Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/cf9cd6-e717-4dda-82ef-6dfe0f7d53bd/1/xSDyI4KD2ah9wfWLfzvH2xzuRKE.roa
File: xSDyI4KD2ah9wfWLfzvH2xzuRKE.roa (raw, json)
Hash identifier: z6aV8LcbvWnsha8IbTF0cil3aQcQkFckT2hiaX+81Xs=
Subject key identifier: C5:20:F2:23:82:83:D9:A8:7D:C1:F5:8B:7F:3B:C7:DB:1C:EE:44:A1
Certificate issuer: /CN=11125404c6dd472f1001ed9ffdf726762ac7701d
Certificate serial: 01977D12410BC8A24D5911B839F58B67B2C3
Authority key identifier: 11:12:54:04:C6:DD:47:2F:10:01:ED:9F:FD:F7:26:76:2A:C7:70:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERJUBMbdRy8QAe2f_fcmdirHcB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/cf9cd6-e717-4dda-82ef-6dfe0f7d53bd/1/xSDyI4KD2ah9wfWLfzvH2xzuRKE.roa
Signing time: Tue 17 Jun 2025 08:47:17 +0000
ROA not before: Tue 17 Jun 2025 08:47:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215419
IP address blocks: 92.242.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Jul 2025 05:51:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7d:12:41:0b:c8:a2:4d:59:11:b8:39:f5:8b:67:b2:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11125404c6dd472f1001ed9ffdf726762ac7701d
Validity
Not Before: Jun 17 08:47:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c520f2238283d9a87dc1f58b7f3bc7db1cee44a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f7:97:03:ef:d2:1b:5d:da:98:10:3a:34:c2:
42:fa:4e:9e:ae:5e:53:bd:0b:09:2b:33:98:0b:2b:
b1:92:02:2a:3a:ff:46:7e:67:d0:9b:43:85:20:b6:
ab:ce:bb:5f:da:1f:11:af:b0:90:c2:e4:38:57:8a:
ad:80:2c:f4:de:e0:63:84:8e:14:12:ce:e7:f3:99:
e3:f7:46:39:34:1a:b0:28:df:83:a7:b9:ce:06:c0:
ea:6d:ad:2d:fe:6c:89:e6:a0:a5:bf:c2:71:9a:56:
4a:74:fd:15:37:5a:23:40:d5:35:d9:e1:b3:b2:b0:
92:82:c9:f9:ab:f7:4b:70:f6:3d:c8:70:a3:2c:1d:
e2:ff:67:a5:4f:92:c9:5a:11:68:17:a3:da:61:a7:
5f:8c:6d:bf:1c:a4:bf:24:6b:24:fe:ed:c2:4d:3b:
a3:dc:ec:c4:92:34:63:46:0f:3f:cc:ac:15:be:85:
b5:e2:ef:fe:d8:d4:20:60:e2:68:1a:25:21:e1:8b:
44:34:bc:ff:82:72:55:39:02:be:00:35:87:b1:c3:
38:55:a0:75:47:bb:f2:17:09:ab:a6:d6:61:ad:3d:
bc:1b:cc:0e:57:83:f8:b9:12:8f:ad:37:9e:21:a4:
f1:b7:0f:16:8c:e1:e6:0f:e4:a8:3a:0c:c0:02:ab:
5d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:20:F2:23:82:83:D9:A8:7D:C1:F5:8B:7F:3B:C7:DB:1C:EE:44:A1
X509v3 Authority Key Identifier:
keyid:11:12:54:04:C6:DD:47:2F:10:01:ED:9F:FD:F7:26:76:2A:C7:70:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERJUBMbdRy8QAe2f_fcmdirHcB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/cf9cd6-e717-4dda-82ef-6dfe0f7d53bd/1/xSDyI4KD2ah9wfWLfzvH2xzuRKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/cf9cd6-e717-4dda-82ef-6dfe0f7d53bd/1/ERJUBMbdRy8QAe2f_fcmdirHcB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.242.165.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:81:d2:a0:95:21:eb:c8:00:d2:7d:d4:93:f4:5a:03:2a:d6:
8b:7e:70:dc:97:d8:5b:41:a0:44:6f:a3:22:20:96:84:e3:9f:
47:e5:1a:5f:e9:61:cf:8a:ea:99:fc:e6:26:a3:25:ea:6b:04:
41:9e:ad:1a:67:77:d7:42:09:79:22:ea:57:4b:bd:3f:20:83:
e1:b6:fe:4d:6b:c7:91:0a:a8:30:c6:77:07:06:06:cd:0f:14:
c0:aa:f3:9f:70:a5:f2:65:5e:29:06:27:d9:0f:2d:80:fb:28:
2b:79:8d:14:5b:af:5e:36:40:94:60:94:5b:48:66:cc:bf:d6:
11:3b:c4:ef:0e:57:2d:14:be:a6:fc:53:09:55:a8:2b:a5:04:
b6:b2:b8:db:fc:a1:ab:96:ce:84:7b:47:f6:bb:2a:31:a1:8a:
59:c2:a4:12:3b:15:51:8b:7b:74:62:f2:e1:63:78:96:e7:03:
17:9d:ff:ba:a9:16:f8:d2:31:99:04:02:d8:71:ff:eb:da:82:
fe:31:3d:d3:be:93:13:32:7d:6a:25:9f:5d:e1:9a:1d:3d:c9:
fa:b5:9b:8b:d1:e2:d2:22:81:6e:4d:60:aa:1c:ed:43:4f:ef:
47:b7:2d:63:2e:44:0d:ea:1c:a9:d5:88:84:ea:4a:fd:9a:fe:
d7:e1:ec:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 05:44:31 2025 by rpki-client