Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/ORBcsobeLsn79VvBkgXmgwEofOA.roa
File: ORBcsobeLsn79VvBkgXmgwEofOA.roa (raw, json)
Hash identifier: RPrYe/mzLwv6ywlhSC2JH1gE05U6YYKcDHbQBALn3Cs=
Subject key identifier: 39:10:5C:B2:86:DE:2E:C9:FB:F5:5B:C1:92:05:E6:83:01:28:7C:E0
Certificate issuer: /CN=fd261d45319e8375187436da44bf5b9adb044a7f
Certificate serial: 01942827CCDCCCA2741B24997730BEE96121
Authority key identifier: FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/ORBcsobeLsn79VvBkgXmgwEofOA.roa
Signing time: Thu 02 Jan 2025 17:54:44 +0000
ROA not before: Thu 02 Jan 2025 17:54:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207733
IP address blocks: 178.250.134.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Feb 2025 21:22:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:cc:dc:cc:a2:74:1b:24:99:77:30:be:e9:61:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd261d45319e8375187436da44bf5b9adb044a7f
Validity
Not Before: Jan 2 17:54:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=39105cb286de2ec9fbf55bc19205e68301287ce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:46:ed:83:89:7e:f1:14:f1:c6:09:50:9b:d1:
00:97:84:ed:b0:79:b2:e0:e7:62:cc:6a:8a:22:4a:
00:fe:90:78:63:34:3e:42:96:32:ca:ca:be:77:90:
91:36:5d:89:fc:bc:e5:4e:b4:60:25:6d:5e:93:ca:
81:cd:6b:cf:50:88:56:a8:ce:6b:0f:cd:08:ee:cf:
54:29:f1:08:02:e8:6e:d6:12:c1:9c:99:61:c6:b9:
f8:8a:5a:64:0c:af:4d:6c:d4:3a:ba:3e:9b:ca:dd:
ce:dd:fb:9e:59:5e:02:e7:2f:b5:62:87:72:c8:19:
48:b0:2d:60:c8:3c:3d:a0:16:18:b0:fb:52:1c:71:
35:07:85:63:73:5c:50:29:01:4c:2a:40:6a:d0:16:
7b:8c:56:73:fb:fe:f1:db:d7:73:d5:51:de:a0:3d:
27:90:9e:d1:e0:0d:71:5c:29:bd:c1:ef:21:e1:b4:
77:33:0e:d3:6b:bb:1e:6b:eb:a5:73:4b:e0:b3:74:
71:30:0d:89:47:8a:82:0b:24:63:1a:e4:35:59:8f:
98:11:56:c8:43:f8:34:a4:e1:90:7e:80:7d:b3:49:
c6:08:17:e2:1d:cb:93:5c:b1:2c:02:ba:b9:84:4b:
b9:e2:14:9c:36:0b:6e:9d:02:40:77:b7:b8:64:23:
f5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:10:5C:B2:86:DE:2E:C9:FB:F5:5B:C1:92:05:E6:83:01:28:7C:E0
X509v3 Authority Key Identifier:
keyid:FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/ORBcsobeLsn79VvBkgXmgwEofOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/_SYdRTGeg3UYdDbaRL9bmtsESn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.250.134.0/23
Signature Algorithm: sha256WithRSAEncryption
34:30:6d:2d:82:d3:e8:8f:76:69:c2:a0:c1:f0:45:9c:37:6d:
4c:65:b7:10:03:96:d1:13:8f:c5:eb:a1:a8:28:05:a7:03:07:
e3:6e:ae:a1:32:29:fb:2d:6b:90:3b:5e:0c:b4:1f:fc:76:83:
d7:9f:dd:59:2f:95:60:31:44:b6:bd:46:a3:65:4f:e4:e0:a9:
1a:f1:64:32:30:19:29:4a:70:75:47:6a:75:82:e7:53:98:d7:
a9:e8:5a:4f:6b:23:b6:ab:5b:98:90:a5:79:41:55:82:04:7c:
02:c8:28:bf:80:3f:6b:c7:70:03:9e:f9:cc:41:2b:d5:2e:32:
f6:e3:57:98:1d:e2:6b:cb:1b:08:d4:6f:14:7f:82:8d:25:e4:
ea:6a:0d:7d:3a:39:6f:7c:80:3b:7e:16:7c:72:b0:32:b6:a4:
10:cb:d2:cc:e4:01:71:6a:08:f6:8d:22:20:08:65:b4:02:cc:
e8:14:31:48:7d:f3:40:96:1f:b3:e2:6c:90:3a:8a:b1:5b:6f:
e7:cc:5e:2a:14:b4:a7:8c:b0:83:cb:98:e1:3c:d4:b8:64:86:
9f:b8:e3:4e:a5:c4:ec:75:22:a6:c9:a7:e9:f7:e7:01:22:7f:
91:0a:04:ff:29:73:89:14:9d:96:f6:12:da:9e:58:e0:a8:eb:
27:5e:a2:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 14:56:56 2025 by rpki-client