Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/P2M8WV_dW0HNNzBUHOkDFZXdlgg.roa
File: P2M8WV_dW0HNNzBUHOkDFZXdlgg.roa (raw, json)
Hash identifier: bwg5MHsPKSEp5ahqHb+lLqh5wpeu/IE80tgJFO9SySA=
Subject key identifier: 3F:63:3C:59:5F:DD:5B:41:CD:37:30:54:1C:E9:03:15:95:DD:96:08
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194E6FE6AE08E0286C1AB1D249B004AFA16
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/P2M8WV_dW0HNNzBUHOkDFZXdlgg.roa
Signing time: Sat 08 Feb 2025 19:17:00 +0000
ROA not before: Sat 08 Feb 2025 19:17:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213574
IP address blocks: 5.231.96.0/24 maxlen: 24
85.93.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Feb 2025 14:38:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e6:fe:6a:e0:8e:02:86:c1:ab:1d:24:9b:00:4a:fa:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 8 19:17:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f633c595fdd5b41cd3730541ce9031595dd9608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1a:61:7e:38:61:30:2e:11:36:29:e8:84:6c:
90:20:bc:82:4c:66:ab:ca:db:50:60:23:56:a5:ec:
c5:ed:fb:2e:8c:ac:0d:4b:01:16:5a:e6:b8:0f:7c:
1b:95:25:50:f6:3e:f1:22:a8:02:92:54:96:6c:0e:
94:59:6e:3c:5b:37:96:08:96:b0:de:2c:d1:10:f2:
35:36:4f:68:a4:cc:98:d4:78:fd:29:0a:b6:20:45:
78:2d:83:8e:06:00:4a:40:80:f7:91:0d:d6:93:d1:
ac:81:5c:93:87:2b:90:34:01:e2:b2:99:c6:35:ac:
ce:69:4a:c6:9e:c6:9a:49:94:41:0f:49:63:42:bb:
72:83:f2:04:0e:71:73:d4:31:5d:76:4f:c3:87:0a:
62:b2:cc:91:37:95:7e:51:4e:dd:27:7b:48:48:f2:
1f:29:bf:49:b2:13:b9:00:35:5c:4c:1f:67:f6:83:
8c:b8:a6:bb:70:76:5d:48:71:b3:69:14:c4:53:8a:
c8:8b:b2:64:6d:55:d4:35:c4:43:01:b4:58:ae:fb:
bc:2a:23:40:84:dd:04:23:27:5f:25:e3:ab:12:16:
1e:4a:d8:f0:9c:9a:5d:26:0e:dd:39:ec:43:86:c7:
19:59:1f:85:14:74:b9:89:ab:a7:12:8e:59:36:46:
af:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:63:3C:59:5F:DD:5B:41:CD:37:30:54:1C:E9:03:15:95:DD:96:08
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/P2M8WV_dW0HNNzBUHOkDFZXdlgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.96.0/24
85.93.31.0/24
Signature Algorithm: sha256WithRSAEncryption
78:e0:e3:b9:6b:88:2c:5d:55:51:71:c9:a4:a9:d8:1a:f1:35:
b6:ff:2e:c4:21:41:15:0b:69:09:9b:36:7b:13:4d:02:ea:04:
3a:fc:61:52:3f:e2:2f:86:41:04:70:c5:19:f4:94:04:e6:3e:
49:50:a6:d4:2c:0c:0a:e3:95:bc:d9:c5:f1:72:3d:85:9c:68:
3a:cc:14:bd:3d:6d:5c:3b:ce:14:44:41:18:f6:d5:74:1e:ab:
7f:6b:7e:35:57:76:4c:4e:14:a4:0d:4d:0d:50:e1:4e:ac:5e:
45:75:a3:9e:6b:fa:ec:26:e1:46:bd:a1:6f:6f:68:5f:0b:7a:
45:b9:b4:53:ee:9f:5c:f5:c5:0b:63:aa:7a:0e:c6:ca:7d:19:
c0:ac:1a:ff:da:af:57:34:0c:ca:4e:2c:19:09:0f:0b:fd:1a:
61:da:a1:71:d9:e1:62:63:34:75:c9:62:17:a5:63:7d:2e:9a:
15:8a:d9:eb:55:d0:7c:d8:ac:a6:83:63:ad:72:40:b1:87:ba:
1f:a9:44:51:3f:c4:c0:5d:52:b8:26:8d:98:50:8d:5f:ab:c4:
67:3c:c6:ad:de:2c:5a:8c:da:11:bc:8d:e9:ca:13:26:4a:9e:
fe:42:02:41:20:46:81:ee:8a:9f:1b:28:6b:c5:a9:8f:61:be:
d8:73:f9:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:12:55 2025 by rpki-client