Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JhAVS21Zt0V7gpux8DmwiCHiG68.roa
File: JhAVS21Zt0V7gpux8DmwiCHiG68.roa (raw, json)
Hash identifier: aINDQDVx7dZArkRYL7HSogsGox9w2rAMKMIvTnz9+OA=
Subject key identifier: 26:10:15:4B:6D:59:B7:45:7B:82:9B:B1:F0:39:B0:88:21:E2:1B:AF
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01982E4144A21D08F031DC86C424169CEDC5
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JhAVS21Zt0V7gpux8DmwiCHiG68.roa
Signing time: Mon 21 Jul 2025 18:31:26 +0000
ROA not before: Mon 21 Jul 2025 18:31:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212615
IP address blocks: 31.59.168.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Jul 2025 06:44:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:2e:41:44:a2:1d:08:f0:31:dc:86:c4:24:16:9c:ed:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jul 21 18:31:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2610154b6d59b7457b829bb1f039b08821e21baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cc:02:1b:b8:ad:cd:d2:77:6b:6a:74:6f:38:
b2:4b:d3:8f:e9:8f:6c:16:9f:2b:53:c4:71:fc:b8:
81:f0:54:50:e2:cf:66:5e:83:02:da:f7:2d:0e:95:
b8:3f:a2:b2:45:e4:b4:c7:e6:da:53:48:c8:82:e1:
91:e3:a9:86:c7:45:4c:66:8d:fc:e1:8f:84:db:69:
3f:b6:c8:d4:64:58:b8:10:c1:b0:a3:94:2f:cc:de:
7b:0a:46:e0:31:2e:8d:8e:9c:70:fd:60:31:f3:d7:
8c:97:a1:d3:39:28:fe:47:9d:df:0e:83:60:59:f5:
cf:35:e3:6f:a2:57:01:ae:d3:56:f4:26:f3:74:6f:
a7:87:ff:df:a6:88:f3:31:5f:82:78:5a:37:39:cc:
99:f3:68:17:84:f2:69:80:01:07:90:7f:ee:cb:27:
83:03:af:d9:76:67:86:75:b6:bc:02:0b:76:e2:52:
14:f6:40:99:6b:98:85:9f:89:d5:70:ce:21:2a:75:
99:31:d7:36:b1:26:15:e8:c3:5c:b8:4c:03:04:ec:
66:6f:14:e9:10:b5:15:d6:7d:08:7e:48:04:12:27:
8b:fc:b7:c9:36:2c:8e:59:dc:37:65:a0:9d:f7:b7:
30:d4:33:95:09:0f:7e:88:e1:48:30:2b:e1:14:ef:
28:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:10:15:4B:6D:59:B7:45:7B:82:9B:B1:F0:39:B0:88:21:E2:1B:AF
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JhAVS21Zt0V7gpux8DmwiCHiG68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.59.168.0/24
Signature Algorithm: sha256WithRSAEncryption
33:1f:63:5e:61:07:15:f5:fa:06:2a:b1:c5:a3:fb:fa:07:45:
b1:3c:29:96:aa:e5:4f:5f:5a:52:21:11:63:69:b4:2b:95:a0:
a0:c6:50:f5:32:a0:47:3f:34:5e:6f:b4:78:5f:cf:f7:a5:af:
15:a1:df:41:2f:68:24:25:56:47:5b:99:f0:75:30:a7:2d:3e:
b4:55:ec:6e:d6:c3:c3:8b:cf:8e:2c:4a:ab:45:57:67:2f:d5:
a9:ff:88:67:ca:eb:55:7f:42:e1:9b:c2:46:42:4c:cb:01:54:
c6:c0:48:ca:2a:bc:bb:88:ce:50:77:64:12:3c:27:09:13:e4:
12:a2:35:93:37:ce:8d:0c:62:36:06:ad:71:2a:3f:1f:64:b6:
c1:e5:fb:37:40:c1:f1:ea:17:ea:a1:47:c5:71:bc:52:07:23:
8d:35:ee:a5:cb:67:e8:02:5b:20:27:ef:e0:c5:f6:5f:93:96:
9b:9f:87:b7:b6:5d:c4:e0:60:c0:c6:be:47:62:0c:8e:27:c0:
05:d9:f8:38:94:2f:d2:d4:f5:c1:aa:8e:a5:3a:c8:d3:10:fc:
4d:d3:3d:a3:ab:48:04:51:6a:d1:34:f2:d9:86:b9:76:1f:9e:
be:0a:e0:0d:59:e2:84:6f:b2:30:b8:d9:4a:9b:21:de:e7:57:
1f:20:e8:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 07:43:27 2025 by rpki-client