Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/rBkOd_jST-1uGhIS2lknW2sC7fE.roa
File: rBkOd_jST-1uGhIS2lknW2sC7fE.roa (raw, json)
Hash identifier: 8Sr5BSqvplnw0ZtnSc8ks/UO3j+l9Vn0EWZcMi5O/0Y=
Subject key identifier: AC:19:0E:77:F8:D2:4F:ED:6E:1A:12:12:DA:59:27:5B:6B:02:ED:F1
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 0195BF5E67B028DC10039FBC35DE2BF46DAB
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/rBkOd_jST-1uGhIS2lknW2sC7fE.roa
Signing time: Sat 22 Mar 2025 19:39:49 +0000
ROA not before: Sat 22 Mar 2025 19:39:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213568
IP address blocks: 5.181.183.0/24 maxlen: 24
185.176.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Mar 2025 19:04:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:bf:5e:67:b0:28:dc:10:03:9f:bc:35:de:2b:f4:6d:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Mar 22 19:39:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ac190e77f8d24fed6e1a1212da59275b6b02edf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7c:6c:ef:d9:70:ec:e0:81:fa:e9:44:5b:fc:
de:8b:31:e1:85:74:8a:fe:15:83:00:a5:90:f7:fc:
bc:33:98:4e:0d:4a:0a:6d:79:e5:4e:a4:5d:0c:aa:
22:c8:03:95:7e:33:71:3c:0c:41:15:42:c1:d0:e2:
45:16:58:b9:a3:de:b5:8a:e7:6a:5e:13:c9:c1:5b:
aa:cf:9f:c0:fd:f2:7d:d8:4e:de:f7:16:a9:d3:ee:
74:07:c5:9b:54:87:20:25:60:f8:1f:86:78:f9:e3:
2c:67:db:66:ce:c6:d7:0b:79:ac:6d:6c:09:62:79:
4a:96:97:92:f0:c4:92:ab:0f:aa:38:48:00:70:8f:
c8:1a:06:58:16:58:60:44:ce:60:e9:60:a7:b6:25:
9e:95:07:dc:11:2b:3f:5b:8c:ec:98:68:d6:e7:94:
f7:aa:5e:a9:9a:88:1e:b0:78:42:66:40:fa:c5:7d:
34:70:47:a5:b0:c6:56:33:ac:01:a7:c9:60:2c:69:
7d:68:cd:2f:24:d0:13:f4:fe:8c:73:b7:6f:31:6b:
60:1b:f4:02:93:b3:48:42:03:4c:0d:4b:31:be:c1:
23:83:6f:64:26:a9:f4:c3:51:9c:50:2f:95:38:e7:
d0:09:eb:79:cb:cc:1c:d1:14:6b:3d:f6:07:4f:3f:
10:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:19:0E:77:F8:D2:4F:ED:6E:1A:12:12:DA:59:27:5B:6B:02:ED:F1
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/rBkOd_jST-1uGhIS2lknW2sC7fE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.183.0/24
185.176.94.0/24
Signature Algorithm: sha256WithRSAEncryption
42:c0:84:f6:ab:0a:f4:8f:21:2d:62:c6:6d:50:da:79:91:68:
09:74:e2:84:ac:28:a4:bc:ec:8a:32:30:fb:62:5f:ee:e1:bf:
01:fb:c4:4d:fd:60:a3:9e:46:22:8c:1d:8e:98:6d:a9:60:df:
d5:22:8f:db:60:0b:c1:9a:f8:42:3c:44:d0:90:89:e9:3c:d4:
df:09:20:57:12:38:8f:52:64:cf:0f:4d:8b:a2:44:d9:52:08:
f4:af:19:0b:36:c8:ea:03:56:9d:fb:22:bb:f0:1d:67:b5:49:
75:af:86:e5:6b:e5:78:4f:0f:91:76:74:dc:68:e8:ad:81:e6:
7b:1d:7e:75:48:11:3c:04:15:f4:5e:3e:6c:da:f2:a4:ca:b0:
5c:94:16:71:57:5f:6e:9e:13:51:3f:d3:e2:9f:88:4a:f7:b8:
52:52:b5:b5:8b:d0:ea:e2:52:e0:4e:e3:6e:ad:d2:7d:e0:fd:
bc:7f:64:76:48:c3:92:b9:7e:8d:bb:5e:45:8e:4f:c3:85:8b:
b7:d1:42:07:7f:e8:64:f9:5d:26:6c:d1:ba:73:f0:9f:44:a3:
60:6e:c4:4b:4e:7b:a5:06:1d:68:6b:8a:71:96:2d:d6:18:06:
f4:e4:3f:82:cd:b3:df:56:69:67:2b:b9:65:a7:ae:89:e7:20:
27:72:b4:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:12:01 2025 by rpki-client