWRIIZsoS7CbI7K1E5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.22.0/24
212.104.140.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:8c:04:79:a7:8c:4a:ec:4d:a5:23:b8:2f:9d:5a:1a:f9:ea:
9d:bc:35:a7:fb:20:f2:a8:d4:26:77:d3:87:62:50:00:56:14:
0a:95:5c:3c:b5:3d:c7:a0:8a:bc:de:77:fe:43:45:70:56:d9:
44:d4:f0:0d:6b:4d:9b:87:4a:07:d4:05:f8:30:37:e3:21:a0:
c1:fd:6a:e7:ed:16:7d:fc:ac:81:75:bf:da:f2:26:5b:46:6c:
40:a8:a7:ab:67:76:3c:6c:10:8b:09:1b:11:f4:03:09:3b:3a:
1f:cc:4e:7b:b0:4c:0e:2e:7c:df:3d:f4:9d:8c:d7:ca:1a:9b:
9d:ed:f9:49:a4:33:34:3e:89:13:40:f5:0f:49:61:6d:d3:26:
57:ae:ad:eb:d5:d0:28:d2:04:1f:8c:0c:86:53:01:38:0a:22:
7f:17:7f:9c:54:da:9f:4a:8d:93:ca:2a:d8:52:dd:67:ec:e4:
73:92:db:86:64:88:d0:26:b6:07:56:0e:d6:38:27:b4:3a:ee:
ee:7d:b6:d3:01:c3:fc:3f:86:7d:09:7d:a7:ce:c4:e6:26:cd:
ba:75:82:ed:89:97:6f:37:f1:80:67:ce:41:80:f0:f8:0a:dd:
79:0c:87:a1:f0:87:6c:5c:20:30:9d:1e:cc:87:08:d2:a5:ec:
d8:7b:81:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 21:12:00 2025 by rpki-client