Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/16e022-4da8-4684-85e6-f4f1f93e0467/1/syJuYuSvaXOf4fdQODYBxl8Wvrk.roa
File: syJuYuSvaXOf4fdQODYBxl8Wvrk.roa (raw, json)
Hash identifier: OKn0SoHFQEbRlHhzEP06V2aRFhSoJE4DUwo1/nq5tgc=
Subject key identifier: B3:22:6E:62:E4:AF:69:73:9F:E1:F7:50:38:36:01:C6:5F:16:BE:B9
Certificate issuer: /CN=543c5c34a62ffbed8fc0f0ec01b42c0c50ee7ef7
Certificate serial: 01982C9A70B5D22289C27F950DEBBFE547E5
Authority key identifier: 54:3C:5C:34:A6:2F:FB:ED:8F:C0:F0:EC:01:B4:2C:0C:50:EE:7E:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxcNKYv--2PwPDsAbQsDFDufvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/16e022-4da8-4684-85e6-f4f1f93e0467/1/syJuYuSvaXOf4fdQODYBxl8Wvrk.roa
Signing time: Mon 21 Jul 2025 10:49:35 +0000
ROA not before: Mon 21 Jul 2025 10:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50053
IP address blocks: 91.204.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Jul 2025 13:19:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:2c:9a:70:b5:d2:22:89:c2:7f:95:0d:eb:bf:e5:47:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c5c34a62ffbed8fc0f0ec01b42c0c50ee7ef7
Validity
Not Before: Jul 21 10:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b3226e62e4af69739fe1f750383601c65f16beb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:63:c0:02:f3:11:8b:83:e6:ea:17:1b:a5:ae:
4d:f5:1a:72:b3:4f:57:be:a7:ff:77:68:6f:f4:b2:
3f:94:8f:2d:de:76:cf:ce:06:29:49:93:9b:2b:c2:
26:d9:ac:9f:c9:ab:79:68:ff:9f:23:9d:73:f3:3e:
b9:bc:77:94:38:02:ca:05:0c:3c:7d:33:9b:d8:bd:
0c:eb:a4:74:db:8f:fb:2b:84:5d:29:51:be:35:ad:
54:48:61:0f:2e:d4:bb:d6:2b:76:10:05:2d:8c:76:
ce:fe:fe:1d:57:93:47:a7:07:3c:f5:51:a6:72:31:
44:93:b2:73:97:55:11:a1:ca:03:d5:c7:36:f7:78:
ab:44:4d:67:a8:c2:38:82:62:67:d5:01:11:0b:d4:
ad:a7:4d:2b:a1:1d:2b:82:55:6b:fb:c2:1a:c5:b5:
71:4e:5e:b3:34:6b:fd:a5:1e:ef:12:1c:08:4d:0e:
33:87:d6:b6:e9:1b:3d:7c:6d:5f:72:40:96:c5:fd:
ad:fb:ae:8e:65:4d:4b:ab:62:b3:1c:44:66:85:91:
4d:b8:87:3e:4d:e1:0e:1d:fa:44:6c:cc:a7:8f:92:
85:02:0c:cb:bd:31:3f:ef:7b:e2:8d:7b:0f:ed:30:
19:32:21:63:82:bd:5e:be:b5:c8:f0:73:af:0c:89:
9d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:22:6E:62:E4:AF:69:73:9F:E1:F7:50:38:36:01:C6:5F:16:BE:B9
X509v3 Authority Key Identifier:
keyid:54:3C:5C:34:A6:2F:FB:ED:8F:C0:F0:EC:01:B4:2C:0C:50:EE:7E:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxcNKYv--2PwPDsAbQsDFDufvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/16e022-4da8-4684-85e6-f4f1f93e0467/1/syJuYuSvaXOf4fdQODYBxl8Wvrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/16e022-4da8-4684-85e6-f4f1f93e0467/1/VDxcNKYv--2PwPDsAbQsDFDufvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.74.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:51:e9:ac:ff:f3:8a:94:5a:3f:08:43:49:15:8f:3b:8b:41:
57:39:c0:5b:e5:14:0c:14:d7:39:4a:5d:42:af:63:00:58:da:
ec:36:8f:9d:f7:fb:a3:76:8d:f1:7b:66:96:82:28:34:c6:4a:
3f:00:84:2b:e1:c5:1a:ea:13:8b:da:5a:5a:85:08:85:43:fd:
f5:f4:f2:d6:cb:db:fa:46:c5:7f:1f:4c:2e:ad:e9:4c:e8:ab:
8f:92:de:1f:4f:56:4a:d2:f0:6a:c8:a0:c6:18:97:40:7e:e9:
d3:68:0e:68:06:e7:61:9c:70:e9:93:c5:45:dc:9c:0f:31:0e:
29:f0:86:1c:1d:73:df:82:c0:03:7e:a7:7b:cb:ff:0e:46:59:
47:ab:96:e5:a0:aa:ed:74:e9:8a:b5:e1:e1:ed:f0:b7:85:80:
08:2b:b3:2c:85:d2:05:43:f5:52:90:9d:1c:c0:05:e3:26:9b:
76:df:2a:62:17:bd:09:e5:17:52:c1:89:f4:14:15:68:23:3d:
28:e1:d0:18:b8:21:ad:1a:ca:69:09:71:46:7b:ef:8c:e7:32:
00:cc:59:8b:05:16:3b:2f:7a:a9:24:50:ad:44:02:03:07:ba:
c4:08:09:64:3f:d9:87:16:03:bc:44:61:31:5b:4e:d9:a4:0a:
86:1a:d4:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 00:32:43 2025 by rpki-client