Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/goS8bTeEQ4VdpF9wuAFh6RuPFJY.roa
File: goS8bTeEQ4VdpF9wuAFh6RuPFJY.roa (raw, json)
Hash identifier: 3PdZDzmaSOy9/fc0MEUrEU+mB+XDg4EDVAYUSSJ4Oi4=
Subject key identifier: 82:84:BC:6D:37:84:43:85:5D:A4:5F:70:B8:01:61:E9:1B:8F:14:96
Certificate issuer: /CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Certificate serial: 0197EAAA742543A3A9EE49B645F37F0221E8
Authority key identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/goS8bTeEQ4VdpF9wuAFh6RuPFJY.roa
Signing time: Tue 08 Jul 2025 15:32:08 +0000
ROA not before: Tue 08 Jul 2025 15:32:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 104.207.32.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 14 Jul 2025 11:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ea:aa:74:25:43:a3:a9:ee:49:b6:45:f3:7f:02:21:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Validity
Not Before: Jul 8 15:32:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8284bc6d378443855da45f70b80161e91b8f1496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:19:85:8b:c4:93:9b:90:37:21:a9:74:6d:2b:
e9:dd:ae:97:71:2c:05:34:08:d6:7f:83:b7:6f:9b:
aa:a1:2e:7c:d7:f2:dc:88:ec:5d:05:b6:eb:0c:a1:
b9:d3:51:2a:f2:32:b0:27:1d:0f:9c:50:aa:62:4f:
ea:e6:bf:2c:0b:2e:bd:ca:d4:70:55:20:00:5d:4e:
6c:b4:66:bb:01:cc:1e:91:27:f4:8b:e9:2c:b2:9e:
8d:0d:b1:40:06:68:ec:47:f5:17:75:33:76:08:a1:
47:26:80:6c:b7:f3:0c:d1:aa:d9:3b:56:52:0f:f4:
cc:63:ba:5e:21:3a:d3:19:38:1e:48:53:00:85:fc:
39:0f:94:ee:ad:29:0e:bc:f3:fe:62:25:e1:21:5b:
b9:7d:5f:f9:86:9f:ba:92:68:37:3b:a2:b9:87:3b:
be:46:ac:53:59:8b:55:8e:47:22:05:74:15:6a:5b:
cb:5a:ab:f3:5d:dc:70:66:3c:18:01:4e:88:b9:18:
0e:3d:49:80:e9:e6:ce:af:a8:54:df:85:4f:b3:c7:
18:fc:25:43:1d:e2:e1:fe:2e:38:b5:7c:c6:45:55:
17:22:21:43:cc:e1:ad:7d:65:d8:4d:9e:fa:55:cd:
ee:bc:d5:47:7e:a7:36:74:a7:b5:0d:32:dd:03:bc:
b3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:84:BC:6D:37:84:43:85:5D:A4:5F:70:B8:01:61:E9:1B:8F:14:96
X509v3 Authority Key Identifier:
keyid:B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/goS8bTeEQ4VdpF9wuAFh6RuPFJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.207.32.0/19
Signature Algorithm: sha256WithRSAEncryption
35:ef:b5:13:af:39:3e:29:e4:2f:14:df:54:94:58:3a:79:95:
39:5a:6e:2b:52:37:a9:36:74:fc:21:3b:68:28:f9:37:f7:89:
cd:e7:02:00:7a:c7:9e:64:2e:f4:4a:8e:3c:c6:0a:8d:41:bc:
7f:93:57:0d:36:7c:9d:86:82:5c:94:a2:d6:0f:c1:03:65:79:
11:36:e9:20:97:bd:57:66:55:4c:f5:c0:7a:0a:34:fb:35:47:
9b:db:3f:96:1c:8f:70:18:7e:b1:6a:4d:1c:64:f0:18:0f:52:
86:7a:4e:c4:fa:17:2e:89:f0:90:75:d0:6b:d7:6a:f8:43:b9:
5c:70:58:0c:db:55:2c:8b:d0:ba:f9:04:d8:b7:50:48:61:0f:
59:2e:47:3e:cc:8f:b6:3f:74:af:8c:4c:7d:c7:ec:9d:e6:c2:
63:0e:a2:13:6d:73:a5:af:f8:4f:a0:36:34:6a:4a:8a:e4:73:
f1:ba:20:61:d9:ea:7e:dc:49:e9:6e:6b:70:a1:09:85:57:1d:
07:67:8c:d0:31:04:90:34:e9:55:df:2c:e4:4f:e9:b6:fb:35:
9d:db:5c:2b:a3:94:8a:26:6c:89:66:6d:c2:96:0e:49:08:a6:
82:22:ad:63:47:c4:62:06:dc:50:c8:1f:5b:f9:f8:20:31:7e:
d7:a4:be:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 13:11:16 2025 by rpki-client