Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/uFGsiY_Ke8lvEMmMq5oReUgUNJY.roa
File: uFGsiY_Ke8lvEMmMq5oReUgUNJY.roa (raw, json)
Hash identifier: DH+DI4oqUWZ+HjhAjbD8BwHCCvv+PYOjLJrKwLb64QE=
Subject key identifier: B8:51:AC:89:8F:CA:7B:C9:6F:10:C9:8C:AB:9A:11:79:48:14:34:96
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 0196E6D796A31D72705D3E1C96F5BA963886
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/uFGsiY_Ke8lvEMmMq5oReUgUNJY.roa
Signing time: Mon 19 May 2025 04:40:10 +0000
ROA not before: Mon 19 May 2025 04:40:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214357
IP address blocks: 62.60.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 May 2025 04:26:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e6:d7:96:a3:1d:72:70:5d:3e:1c:96:f5:ba:96:38:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: May 19 04:40:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b851ac898fca7bc96f10c98cab9a117948143496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:75:cb:56:9d:6e:ff:7c:90:5c:da:a7:b0:38:
7c:40:b0:50:7c:16:cb:52:d5:03:9b:42:87:52:83:
ab:24:7c:d7:f8:21:5e:b1:2f:2c:84:8a:b4:2d:75:
ba:8b:f7:eb:df:2f:cb:22:dd:cf:e3:22:3f:f6:a1:
5e:f3:62:60:94:51:00:d8:07:cb:87:8d:0c:b3:14:
72:7e:40:bc:d6:a1:81:95:62:c6:53:a3:6a:cb:04:
96:23:4c:b4:04:4f:16:c5:91:d8:aa:aa:6a:91:d6:
c1:37:83:a7:e7:91:a8:98:62:f8:14:1a:ca:8c:48:
f8:8b:e0:f0:a5:52:a1:25:51:0a:99:65:ed:fe:0a:
82:4f:ee:d1:1a:c5:e4:ad:d6:94:96:51:84:43:b8:
48:a5:9d:62:4e:d4:87:a9:13:5b:f8:01:2f:32:eb:
05:0f:56:d1:f0:04:95:6e:da:45:51:f8:0f:c7:b7:
dd:90:c5:db:b8:3e:b2:9a:36:87:c0:c0:a0:13:6f:
e2:99:87:72:49:21:55:9b:c7:67:32:f1:dd:14:23:
aa:0d:25:75:2a:68:f7:af:4f:0d:27:77:9e:a0:fb:
2c:a4:54:22:73:bd:b8:b0:81:49:ab:d5:07:ae:05:
bf:bc:0d:6f:5a:fc:24:8e:77:32:14:c0:6a:bc:fc:
a8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:51:AC:89:8F:CA:7B:C9:6F:10:C9:8C:AB:9A:11:79:48:14:34:96
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/uFGsiY_Ke8lvEMmMq5oReUgUNJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.189.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:9f:ad:bb:f8:f1:4e:1a:40:9a:9e:c0:56:a9:51:65:a8:22:
b1:af:ea:a9:d6:2e:48:19:4e:7c:71:5a:df:d5:7c:24:4d:fe:
43:a6:cf:5f:a5:cd:ef:60:94:8b:64:ac:e6:60:a2:3a:dd:7d:
9e:80:96:0c:f5:72:83:83:44:61:68:52:85:a9:a9:28:9d:13:
54:28:ad:d8:34:af:01:09:d2:9b:e5:5b:8c:31:83:08:6f:2c:
70:1d:06:04:8a:ed:17:ef:3a:77:5b:98:ee:fa:8f:9d:bb:a7:
65:c6:b6:7e:f7:46:6f:57:b1:76:d7:9e:8b:85:58:8c:aa:57:
a2:6f:76:16:1e:db:90:93:70:f6:85:76:39:e6:08:a0:77:79:
d5:22:7a:a9:e0:6c:75:24:1e:58:9a:e0:44:eb:ef:b5:93:42:
9f:94:15:98:00:98:6c:a1:71:60:9a:9f:48:a0:b4:57:56:4a:
9d:a8:5c:f6:e6:fe:92:e2:d2:a0:5c:82:b4:90:a7:0a:b5:b5:
0b:bd:22:4c:41:cc:c8:16:4b:9d:fc:96:4f:84:7a:5e:2b:58:
24:6b:ed:45:29:37:b2:19:1c:c7:2b:18:39:8b:33:35:08:dc:
27:33:af:a3:76:04:54:88:e2:ad:cb:0e:fc:08:d9:1b:5a:d8:
19:bb:57:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:59:05 2025 by rpki-client