Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/tjCg1D3sWH_aN_qNI4zerAJAEWg.roa
File: tjCg1D3sWH_aN_qNI4zerAJAEWg.roa (raw, json)
Hash identifier: DmUk2PRmJ+ExOmdUrtiLp0+9p7sQTGfVfZRtaufHGXo=
Subject key identifier: B6:30:A0:D4:3D:EC:58:7F:DA:37:FA:8D:23:8C:DE:AC:02:40:11:68
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 0197818E539879B4F337238E142F3104E041
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/tjCg1D3sWH_aN_qNI4zerAJAEWg.roa
Signing time: Wed 18 Jun 2025 05:41:17 +0000
ROA not before: Wed 18 Jun 2025 05:41:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9121
IP address blocks: 91.102.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Jun 2025 14:44:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:81:8e:53:98:79:b4:f3:37:23:8e:14:2f:31:04:e0:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Jun 18 05:41:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b630a0d43dec587fda37fa8d238cdeac02401168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7f:c6:45:01:c7:d0:37:43:b7:5e:df:ce:54:
ea:1f:6b:3f:12:fe:90:63:8d:6f:a1:0c:3a:2e:ea:
94:dc:51:05:85:44:2b:f1:96:26:27:1a:f1:34:82:
0d:1e:8c:00:b7:da:0f:66:f5:12:b4:b6:e5:3f:be:
04:e4:0d:f8:4a:36:8f:5b:45:82:84:bb:5c:4c:80:
75:6c:9e:13:4b:c5:56:32:c1:72:da:95:37:f7:95:
0a:14:13:e3:ea:6c:ca:9a:77:ed:a3:02:37:65:d6:
97:f1:e1:dd:8b:d9:08:70:f1:23:67:e6:91:44:2b:
74:9a:e5:b7:0c:65:5f:33:06:87:5a:47:8d:a9:5d:
00:fd:54:4a:f6:ad:b5:69:e9:e7:42:71:03:b6:50:
9b:82:0e:b1:57:05:f3:c5:8b:1f:2c:20:a5:82:cf:
0b:ee:ea:c0:0a:dc:59:8b:55:75:15:8c:09:6d:45:
1d:4a:ac:84:6c:ef:a7:6d:3f:5b:6b:d8:04:41:3d:
c8:10:86:44:c4:8f:ec:03:e9:12:77:5f:84:66:b5:
9b:56:9c:d2:46:fa:a7:8a:82:5f:19:74:32:51:bd:
c0:d7:ae:79:06:55:69:5d:c1:82:67:6a:56:47:fc:
2f:c7:68:0b:7d:ad:15:5b:bc:bb:6c:8e:3f:ed:d2:
d6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:30:A0:D4:3D:EC:58:7F:DA:37:FA:8D:23:8C:DE:AC:02:40:11:68
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/tjCg1D3sWH_aN_qNI4zerAJAEWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.167.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:9a:0f:6e:1b:d6:ba:97:e1:e7:87:20:19:1d:92:22:92:5a:
5d:7c:99:32:43:a8:db:86:e6:b6:62:21:21:8e:63:e5:74:06:
6e:be:d0:7c:87:88:86:b4:ca:13:06:bd:51:51:ac:81:7c:d1:
0a:6b:1c:db:1e:0d:e9:6d:19:99:4b:c0:2e:ff:bf:b0:1f:18:
c3:95:f1:75:09:c1:5e:75:25:7e:56:73:30:f7:8e:f4:a1:63:
ed:c2:3f:31:a8:b1:41:19:ae:27:89:75:d8:b3:da:60:ea:80:
4c:f4:0e:c1:ee:35:ed:0d:9b:4f:d6:47:0f:10:28:7a:45:ad:
e1:36:06:cf:aa:1a:a3:eb:f0:e5:71:e3:3a:c7:e6:95:a9:5d:
05:d9:2b:fb:0f:5a:b0:80:dc:a1:d1:29:99:7b:90:15:b6:5c:
e3:f9:58:11:f7:8d:0c:c1:6f:03:66:f6:75:77:21:84:fc:1a:
42:a2:fa:80:5c:8f:db:54:be:d0:78:ed:ce:47:c3:46:4f:cb:
f9:e8:94:22:35:db:1b:10:b9:ab:7b:cb:bd:26:2f:bd:67:6a:
1e:cc:e8:d5:7c:bf:d4:d8:a8:dc:c5:77:a0:06:17:9f:4d:7d:
b6:49:ff:43:db:50:c8:7d:ef:01:fe:f2:5f:ed:51:8c:96:09:
37:50:4d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 00:25:10 2025 by rpki-client