Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/p7vCsd1dbUYRxCgIPM0RU5Pa4XY.roa
File: p7vCsd1dbUYRxCgIPM0RU5Pa4XY.roa (raw, json)
Hash identifier: KlCq2ABRpIhA1Hteurfy31x5DIZC/A7R6g+am2DvvsU=
Subject key identifier: A7:BB:C2:B1:DD:5D:6D:46:11:C4:28:08:3C:CD:11:53:93:DA:E1:76
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01954892E0C8FB0B2D66C3540673C6106E86
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/p7vCsd1dbUYRxCgIPM0RU5Pa4XY.roa
Signing time: Thu 27 Feb 2025 18:02:20 +0000
ROA not before: Thu 27 Feb 2025 18:02:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9050
IP address blocks: 94.177.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Feb 2025 10:16:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:48:92:e0:c8:fb:0b:2d:66:c3:54:06:73:c6:10:6e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Feb 27 18:02:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a7bbc2b1dd5d6d4611c428083ccd115393dae176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3e:c1:02:0f:aa:52:ad:67:74:77:cf:2b:c8:
e3:b4:db:3c:f0:0d:a2:c8:cc:97:e6:7d:e2:19:71:
b6:e3:2b:3d:2c:af:5b:d8:1e:95:2f:20:a4:b8:b6:
c9:f6:9d:d8:de:24:4b:9e:6e:81:3a:eb:95:e1:ba:
a4:d4:a2:de:40:cc:6f:cf:12:00:1e:ed:b4:ed:34:
2c:ef:7a:c2:08:7d:a1:c4:ab:b2:f0:ce:ea:0c:b2:
39:6c:fd:ec:69:a2:87:3e:b1:12:01:f9:a6:95:a1:
67:97:15:ed:41:bd:0a:31:d6:c9:e2:9f:9f:a4:9b:
80:bf:fa:71:ce:4e:9d:5a:1e:a3:c0:ff:54:30:0c:
9e:93:cc:34:9c:f1:09:0e:f6:bb:43:a8:84:fb:cf:
48:cd:8b:e6:bc:0d:97:22:41:46:77:5f:18:1c:77:
b0:f5:40:32:a4:f5:9f:8c:d4:56:5b:5e:26:69:00:
f9:17:71:93:2b:cc:51:f3:42:68:ed:61:83:10:34:
4c:fd:24:6e:5a:45:bb:eb:29:c5:63:d8:1d:da:6c:
cc:f6:9d:25:3a:c8:d7:c2:74:f5:26:83:bb:8b:5d:
af:0b:12:34:73:e0:07:d8:d4:5b:a1:26:f0:0d:7f:
72:c8:34:3f:72:dd:8c:74:65:8e:9d:ac:60:ec:de:
64:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BB:C2:B1:DD:5D:6D:46:11:C4:28:08:3C:CD:11:53:93:DA:E1:76
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/p7vCsd1dbUYRxCgIPM0RU5Pa4XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.107.0/24
Signature Algorithm: sha256WithRSAEncryption
08:42:54:e8:d2:c9:5b:97:a1:90:00:ee:1a:b8:33:ad:b8:ff:
ea:fa:28:19:fc:05:f1:e6:8d:ac:e0:fe:9b:48:56:0d:5c:fb:
aa:c7:97:04:58:68:ff:f1:40:51:a0:9e:ec:fc:25:82:ac:f9:
22:11:f1:ed:55:8b:a8:f6:56:8c:81:2a:1b:a1:61:b5:29:06:
c9:27:ca:3a:bb:15:ee:c1:33:8b:d2:02:58:58:6f:a7:84:a2:
e7:cd:d3:23:dc:9d:2b:9a:10:df:d4:73:10:b5:24:19:3b:74:
85:4c:62:9f:4d:ff:63:70:72:0c:a4:f1:81:1e:c4:5f:d7:19:
84:98:4c:0e:ad:52:1d:fc:c1:d2:cd:b9:e6:cc:c3:c9:10:9c:
3c:0c:9d:a9:2f:a8:a1:92:4f:38:bf:1e:cb:66:44:6c:24:c7:
ae:fb:91:dc:ad:9f:2f:04:2a:cf:10:94:91:28:ad:e5:ca:fc:
b6:19:e3:0c:eb:78:5f:08:15:b8:3a:ff:da:df:a8:3d:c5:ba:
c7:e9:ea:a7:c5:cc:3f:29:e4:b9:b4:5d:64:9c:a2:ac:9e:de:
ae:91:db:98:55:b6:df:ee:c3:dd:09:1a:a7:d7:3e:0d:35:28:
2f:c1:e9:ee:e5:30:0b:2f:c1:06:e2:61:68:9f:55:3c:6e:38:
15:b3:60:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:26:25 2025 by rpki-client