Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/zjjnjyXOmtCnHPSZmImmyoehBSw.roa
File: zjjnjyXOmtCnHPSZmImmyoehBSw.roa (raw, json)
Hash identifier: 5PBATeZaZ2sCmfCzPDw9ySt37y4pbvdEG9utOSUwuSI=
Subject key identifier: CE:38:E7:8F:25:CE:9A:D0:A7:1C:F4:99:98:89:A6:CA:87:A1:05:2C
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 0197E493D3E24CB84385BC4E8FC14A7D85FE
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/zjjnjyXOmtCnHPSZmImmyoehBSw.roa
Signing time: Mon 07 Jul 2025 11:09:42 +0000
ROA not before: Mon 07 Jul 2025 11:09:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212666
IP address blocks: 193.135.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Jul 2025 11:24:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:e4:93:d3:e2:4c:b8:43:85:bc:4e:8f:c1:4a:7d:85:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Jul 7 11:09:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ce38e78f25ce9ad0a71cf4999889a6ca87a1052c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:6f:25:e8:91:dc:4b:40:70:ad:09:f0:5c:32:
3b:11:9a:67:e9:20:48:a9:95:e3:be:36:73:2b:6c:
ba:ef:8a:ac:4a:fa:37:de:42:28:1e:ad:d1:1d:db:
32:60:06:3b:09:23:eb:05:6f:2a:3e:0c:1b:bc:e8:
61:6c:70:3b:b8:39:6b:5f:eb:d2:a0:81:2a:ec:fd:
98:40:f1:cf:53:d7:15:ab:b7:84:89:3f:83:16:2e:
d9:ae:32:30:a0:ed:72:b9:8d:89:b1:f0:77:52:aa:
f0:ff:4e:16:6d:4d:2e:7c:e1:ec:08:a8:69:c2:e5:
82:a7:18:6f:79:b3:f3:b3:37:eb:32:0a:bb:dc:1c:
ec:82:6a:73:4b:f3:1e:51:61:69:ae:d2:1f:01:dd:
c8:9d:d7:31:d3:cf:ab:0e:06:db:25:69:cc:2b:13:
76:9d:49:8e:a5:84:ce:a6:c7:6b:24:5d:63:5c:59:
3e:24:91:98:e5:b9:0e:d5:ae:6c:9f:d6:da:d3:48:
6a:b5:95:cb:02:cc:e3:c2:98:e8:70:63:c0:13:e6:
57:19:05:e5:4b:76:d3:cf:0d:2a:7c:6b:68:2e:94:
ca:a8:10:6c:69:19:93:a7:78:2c:0c:ac:1e:a9:04:
88:5d:60:25:e2:a0:95:06:7f:f6:c1:97:dd:10:8a:
16:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:38:E7:8F:25:CE:9A:D0:A7:1C:F4:99:98:89:A6:CA:87:A1:05:2C
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/zjjnjyXOmtCnHPSZmImmyoehBSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.157.0/24
Signature Algorithm: sha256WithRSAEncryption
47:4e:62:19:2d:3e:cf:de:f8:bc:50:9a:01:40:18:1c:0b:ff:
31:5f:47:b0:59:0a:90:e4:ad:86:74:7e:7c:c5:6d:a6:99:dd:
3f:3e:2c:a9:61:37:4e:aa:62:84:6e:c4:cc:3a:ee:dd:92:a5:
d4:c8:1e:42:76:4a:fa:34:80:30:f1:7e:f3:f3:9e:9a:be:f8:
31:8b:3d:ac:4e:76:de:8c:79:58:6a:0b:22:4a:6b:43:45:58:
74:0e:83:4e:05:ff:bf:ac:c7:fc:e2:a0:a3:a8:f0:15:b2:ea:
6c:4a:23:5c:68:74:29:aa:f1:55:13:ad:5b:de:af:2c:dc:5e:
05:1b:60:7e:a0:26:97:65:82:61:9d:a3:e6:c6:db:72:fd:d8:
c3:4b:27:a8:60:8a:c1:7f:f3:99:ea:bb:ac:df:23:a5:9e:eb:
5d:7a:54:6b:14:c4:43:32:0f:ad:c3:31:f7:2e:56:69:4f:ca:
60:b5:7e:68:c4:a9:a3:2a:a9:5a:52:39:50:bc:c0:1c:e9:a9:
27:8e:61:83:e7:39:5d:07:f7:9d:b0:91:83:86:33:cb:b3:1e:
69:09:d2:7b:00:54:23:ba:30:27:d8:ad:16:85:46:4f:55:1e:
6d:3c:ff:02:ac:54:3b:08:0b:bb:13:a9:5b:29:4a:ef:93:d0:
9f:48:6a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 11:50:04 2025 by rpki-client