Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/0Ua2nnRppOHM9GT1o6Nhgv8yDMc.roa
File: 0Ua2nnRppOHM9GT1o6Nhgv8yDMc.roa (raw, json)
Hash identifier: hbm+GvPtfrN0yX3ptvhp4DRx4jmWbXspu/MdAyGMbPk=
Subject key identifier: D1:46:B6:9E:74:69:A4:E1:CC:F4:64:F5:A3:A3:61:82:FF:32:0C:C7
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0196F9670160036A21C02A47E80D45906D5C
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/0Ua2nnRppOHM9GT1o6Nhgv8yDMc.roa
Signing time: Thu 22 May 2025 19:09:59 +0000
ROA not before: Thu 22 May 2025 19:09:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215939
IP address blocks: 94.74.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 May 2025 17:12:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f9:67:01:60:03:6a:21:c0:2a:47:e8:0d:45:90:6d:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: May 22 19:09:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d146b69e7469a4e1ccf464f5a3a36182ff320cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:16:76:14:64:a0:72:f0:7e:28:70:61:3e:be:
c7:53:3e:b8:e7:e2:29:06:8f:ca:b6:c4:0f:05:e6:
dd:f1:42:0a:c5:81:aa:c0:79:bc:f4:44:bc:9a:b7:
d3:5e:63:7a:39:40:55:15:cd:10:24:c4:75:32:45:
8a:e4:e3:19:02:7e:9c:dc:75:da:46:28:9b:a1:99:
a9:43:8c:28:da:72:2c:57:a5:f6:da:6d:6f:e0:d7:
a4:ce:42:08:fb:a2:1c:29:83:fa:e5:39:71:f5:3c:
d8:87:09:3d:18:3c:a4:1f:06:20:12:60:f6:30:df:
36:f4:ee:04:f2:95:3b:65:9a:9c:1a:2f:ed:8d:94:
de:29:af:71:c2:e0:66:95:8d:eb:3f:cb:b6:29:35:
ed:f7:1e:12:f1:2f:b7:cf:cb:64:48:ce:38:a6:bc:
b0:91:ab:34:08:1e:80:3f:3b:25:1a:35:e0:e6:5d:
48:26:04:3e:6c:03:6d:5c:1f:c4:df:2e:23:e8:21:
6e:dc:8a:d1:93:87:0b:3e:59:64:d7:de:f3:02:06:
ef:4e:86:88:e2:9c:40:b5:d5:10:a2:22:f7:2e:a0:
7a:2d:2c:34:48:c5:30:31:47:6a:cc:d7:f1:ba:38:
c1:cf:b3:c4:55:85:18:76:0e:e8:9a:5a:89:6b:15:
16:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:46:B6:9E:74:69:A4:E1:CC:F4:64:F5:A3:A3:61:82:FF:32:0C:C7
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/0Ua2nnRppOHM9GT1o6Nhgv8yDMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.74.164.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:ac:49:bf:67:be:1d:a2:b2:43:40:9f:c7:0c:47:23:b3:71:
32:5b:09:34:c5:c4:44:36:2a:4f:e1:bc:a6:08:15:3e:76:ca:
d4:11:f0:6a:51:2b:11:08:ef:f2:ed:ff:b3:d5:d4:1a:2b:65:
c4:44:c8:78:4a:da:30:a8:3c:9a:dd:a7:96:00:2c:fc:9e:b8:
07:28:e0:fe:a2:f6:87:bc:23:58:4a:cc:13:55:77:f1:b4:0d:
0d:f7:a0:dc:14:5a:8e:10:0f:78:aa:cd:71:3f:ff:28:4b:9c:
59:d8:3c:61:50:37:13:39:aa:38:46:13:5b:06:49:68:b3:19:
8e:05:84:4f:02:48:11:0e:f7:12:e9:bc:62:66:70:55:1a:01:
38:43:6a:a9:b5:80:57:65:97:c5:08:b7:eb:ff:ea:3c:fa:89:
de:bb:15:a3:cf:36:84:79:07:d2:09:99:ce:cb:fb:e6:d7:fd:
dd:15:04:b0:94:3a:5c:66:8c:4c:00:dc:30:2e:28:b6:31:a0:
4d:30:ff:91:68:0b:30:27:01:e2:d4:26:a7:0c:1e:15:a3:3a:
94:6b:d8:24:f4:12:af:34:b5:b9:fb:ed:ba:e8:2a:83:dd:ef:
54:c4:f5:02:ac:ba:64:f6:ac:f5:9a:0b:60:cc:ba:df:e7:9b:
52:df:07:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 10:07:02 2025 by rpki-client