Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0JHVUKB10z-Lz8QQR7K3RFUmAgg.roa
File: 0JHVUKB10z-Lz8QQR7K3RFUmAgg.roa (raw, json)
Hash identifier: r3q61fLb5L+Ds0btfLgR4o0twWvdKVC5mTgAbUA82bk=
Subject key identifier: D0:91:D5:50:A0:75:D3:3F:8B:CF:C4:10:47:B2:B7:44:55:26:02:08
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0197731E58C9B61C03577DC588997F823F58
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0JHVUKB10z-Lz8QQR7K3RFUmAgg.roa
Signing time: Sun 15 Jun 2025 10:24:18 +0000
ROA not before: Sun 15 Jun 2025 10:24:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211484
IP address blocks: 31.57.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 22 Jun 2025 19:56:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:1e:58:c9:b6:1c:03:57:7d:c5:88:99:7f:82:3f:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 15 10:24:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d091d550a075d33f8bcfc41047b2b74455260208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e9:a7:95:3b:7b:c7:47:f6:e0:90:3a:4c:17:
d5:0f:bf:1c:17:c8:88:ea:2a:ce:9e:ec:a4:59:e7:
fa:57:16:3b:90:84:10:77:1b:95:b4:d6:c0:4b:f8:
75:9a:8e:01:94:f6:cb:fa:f7:6e:ee:1d:80:4f:29:
8b:b8:64:9e:d7:46:ad:b9:65:86:03:0f:80:5d:4b:
a3:83:42:83:d7:e8:46:53:ee:bf:88:f7:10:4a:f2:
6c:cb:61:9c:c5:e5:3c:5c:9c:67:09:81:e1:16:65:
19:e3:02:69:0b:a6:93:e2:89:d9:24:e3:42:c6:02:
9c:86:00:9d:35:32:eb:d5:e9:12:35:6d:e8:7d:66:
ff:26:ea:5c:29:34:a7:76:30:bc:ca:cb:0a:30:07:
03:de:ef:96:22:54:2d:e9:2d:37:40:7c:e5:dc:44:
64:fb:59:66:b3:23:91:df:23:9f:79:9d:ff:d9:00:
62:6d:e6:09:80:67:3a:8e:c2:8d:c8:ff:b5:4b:0e:
8f:1d:15:ba:db:7e:53:92:cb:a9:1f:8f:e8:22:7e:
9d:31:9c:fb:01:a1:22:80:a2:37:4f:1f:30:a5:93:
71:e4:0b:84:1b:a4:66:6a:30:06:61:fb:47:89:32:
cc:7e:6e:e8:7c:c6:3e:8f:95:79:ab:0b:fc:b6:12:
86:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:91:D5:50:A0:75:D3:3F:8B:CF:C4:10:47:B2:B7:44:55:26:02:08
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0JHVUKB10z-Lz8QQR7K3RFUmAgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.152.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:3f:0d:d5:fb:13:f6:ac:64:6b:9b:3c:1e:ce:7b:85:e9:92:
ff:13:4b:2e:6a:60:fa:08:16:59:56:f4:27:32:97:51:22:10:
c6:d3:59:8f:7d:4e:92:7d:1f:df:60:ae:2d:5e:70:d8:9f:3e:
b3:48:15:04:51:12:6b:ce:3b:fd:dc:02:f4:14:21:20:11:0d:
70:25:db:ee:f5:c3:09:d5:45:5d:42:92:ce:96:17:ff:45:1b:
72:c2:a9:b5:ae:e6:ab:84:1f:a4:52:3b:23:cf:83:66:ca:ec:
7b:ab:71:77:4c:78:69:3d:ca:0f:d7:1b:cc:3d:bb:c4:6a:07:
57:68:0a:fa:9d:d2:bc:82:db:04:b8:14:df:04:3d:50:8f:ff:
c5:40:1f:43:2d:8f:d3:6d:ca:1e:a2:6a:1a:81:f3:8d:0c:0b:
16:02:30:08:47:0c:1b:18:30:ea:ab:22:b0:d5:df:9a:30:f5:
01:49:fb:99:e8:0d:07:22:0a:b5:a0:57:47:41:69:86:11:83:
11:a7:8d:40:6a:e0:2a:55:44:f2:78:c5:e7:6d:b0:4b:61:9c:
e6:6f:b2:30:eb:b4:f8:95:db:5a:01:fd:53:46:49:a8:eb:e6:
f4:91:f5:90:d6:a6:4a:81:56:17:df:68:8c:ae:5a:b1:99:68:
59:24:73:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 07:40:44 2025 by rpki-client