Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pvYHR3Cl5LymUdi0US9cK4iRGmY.roa
File: pvYHR3Cl5LymUdi0US9cK4iRGmY.roa (raw, json)
Hash identifier: blsCtDq8xMQOyk0WP0jP0B8M1Unn05401g8DuNGFeBE=
Subject key identifier: A6:F6:07:47:70:A5:E4:BC:A6:51:D8:B4:51:2F:5C:2B:88:91:1A:66
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194BA0C678730ECACD2ABFFE88A238E16DE
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pvYHR3Cl5LymUdi0US9cK4iRGmY.roa
Signing time: Fri 31 Jan 2025 01:49:22 +0000
ROA not before: Fri 31 Jan 2025 01:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214359
IP address blocks: 94.249.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Mar 2025 05:09:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:0c:67:87:30:ec:ac:d2:ab:ff:e8:8a:23:8e:16:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 31 01:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6f6074770a5e4bca651d8b4512f5c2b88911a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:27:f0:42:0b:be:79:ce:66:10:a2:b0:f8:67:
4c:17:91:1d:a5:ab:27:fc:c4:3f:4f:9d:3b:67:c4:
8b:26:23:09:db:b0:7b:d0:8f:5f:fd:66:80:24:37:
be:7b:00:93:c1:b8:26:86:3e:e6:a5:d0:d7:d2:58:
88:0f:47:bf:24:cb:6a:0e:ec:d1:3d:22:8e:73:4c:
f5:74:a8:bc:b2:5d:05:df:14:90:40:58:d8:29:2d:
e1:fc:44:76:48:21:34:41:d4:4b:7f:6a:5e:54:3b:
07:57:70:b4:66:f4:8e:df:66:27:5e:c4:05:c7:c3:
43:61:bd:58:ab:78:12:41:e1:e4:94:83:cc:63:d6:
a9:19:2c:5a:68:d8:19:64:59:50:e1:1a:38:7a:65:
82:6f:ea:d3:b1:2c:08:00:55:a9:8d:47:a9:e4:56:
9f:f3:02:1c:4c:26:be:9b:c5:fd:76:b5:0d:4b:d4:
bd:1c:74:0f:e9:c7:0f:e7:78:7a:0e:d3:7a:8c:7e:
6f:29:5b:30:a9:f9:e2:19:15:9a:ff:13:d3:ce:49:
69:d1:99:f0:07:2f:b7:63:3a:24:ae:5f:21:4a:9c:
87:2d:c2:90:4b:23:22:2a:91:4a:35:84:c2:6c:db:
4b:ae:e4:85:b1:d4:92:b2:32:53:91:53:84:db:29:
c5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F6:07:47:70:A5:E4:BC:A6:51:D8:B4:51:2F:5C:2B:88:91:1A:66
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/pvYHR3Cl5LymUdi0US9cK4iRGmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.249.169.0/24
Signature Algorithm: sha256WithRSAEncryption
30:11:3a:a0:8c:31:e5:33:26:aa:85:6e:38:89:93:e6:e7:90:
65:fa:2c:b5:9d:e7:25:fa:41:ef:10:f4:07:37:fe:45:4d:13:
c5:2a:bf:ab:ce:db:36:0b:6d:dd:f7:01:2f:dd:1e:b1:db:d4:
0d:49:a6:ea:68:03:8a:aa:3b:ab:02:14:44:fd:07:51:98:68:
db:c2:96:84:61:a5:a7:d9:dc:77:d7:c6:df:05:88:51:e8:06:
9d:79:25:a0:d1:2d:eb:74:30:d1:76:d4:6c:24:a8:d1:d0:43:
c9:15:d1:91:39:a9:b5:32:88:b7:b9:df:7d:61:37:4d:83:97:
0d:ee:69:fb:72:d2:32:f5:52:49:6e:5d:51:d2:01:09:9d:c4:
0c:d5:9e:24:73:52:49:f9:13:5e:c4:37:af:34:11:99:20:03:
dd:6e:39:e9:0d:43:a8:09:7c:28:3a:bc:15:98:51:09:ec:a9:
d5:ef:e5:4c:10:da:33:88:84:95:a4:73:31:60:78:a2:0b:e7:
33:a9:43:23:2d:b9:41:1c:b3:62:b7:c9:8a:e1:31:59:3c:91:
a1:41:36:a3:76:82:55:e6:9f:68:43:2c:8b:89:ee:01:15:ce:
d4:4e:02:58:ca:38:9e:99:89:52:6b:51:a3:c6:83:22:bf:6d:
22:0c:66:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:08:02 2025 by rpki-client