Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/hx9P_5VdBuW8LSFzNsy3tM5qU4w.roa
File: hx9P_5VdBuW8LSFzNsy3tM5qU4w.roa (raw, json)
Hash identifier: SDfpGU70XFFMHESyFcb/1ClsIE94kmAimLsCjQ8mmIQ=
Subject key identifier: 87:1F:4F:FF:95:5D:06:E5:BC:2D:21:73:36:CC:B7:B4:CE:6A:53:8C
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 019427B550F311454432AC68D1D2FD398E16
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/hx9P_5VdBuW8LSFzNsy3tM5qU4w.roa
Signing time: Thu 02 Jan 2025 15:49:41 +0000
ROA not before: Thu 02 Jan 2025 15:49:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19437
IP address blocks: 77.105.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Feb 2025 10:40:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:50:f3:11:45:44:32:ac:68:d1:d2:fd:39:8e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 15:49:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=871f4fff955d06e5bc2d217336ccb7b4ce6a538c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:17:05:4d:c9:d5:e9:fe:9a:a1:11:a3:87:98:
ca:3d:59:7d:ab:c5:e5:72:f1:4d:17:0c:46:45:3c:
36:89:33:7a:3e:4e:80:11:37:c7:ac:42:81:29:9f:
74:4c:13:0e:05:ca:97:58:d1:5a:2c:05:c0:bb:90:
f0:e5:45:c0:d8:4f:e5:17:43:e7:60:d2:af:bc:28:
5d:90:3c:67:8e:ea:2b:ec:69:d9:44:6a:ab:d2:42:
72:56:54:28:ff:99:32:04:d3:1b:c6:76:da:04:0c:
e9:55:47:c9:4a:4b:bb:7c:3d:33:d4:a1:63:b9:dd:
46:99:54:2f:9c:a9:7d:fc:43:e2:fc:50:c2:5e:61:
2c:62:6c:4a:07:74:55:76:53:cd:2c:70:1d:64:97:
e7:dd:c7:8d:ee:55:59:8c:6e:77:f7:2c:d7:2b:ac:
f0:49:6e:cc:8c:e4:3a:30:0f:77:6a:3c:e6:d1:8a:
7f:ae:28:8c:cd:a7:ed:f8:d7:67:b7:63:44:bd:1e:
18:6e:e6:75:8d:f3:35:bf:94:58:cb:a8:85:e8:da:
0a:f3:93:e5:50:74:b9:b9:a2:7a:06:f6:83:b0:82:
25:a5:3b:7e:5c:0e:9a:23:da:37:4d:86:0e:98:bc:
e4:32:de:70:fc:4c:b7:f2:0f:e3:00:5c:96:ac:f0:
81:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1F:4F:FF:95:5D:06:E5:BC:2D:21:73:36:CC:B7:B4:CE:6A:53:8C
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/hx9P_5VdBuW8LSFzNsy3tM5qU4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.105.4.0/24
Signature Algorithm: sha256WithRSAEncryption
86:74:c4:87:ef:d1:62:c5:f8:84:03:c3:85:d5:98:37:34:89:
03:61:16:e1:c6:af:57:cc:14:e7:d3:7e:fe:62:cc:75:7a:f5:
f2:53:7b:82:21:37:56:89:b9:b9:b9:c4:a0:79:5c:28:d1:25:
98:6f:5c:36:44:91:a2:30:cf:5f:fa:f6:c5:ec:65:2a:eb:19:
b8:15:eb:7d:3a:ce:6e:dd:bc:d3:89:0f:1a:2e:1a:7a:97:cc:
87:e8:21:ff:dc:4c:9e:0f:93:0f:e0:8a:b2:2f:03:0a:b4:cb:
97:79:91:d2:fa:20:5a:4e:e3:d5:e3:fa:08:e3:49:e7:9b:b2:
06:5b:5e:43:86:e6:86:28:60:c7:2b:b2:ba:de:0e:d6:4b:63:
21:1c:4a:40:1b:68:5a:0a:72:33:5c:80:93:85:b9:bc:2b:1e:
f2:6e:a6:e1:31:f1:08:1d:c3:39:0e:f2:23:21:5b:ba:09:96:
82:d8:8b:1f:54:b7:bd:07:b9:a2:e9:64:5e:2b:40:5b:6a:bd:
ab:a2:2e:e6:1b:85:57:3c:01:b4:3f:f8:b1:06:ba:7c:b8:da:
24:3e:ee:43:86:af:1c:68:df:a5:07:28:de:c7:e4:2a:71:b4:
c6:d8:c8:14:ab:b9:e3:5d:1e:01:30:63:28:d9:94:bb:04:f6:
a6:25:f4:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:31:18 2025 by rpki-client