Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/yyuHCb9nTFci-hyBUMJ46fEJ0tc.roa
File: yyuHCb9nTFci-hyBUMJ46fEJ0tc.roa (raw, json)
Hash identifier: FWDf9JsJSEW1ef+ie5yjn15WTwSsTCkKMhQnCtX+OMk=
Subject key identifier: CB:2B:87:09:BF:67:4C:57:22:FA:1C:81:50:C2:78:E9:F1:09:D2:D7
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 0197E6C2B302A2CD240F64F92F5CE2CC289B
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/yyuHCb9nTFci-hyBUMJ46fEJ0tc.roa
Signing time: Mon 07 Jul 2025 21:20:08 +0000
ROA not before: Mon 07 Jul 2025 21:20:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25198
IP address blocks: 185.92.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Jul 2025 05:57:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:e6:c2:b3:02:a2:cd:24:0f:64:f9:2f:5c:e2:cc:28:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Jul 7 21:20:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb2b8709bf674c5722fa1c8150c278e9f109d2d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d9:f8:cb:e6:b5:50:18:72:30:e9:2f:69:7d:
86:29:cd:e0:86:fc:b0:b5:37:cf:ae:19:29:a9:8d:
b2:2f:3e:c4:83:9a:69:88:1a:e2:22:98:2f:62:2a:
12:d9:59:dd:9f:2f:06:b2:6c:da:e7:2c:c9:3e:7e:
db:e5:34:de:fc:f4:23:6a:c3:e2:86:1a:a8:28:c8:
97:89:ba:e3:eb:d4:96:cc:da:5a:7a:83:e6:56:16:
57:16:00:0b:18:9e:ba:34:8e:f5:9b:56:dd:47:94:
5e:65:a9:73:2c:8a:af:1a:38:1a:02:ce:da:7b:08:
d8:e0:bd:3b:3b:84:ce:fd:89:70:f0:41:da:9d:4a:
c7:5b:21:91:b0:6a:8c:9c:de:90:b7:23:bb:9d:d8:
10:46:6d:13:8b:40:c7:36:90:75:a3:f7:9b:a2:c7:
94:02:48:e6:38:f8:ca:73:7e:58:07:59:29:34:36:
a4:e8:7e:d1:49:b3:7f:2e:90:e4:59:0f:a5:46:29:
24:7f:c1:5a:3a:74:f0:47:70:aa:9d:74:72:73:12:
7f:4a:b0:78:92:9e:e2:5f:01:99:20:18:1e:b2:d7:
fd:67:3d:d2:0b:02:7f:16:05:c2:2c:30:25:2b:d7:
8a:37:bf:0c:8a:bd:7c:cd:be:c8:e6:97:5e:4a:49:
ee:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2B:87:09:BF:67:4C:57:22:FA:1C:81:50:C2:78:E9:F1:09:D2:D7
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/yyuHCb9nTFci-hyBUMJ46fEJ0tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.45.0/24
Signature Algorithm: sha256WithRSAEncryption
98:dd:60:f1:de:ca:68:1e:f9:cc:f3:2f:41:d3:f5:ec:c5:bb:
94:85:a2:bb:37:07:47:09:51:af:33:55:bb:35:39:d8:22:02:
0d:50:c2:3d:5a:33:c0:36:e4:7e:09:db:5c:95:d2:38:b0:92:
67:2f:c4:7a:7e:59:3b:ac:be:1e:15:8c:7e:48:4a:67:e4:a9:
84:c9:3e:51:cd:85:ee:33:60:87:1d:35:e2:27:2c:9e:90:ff:
14:2d:fc:6a:79:16:55:b6:f9:a8:b8:64:76:57:0a:ed:1d:21:
bd:d3:66:24:f7:31:be:4d:a4:24:3d:9f:25:43:d6:1e:4a:75:
28:84:66:25:34:87:7b:e9:93:a8:9e:3d:39:8e:9f:69:3b:f6:
14:46:e4:47:cc:c1:06:22:11:60:4a:1a:0c:c3:d0:81:85:c4:
53:7b:e2:2b:e5:3e:17:9a:ef:e4:56:22:2c:b2:80:f0:f2:77:
c7:b4:de:86:35:74:44:7f:43:7e:dd:f8:bf:8b:7e:f8:9e:38:
0f:ef:ee:a4:a8:58:05:8d:5c:bb:54:80:74:44:88:a7:51:57:
c6:18:82:e4:87:dc:d6:a2:6a:e8:3d:f6:7c:8d:aa:57:bc:36:
79:69:06:66:89:0f:d9:6a:24:b8:02:68:13:78:e0:91:57:1c:
8a:ac:d9:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 20:33:00 2025 by rpki-client