Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/j7wQDeai8YFBhpdKnaMi3cUA7Tg.roa
File: j7wQDeai8YFBhpdKnaMi3cUA7Tg.roa (raw, json)
Hash identifier: MTiXBtgghA1UF0+wWteuRqo5diNp/o7T6yfmgDv4hqM=
Subject key identifier: 8F:BC:10:0D:E6:A2:F1:81:41:86:97:4A:9D:A3:22:DD:C5:00:ED:38
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 019637E6BC02984B3A93A6696A85207AF800
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/j7wQDeai8YFBhpdKnaMi3cUA7Tg.roa
Signing time: Tue 15 Apr 2025 05:23:10 +0000
ROA not before: Tue 15 Apr 2025 05:23:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213323
IP address blocks: 80.96.48.0/23 maxlen: 23
80.97.144.0/23 maxlen: 23
81.181.28.0/23 maxlen: 23
81.181.232.0/23 maxlen: 24
194.102.150.0/23 maxlen: 24
194.153.228.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 May 2025 10:33:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:37:e6:bc:02:98:4b:3a:93:a6:69:6a:85:20:7a:f8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 15 05:23:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8fbc100de6a2f1814186974a9da322ddc500ed38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b0:66:0a:6d:4a:ff:87:e4:44:74:f8:29:07:
3a:8e:3f:93:b0:a6:c9:c5:7c:8c:23:aa:a4:c4:73:
5f:bb:b3:96:3c:54:21:ed:5d:33:90:6b:1c:fa:36:
57:d5:8b:9e:0c:86:1f:be:72:b2:4b:89:db:29:fc:
cd:1a:4b:3f:10:c2:9e:9d:d1:51:c2:ba:0c:ac:c2:
7e:35:c7:49:27:51:26:2c:d1:27:5c:10:81:d7:f8:
83:cd:3c:eb:4d:ba:2e:6c:80:fa:f2:51:87:6e:6c:
fa:36:9f:b2:1c:ff:36:dd:5c:2e:3e:0f:f0:50:a2:
e9:85:b6:a4:19:96:19:5a:61:8d:53:20:cb:06:2f:
62:05:fe:a5:bb:28:e6:ec:5b:d1:cb:bb:7c:17:37:
96:a9:43:12:4e:04:90:e5:d4:42:ad:4c:6a:a3:67:
ea:00:c9:73:44:32:93:2d:93:6a:27:a8:c7:ee:cb:
fe:48:7d:38:7b:c0:da:fa:a7:6e:db:b1:b4:43:07:
8a:cb:69:32:60:d7:4d:e0:a4:8d:d0:31:27:26:c0:
19:4c:30:99:5d:b7:85:f7:91:59:13:06:53:ba:28:
82:6e:48:d7:db:17:14:a9:8d:31:75:a3:c8:14:1e:
c3:79:08:1f:85:39:c2:66:11:96:a1:ed:aa:e4:b3:
53:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:BC:10:0D:E6:A2:F1:81:41:86:97:4A:9D:A3:22:DD:C5:00:ED:38
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/j7wQDeai8YFBhpdKnaMi3cUA7Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.48.0/23
80.97.144.0/23
81.181.28.0/23
81.181.232.0/23
194.102.150.0/23
194.153.228.0/23
Signature Algorithm: sha256WithRSAEncryption
12:cc:67:4b:99:e1:0b:7f:7d:30:d7:f1:8a:eb:e0:58:d2:74:
3f:6a:78:34:70:14:fb:bb:ea:75:16:50:7b:6a:83:11:ae:c8:
97:b5:63:73:dd:61:ed:cb:2d:f6:45:16:66:c2:e6:17:ad:b4:
b5:da:3a:67:2e:5f:5e:b7:b4:09:dc:e2:f8:ac:db:35:d5:8c:
3f:7a:d3:42:eb:b3:49:5d:2e:6b:79:a4:2d:99:5f:72:19:cd:
fe:89:5f:06:ad:16:22:b8:7b:bc:2f:5c:56:01:05:7c:62:73:
1e:7e:d2:4d:c1:6e:f5:cc:dc:4f:69:c2:de:54:a6:09:3b:7e:
6b:ed:93:26:44:bd:1a:c4:cf:e3:b7:2d:3b:c7:00:ea:ab:64:
e8:cf:9a:fa:c4:10:bd:32:f8:bb:67:8d:00:8b:00:ef:04:86:
14:90:03:d9:01:cf:ce:85:25:19:89:7a:15:31:27:55:65:5c:
8b:d4:6e:7a:d9:22:db:83:4e:99:72:65:63:ce:91:52:51:a2:
07:ce:22:a2:19:10:a6:a7:79:d0:30:46:9b:67:47:a5:20:87:
0c:98:05:53:83:5c:02:fb:6f:d5:dc:4a:c6:93:97:1b:b4:bc:
4f:cb:df:5a:95:5d:0b:7e:b7:b7:33:39:13:c2:95:ff:58:83:
5b:db:ec:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:42:27 2025 by rpki-client