Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/lQYaSCuMLruSsGz6ewqgb1-DXdU.roa
File: lQYaSCuMLruSsGz6ewqgb1-DXdU.roa (raw, json)
Hash identifier: a3crM68IRGQkNZMVjHW7esTVI8AtHv5hiOJIA9ebWcw=
Subject key identifier: 95:06:1A:48:2B:8C:2E:BB:92:B0:6C:FA:7B:0A:A0:6F:5F:83:5D:D5
Certificate issuer: /CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Certificate serial: 01942068340FC694FF32E9D06445501DFD5C
Authority key identifier: 96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/lQYaSCuMLruSsGz6ewqgb1-DXdU.roa
Signing time: Wed 01 Jan 2025 05:48:07 +0000
ROA not before: Wed 01 Jan 2025 05:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199264
IP address blocks: 5.42.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:34:0f:c6:94:ff:32:e9:d0:64:45:50:1d:fd:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Validity
Not Before: Jan 1 05:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=95061a482b8c2ebb92b06cfa7b0aa06f5f835dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e8:46:eb:bd:76:fe:b9:8a:96:ce:77:31:a4:
22:a0:7f:24:3d:fe:e8:6f:be:8d:4c:8d:47:4f:c0:
f0:4b:f6:43:af:57:9b:23:00:8c:0d:61:8e:83:e2:
3a:c5:24:98:8c:84:f2:aa:39:84:b6:d4:83:c0:f2:
75:6d:79:be:38:f1:11:a2:5d:00:4f:88:1d:51:f3:
3c:7f:8c:fe:30:7d:ac:21:cc:ae:e6:15:73:ec:dd:
75:e7:dd:ae:53:a1:af:a8:53:d4:03:b6:46:38:09:
e6:99:30:a4:ab:bc:7c:f0:63:e7:a9:ae:3a:16:b8:
e5:c4:17:34:f5:2c:5c:26:3e:2b:d0:43:21:30:82:
f3:29:63:05:0f:7f:58:0b:02:fa:58:42:b9:22:b0:
93:3f:2a:d8:4a:45:3c:18:02:9f:cb:98:0f:c0:f4:
26:4d:97:d9:ba:be:43:94:33:ed:26:22:ef:01:77:
39:ca:80:d4:2d:6f:3b:19:36:9f:da:a2:4f:bc:fb:
a6:6c:61:9f:79:c0:b9:c9:c4:bc:d7:61:25:47:ab:
fd:d9:6b:ad:77:27:d8:43:d1:a5:43:92:dc:81:75:
36:9f:fc:56:49:84:5f:29:de:8f:29:04:4b:07:e9:
78:4f:2e:c0:fa:87:5d:fd:d6:0d:f6:95:2b:e9:9f:
f1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:06:1A:48:2B:8C:2E:BB:92:B0:6C:FA:7B:0A:A0:6F:5F:83:5D:D5
X509v3 Authority Key Identifier:
keyid:96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/lQYaSCuMLruSsGz6ewqgb1-DXdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/lgYvXdsY-W14SSs1ONd0XMRxSiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.69.0/24
Signature Algorithm: sha256WithRSAEncryption
75:15:64:42:8f:38:ea:f8:df:ef:34:9a:7d:d7:7a:32:d4:b5:
76:6b:bc:f9:45:0c:87:c8:47:bb:d0:6b:70:18:5d:b5:57:a5:
4c:99:2e:d7:bd:3a:ef:cc:fd:d4:8d:23:fb:e0:00:55:23:d2:
f5:83:c5:24:d4:30:3b:bc:7c:c8:18:70:5e:ca:7c:96:61:0f:
a7:b0:59:a0:b1:8f:24:ae:4c:ff:e8:74:5c:67:24:7f:27:b6:
1f:dd:77:42:f7:5a:a2:c7:f6:b9:76:9d:97:92:8a:eb:3b:45:
4d:bd:0b:c7:2b:1e:fb:d3:60:b1:3f:55:30:fe:f6:76:5b:9e:
32:ae:91:69:8f:a9:88:ef:d4:b0:b4:46:55:42:b7:65:c1:d5:
9c:51:a8:dc:65:65:c3:70:a6:cc:7b:b2:20:bf:05:27:cb:0a:
73:b8:9b:b5:31:e0:e9:7e:ff:7b:e5:d3:f9:ec:5f:22:93:c7:
51:d5:42:19:39:3a:c5:d2:78:25:00:f7:e8:aa:2c:3a:cb:e1:
04:f9:ee:8a:7b:f7:13:ec:50:08:a4:b6:94:f2:8a:11:b7:ee:
7b:44:c3:7e:fa:46:7c:40:45:7b:c3:8c:0c:fb:b0:a7:d4:a3:
43:11:b5:d8:a1:14:a8:c7:b7:7e:c9:95:9b:eb:bd:02:0d:e4:
d4:aa:a7:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:49:34 2025 by rpki-client