Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/o09hncUrQkrex3gy5xhgXeWuIbQ.roa
File: o09hncUrQkrex3gy5xhgXeWuIbQ.roa (raw, json)
Hash identifier: UuzKWYSYdw56nDtKOEy1IoDAlcVOgC4pFWq3kuOoCHg=
Subject key identifier: A3:4F:61:9D:C5:2B:42:4A:DE:C7:78:32:E7:18:60:5D:E5:AE:21:B4
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 019716407FDA304F7E0253F6482FC5C59B95
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/o09hncUrQkrex3gy5xhgXeWuIbQ.roa
Signing time: Wed 28 May 2025 09:36:54 +0000
ROA not before: Wed 28 May 2025 09:36:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14576
IP address blocks: 193.93.192.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 05 Jun 2025 11:19:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:16:40:7f:da:30:4f:7e:02:53:f6:48:2f:c5:c5:9b:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: May 28 09:36:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a34f619dc52b424adec77832e718605de5ae21b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:db:70:a1:e4:75:d0:34:0c:d9:2f:8d:97:45:
db:e0:01:1c:f3:da:60:f0:8c:b5:af:c8:f5:2c:38:
31:86:40:6c:03:f3:2e:2e:49:bb:59:87:29:bf:4c:
d9:bb:fd:5f:1c:42:47:3e:a2:0f:74:8c:8f:23:b2:
bc:2b:15:11:33:aa:35:d6:60:69:73:4d:2e:a0:2f:
e2:af:b8:8c:48:09:9c:75:3f:bf:5d:88:01:14:60:
1a:2e:fb:fc:66:46:e5:50:41:04:e7:d9:24:fe:9f:
06:18:07:37:99:c3:bd:4e:95:d2:6a:8c:00:58:fa:
a0:c0:96:03:13:e1:f6:7c:52:0d:f2:ad:a1:84:0d:
d0:12:58:11:45:1c:31:d1:6d:ea:93:ed:f8:8a:63:
fe:f9:bb:23:cb:26:c7:e0:a6:24:7b:0a:57:2e:da:
49:8d:e0:06:d4:70:9a:9f:e7:18:3b:a6:54:3a:f3:
0d:c3:16:26:ca:6c:d4:e5:b7:32:19:1a:af:72:41:
f1:28:11:f4:ba:6c:2f:ba:36:3e:b5:02:62:3a:40:
7c:8c:c2:d3:ad:ea:6a:f6:e4:95:80:f8:80:72:bc:
f3:c0:1e:47:2b:53:87:da:e1:2e:b9:52:d4:2c:f6:
10:32:4e:cf:10:39:1e:e8:e0:64:9e:ea:39:91:6b:
ec:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:4F:61:9D:C5:2B:42:4A:DE:C7:78:32:E7:18:60:5D:E5:AE:21:B4
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/o09hncUrQkrex3gy5xhgXeWuIbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.192.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:3a:d8:a5:4f:a9:db:69:46:b7:8d:69:76:59:d7:b9:0b:71:
34:8a:8c:13:ad:74:58:a4:52:f6:d7:3d:0c:1d:db:95:c1:f5:
49:29:08:84:86:40:d0:0e:b6:20:87:18:05:ba:67:16:54:43:
33:0c:9b:74:aa:96:60:5e:b1:6d:04:8d:4a:8e:53:6d:2a:5f:
b6:a7:6c:f2:77:62:53:b4:db:2b:82:cb:ef:56:e0:e2:81:e3:
84:ef:01:da:b6:2e:47:a8:53:8e:1b:5c:a2:4a:dd:fc:97:db:
6d:92:d0:4e:08:dc:e5:54:60:7b:cd:8f:94:6e:8a:cf:e1:71:
cc:9e:be:d4:6a:e6:e4:43:08:76:24:7f:e7:cc:68:e0:9a:62:
12:17:de:af:b9:3c:10:7d:64:32:7d:d4:aa:31:40:85:bd:1a:
1f:d3:3f:f5:10:42:05:b4:db:8a:68:7a:ef:27:cc:cb:ad:e6:
0e:c6:0b:16:91:bb:f0:59:e9:87:c4:66:16:d9:e2:2e:41:38:
72:b3:73:ac:00:87:1b:ad:fa:06:c3:c4:78:0e:59:8c:de:e1:
e8:73:0a:c8:e8:b3:9e:dc:07:d2:9c:5c:05:f8:6c:57:39:b9:
e4:54:00:2d:d2:97:ea:0e:f3:79:53:bd:42:86:76:a0:00:74:
9c:6d:fd:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 08:45:27 2025 by rpki-client