Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/G33E2_QgAQsaYEUqJSii90-LEA4.roa
File: G33E2_QgAQsaYEUqJSii90-LEA4.roa (raw, json)
Hash identifier: AFNQ9KhMd0vxUCzh9II/7jpMApGDFjcbvTT9chHchoE=
Subject key identifier: 1B:7D:C4:DB:F4:20:01:0B:1A:60:45:2A:25:28:A2:F7:4F:8B:10:0E
Certificate issuer: /CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Certificate serial: 01980895C0AC11C615338DB17E5025EBE244
Authority key identifier: D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/G33E2_QgAQsaYEUqJSii90-LEA4.roa
Signing time: Mon 14 Jul 2025 10:58:08 +0000
ROA not before: Mon 14 Jul 2025 10:58:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 842
IP address blocks: 185.103.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Jul 2025 13:08:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:08:95:c0:ac:11:c6:15:33:8d:b1:7e:50:25:eb:e2:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Validity
Not Before: Jul 14 10:58:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1b7dc4dbf420010b1a60452a2528a2f74f8b100e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:84:32:d4:62:d6:56:09:17:03:e5:b2:a0:fe:
e1:62:11:d7:0e:68:48:97:66:04:ed:06:59:27:58:
b5:4d:99:9f:ba:1d:81:cc:1e:61:79:c3:41:3a:fe:
3f:0c:1f:1d:f5:cf:a0:01:1d:54:31:d6:c6:52:f0:
a4:69:d6:80:7c:cc:f3:0f:0c:64:95:4e:d5:2b:a7:
b1:08:6d:fc:91:79:bb:4d:7d:ab:3f:ae:8c:da:b1:
3d:c2:b1:37:14:9e:0b:b6:f3:d8:d6:72:af:20:93:
9e:53:e5:67:ab:f3:54:28:e0:fa:3c:9b:6b:c6:15:
a1:d9:b4:1c:2e:25:3d:9c:80:e6:66:fb:f9:5b:c1:
81:37:6e:e3:d2:c4:23:cf:ff:b9:9f:b2:f6:db:a5:
1c:13:53:1b:c5:6f:d6:b8:72:46:ea:21:14:1e:87:
91:0d:53:e0:b1:b6:b7:58:a3:d5:24:cb:4a:6c:e3:
db:23:f2:22:2c:f4:86:64:9f:8c:ae:6a:ac:7f:05:
4f:03:4d:c6:24:b4:9c:cb:56:e8:f1:1a:79:16:b1:
11:e2:01:28:5c:5a:5f:f9:19:4b:43:b5:1c:4e:82:
a9:4d:5f:c3:58:e3:bc:ff:9c:0b:62:2d:5d:fa:de:
37:01:0f:ae:72:ea:a9:cb:75:a1:1f:c2:e9:ce:7c:
de:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:7D:C4:DB:F4:20:01:0B:1A:60:45:2A:25:28:A2:F7:4F:8B:10:0E
X509v3 Authority Key Identifier:
keyid:D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/G33E2_QgAQsaYEUqJSii90-LEA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/1yGexzg_oGEEgN36YsP4LEAM1W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.4.0/24
Signature Algorithm: sha256WithRSAEncryption
87:7a:e9:f2:24:09:0a:3e:da:0f:94:19:06:2d:e7:ef:f7:56:
60:f2:07:b9:28:76:f4:8b:67:d9:24:6c:82:57:ee:98:0e:8d:
71:6b:33:f0:d5:24:f5:6d:ff:76:2f:c6:a0:c0:d2:15:cb:33:
1d:36:38:89:79:2f:fb:08:98:38:10:29:81:64:27:ad:85:fa:
48:44:fa:f1:88:a3:22:82:0e:70:e4:26:fd:df:b5:6c:af:58:
44:0c:36:5f:f9:33:bd:4d:a6:fb:d9:fb:71:6b:d1:07:f3:59:
4b:a0:8a:b0:91:a6:6c:d6:8f:1c:b0:7e:e3:9a:b6:7f:2c:12:
09:e5:45:19:92:b1:57:6b:f7:08:7e:18:1f:97:09:de:24:2c:
06:17:9f:f7:8b:b0:87:30:54:db:4c:98:f5:b7:ca:06:fd:63:
cf:d7:48:9b:fb:07:17:23:06:16:40:3b:8c:8a:33:ac:26:1b:
21:d9:c2:ef:07:a4:59:37:92:59:4d:4e:38:d7:94:ce:c8:e5:
6e:1f:df:d4:92:8e:0a:4b:32:58:07:cf:6f:84:d5:fc:5f:bf:
a3:6e:d2:f6:02:84:81:1c:6e:16:5e:47:66:2c:39:19:7c:88:
55:59:a1:ed:91:79:24:69:fa:51:e1:07:0c:03:ef:79:97:b7:
10:16:fb:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 03:10:40 2025 by rpki-client