Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/J7FIrtZrxXyNWZQBy7_EZLEEkZQ.roa
File: J7FIrtZrxXyNWZQBy7_EZLEEkZQ.roa (raw, json)
Hash identifier: khUhOmaqv1wKFs72KPU6aowuYbYZcp7orgaY/MNVq8s=
Subject key identifier: 27:B1:48:AE:D6:6B:C5:7C:8D:59:94:01:CB:BF:C4:64:B1:04:91:94
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 0197B0D166301144536137F35DEA41861BB5
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/J7FIrtZrxXyNWZQBy7_EZLEEkZQ.roa
Signing time: Fri 27 Jun 2025 09:56:42 +0000
ROA not before: Fri 27 Jun 2025 09:56:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.180.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Jun 2025 10:20:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b0:d1:66:30:11:44:53:61:37:f3:5d:ea:41:86:1b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jun 27 09:56:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27b148aed66bc57c8d599401cbbfc464b1049194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a2:cb:e1:aa:b1:2f:fe:ab:e8:26:5e:2f:88:
5e:34:88:51:70:1c:72:06:d5:86:ad:cf:2b:62:72:
07:ce:28:15:60:68:ee:28:ff:a5:a5:75:5a:91:3a:
43:cd:67:65:38:1f:2c:26:51:1e:fc:ff:c7:cc:86:
3f:f0:a7:b5:75:01:13:aa:f7:e0:06:25:b0:e5:f8:
6b:8c:e4:af:c5:ee:8f:e8:88:f3:10:59:b7:7f:5e:
f9:a2:b6:28:2b:eb:80:22:97:3f:e9:60:c5:9e:a9:
70:6f:ab:d8:58:ea:2f:79:14:01:ca:c3:c5:6e:79:
cb:d0:cf:a3:43:41:5b:a8:82:43:27:76:a2:03:c5:
8c:b8:b4:8d:08:b6:21:4c:c8:f1:c6:88:9a:ac:84:
8f:ff:6c:a5:cd:d9:ce:1d:56:2a:10:0d:ad:9f:2d:
f3:ff:bb:98:52:e9:e1:0b:ca:2a:62:ec:94:70:b6:
97:e0:35:af:4e:09:3a:5e:f5:b5:44:78:6d:40:cd:
f5:16:70:92:3e:d5:86:e1:4b:db:f7:18:ca:53:1b:
4c:b6:31:32:8a:c9:08:15:61:84:d4:0b:85:d4:03:
7f:e5:1d:48:d6:db:71:6b:4b:0b:08:50:09:a9:12:
10:8c:13:b9:eb:c2:1d:5b:6c:3a:d7:55:dc:43:be:
df:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B1:48:AE:D6:6B:C5:7C:8D:59:94:01:CB:BF:C4:64:B1:04:91:94
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/J7FIrtZrxXyNWZQBy7_EZLEEkZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.194.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:12:4a:db:b0:c2:e2:a5:07:8e:cf:64:47:b0:b9:17:de:ad:
08:5d:b3:ce:c5:c5:fb:c5:27:34:6a:89:49:ff:3b:75:53:ad:
85:ba:2a:8d:8a:07:e1:26:1a:c4:c7:f2:5b:99:b8:c5:7a:0a:
8b:b9:68:41:da:d0:e3:48:54:29:a4:f5:ee:ef:c9:7d:fb:85:
62:49:da:8b:eb:45:0b:ae:1d:3b:82:18:9d:3f:f4:0a:1f:f4:
04:69:ce:b9:15:52:2b:89:39:bd:fe:1b:63:b8:10:6e:90:bf:
61:de:c5:9d:cc:47:35:55:e6:bf:d9:e3:b9:30:9f:57:1d:6d:
c9:e4:3c:46:53:12:20:12:35:ae:d7:7a:68:00:f9:dc:8f:6b:
11:7f:ee:b7:57:c5:a4:4f:f6:fb:13:59:02:3b:c0:08:ca:c2:
05:61:93:99:4e:87:05:c5:c9:16:a7:f1:00:ea:84:c6:19:fe:
94:55:32:a4:f8:d9:41:d5:d0:75:95:39:0a:3a:ed:d8:fa:37:
57:84:ac:a5:a3:63:eb:89:85:0b:c6:c6:3f:2b:b7:ca:51:39:
a0:dd:1d:ca:b1:bc:7a:f8:92:34:ac:16:02:d0:ce:00:5f:24:
83:e2:95:1e:46:f6:40:53:56:cf:77:cb:f9:8c:ba:11:b1:7c:
61:57:c9:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 15:24:32 2025 by rpki-client