Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/Q5QoeYh9GM-mvC6Me2WJYKzmpiU.roa
File: Q5QoeYh9GM-mvC6Me2WJYKzmpiU.roa (raw, json)
Hash identifier: aPdGr8UxNwq8ukFeXU4hUa3oBbWmuQP9Ku6BksHJFBw=
Subject key identifier: 43:94:28:79:88:7D:18:CF:A6:BC:2E:8C:7B:65:89:60:AC:E6:A6:25
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0194266BBB5A861B788D1F0F46013D5E7241
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/Q5QoeYh9GM-mvC6Me2WJYKzmpiU.roa
Signing time: Thu 02 Jan 2025 09:49:42 +0000
ROA not before: Thu 02 Jan 2025 09:49:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8100
IP address blocks: 193.93.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Feb 2025 19:36:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:bb:5a:86:1b:78:8d:1f:0f:46:01:3d:5e:72:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 2 09:49:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=43942879887d18cfa6bc2e8c7b658960ace6a625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:48:5d:59:0a:9c:c0:21:c2:a3:2f:30:44:a8:
2e:df:f4:3c:53:74:33:f9:15:7f:c1:6a:6b:45:8a:
29:48:d6:5b:18:0b:0b:a2:06:5c:f6:2f:5d:e6:68:
49:85:cf:c9:2b:63:df:8b:b5:9f:8d:ef:a3:06:16:
54:6c:b4:b3:32:b4:98:11:3a:85:c1:e7:bb:69:52:
10:c2:26:f0:2c:c8:b5:47:0b:42:21:44:48:9f:a3:
90:e1:fe:3f:ad:9c:56:84:4d:b7:3b:bb:fa:7b:97:
6d:72:ae:27:e8:c7:b0:9d:7d:67:bd:c9:2b:9e:4a:
56:72:09:9d:19:e7:8d:42:ff:a2:5b:7d:da:73:96:
95:65:02:2d:86:7f:9a:7c:28:c9:9e:47:6c:7d:f7:
64:8c:98:29:74:e4:39:aa:20:c8:84:09:50:94:5c:
9c:17:b0:bb:53:40:cb:7a:ac:f1:54:9b:23:99:a3:
e6:70:ad:24:b1:97:95:37:0a:c9:4d:36:94:1c:f3:
48:d6:72:ab:76:dc:5d:0b:83:59:f0:8c:85:17:0d:
dc:3b:3a:75:f0:c6:56:c7:5a:e3:85:4c:19:bf:65:
b9:f0:2f:bb:8d:e1:e1:14:ea:63:ec:8f:fb:1a:88:
b0:78:a1:19:9d:6f:21:6a:a0:a1:6e:4f:43:f0:ff:
76:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:94:28:79:88:7D:18:CF:A6:BC:2E:8C:7B:65:89:60:AC:E6:A6:25
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/Q5QoeYh9GM-mvC6Me2WJYKzmpiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.55.0/24
Signature Algorithm: sha256WithRSAEncryption
74:f6:f7:82:1a:70:db:1f:31:9f:c8:e6:61:b5:dc:81:17:01:
af:5b:b2:57:1d:eb:43:2e:a4:e8:28:57:e8:71:7d:35:76:5c:
7d:3d:97:38:03:bb:28:af:f3:0f:94:ca:a0:8d:e5:25:b9:89:
8a:b4:a0:dd:20:e2:db:75:4e:a4:45:a3:8f:e8:ab:41:fc:98:
bf:e0:c4:d4:f6:7d:b3:14:8d:5a:8f:e3:4f:f7:7f:0a:d0:2c:
f6:66:8c:61:7c:37:52:8b:84:d6:93:f2:9f:89:16:8e:b8:f2:
7f:0e:b6:3a:90:49:b0:56:ba:6f:e4:6e:c4:d1:48:58:c0:99:
76:9f:af:5b:85:8c:6d:19:74:19:75:b2:7f:80:a4:cd:0b:d8:
80:a1:63:08:95:84:9a:25:f4:3e:73:5b:26:61:9e:08:eb:85:
84:94:1e:29:ea:76:27:02:d5:33:37:a2:3b:01:62:a4:5f:45:
a6:f2:d4:fa:fb:4b:00:d4:15:28:13:e9:38:5d:27:74:46:ae:
50:fb:70:ae:d1:71:4e:68:04:84:32:6c:38:94:21:82:0c:40:
34:47:e6:77:bb:f2:bc:74:f4:09:ac:df:a0:39:b4:26:f4:4d:
97:0b:e3:d8:ce:95:a4:7d:1f:75:e6:ab:f3:7b:86:93:b2:ed:
41:b2:3e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 21:50:09 2025 by rpki-client