Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/swkS8acABLzH-Qh7rDHOIpeMsow.roa
File: swkS8acABLzH-Qh7rDHOIpeMsow.roa (raw, json)
Hash identifier: qnUEdie/Ot9aNOs+F9zq0kmlcv1bDlkeHTd52M5CUiA=
Subject key identifier: B3:09:12:F1:A7:00:04:BC:C7:F9:08:7B:AC:31:CE:22:97:8C:B2:8C
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 019783609310B7D4263FA298FD26E22AE138
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/swkS8acABLzH-Qh7rDHOIpeMsow.roa
Signing time: Wed 18 Jun 2025 14:10:33 +0000
ROA not before: Wed 18 Jun 2025 14:10:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 46.20.110.0/24 maxlen: 24
185.160.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Jun 2025 10:09:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:83:60:93:10:b7:d4:26:3f:a2:98:fd:26:e2:2a:e1:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Jun 18 14:10:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b30912f1a70004bcc7f9087bac31ce22978cb28c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:17:51:22:a6:5a:fc:bc:cc:6d:0b:d7:ac:39:
b0:43:cf:b9:27:77:23:39:dd:ea:fd:6f:59:39:60:
42:9b:d5:37:a8:e6:d3:bd:1a:b7:6c:54:2d:96:24:
20:f7:8a:16:3f:86:f7:46:3d:08:aa:1f:07:c7:53:
14:7f:86:6a:41:7f:e2:0c:e5:9d:98:cf:b7:b1:47:
a7:51:4d:04:f1:8d:d1:24:22:7e:2c:a2:bb:56:8a:
5f:c0:11:e1:e2:ad:e1:95:93:55:10:ce:b2:e6:3d:
ad:07:57:95:81:a6:58:c3:11:f4:d1:f6:6e:39:99:
d2:eb:9b:f7:2e:e5:b2:1d:a0:16:43:e9:5b:0d:83:
e4:31:e5:a5:4b:4e:fa:a9:c5:e4:15:fd:e4:f1:6e:
ce:92:fb:0e:f7:e5:2f:ca:b0:74:6b:49:2f:4c:e9:
f3:b3:89:97:1c:72:9b:da:bf:b1:d0:6f:c8:af:02:
0a:8e:4b:90:15:67:0a:02:cf:04:d7:30:2d:e5:4d:
68:54:d0:17:32:3b:fb:ce:4e:78:5a:70:ff:a8:22:
40:82:45:b6:3c:c8:80:3d:5f:1f:33:6a:60:0c:33:
09:69:a8:49:5b:a7:96:ce:7f:ad:93:c5:a5:95:69:
e8:33:c8:68:4a:f3:9d:70:5f:17:de:ea:61:38:93:
3d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:09:12:F1:A7:00:04:BC:C7:F9:08:7B:AC:31:CE:22:97:8C:B2:8C
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/swkS8acABLzH-Qh7rDHOIpeMsow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.20.110.0/24
185.160.193.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f1:af:d0:34:48:0e:e4:89:da:08:64:12:0b:84:f4:d2:94:
51:04:da:bd:67:00:6f:2b:2e:76:ae:f1:03:ba:58:0d:a9:26:
a8:d0:f2:33:99:36:8a:bb:72:c4:e5:59:70:c6:7f:77:b4:63:
bd:1c:c7:28:8a:91:ef:67:77:fb:1e:79:7b:cb:4c:df:2c:fa:
c0:a5:b6:cc:fd:48:a9:10:14:ab:51:27:4f:ba:d6:72:85:4c:
12:e7:e2:d7:78:d0:88:54:25:1c:11:a6:bb:f0:b3:6e:da:eb:
ec:2a:db:65:14:4e:94:28:dc:ad:72:6a:e4:14:11:42:5b:ed:
0f:0b:da:4b:3f:59:8b:3b:10:9a:cf:fd:29:40:eb:7a:c9:de:
41:4e:ea:5c:74:54:cc:e9:13:fa:67:c6:ba:3a:bd:65:80:16:
05:21:81:e3:2d:64:1d:4c:ba:ba:5c:7c:be:f8:dd:c0:01:c4:
8a:b3:c4:c2:63:f6:94:41:6a:a8:99:12:c3:ff:e4:a2:a7:5d:
10:31:c0:69:73:3e:3f:0b:e1:c8:da:08:48:2e:0f:19:16:1e:
cf:8e:a8:76:f8:aa:35:6e:43:ec:f2:00:37:12:71:3c:85:86:
55:c3:dc:d5:b7:c5:87:d6:3a:84:5f:ba:36:f2:94:e3:7b:a2:
47:02:ae:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 01:01:00 2025 by rpki-client