Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/dfade9-3294-4fab-b607-2828c48e3599/1/BlY6zM_mZW_PvaamiEqj9I70QUE.roa
File: BlY6zM_mZW_PvaamiEqj9I70QUE.roa (raw, json)
Hash identifier: VJ1pcDLR7KiyWb37dE1StsMBxKxUaFXMCbYzjsYe8zI=
Subject key identifier: 06:56:3A:CC:CF:E6:65:6F:CF:BD:A6:A6:88:4A:A3:F4:8E:F4:41:41
Certificate issuer: /CN=4853216ac9d921733bf3f484393a34495c0e2a67
Certificate serial: 0194F9EBAD990FB6FD3CD0900204F4DF6389
Authority key identifier: 48:53:21:6A:C9:D9:21:73:3B:F3:F4:84:39:3A:34:49:5C:0E:2A:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFMhasnZIXM78_SEOTo0SVwOKmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/dfade9-3294-4fab-b607-2828c48e3599/1/BlY6zM_mZW_PvaamiEqj9I70QUE.roa
Signing time: Wed 12 Feb 2025 11:29:19 +0000
ROA not before: Wed 12 Feb 2025 11:29:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44056
IP address blocks: 195.244.24.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 14 Feb 2025 13:43:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f9:eb:ad:99:0f:b6:fd:3c:d0:90:02:04:f4:df:63:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4853216ac9d921733bf3f484393a34495c0e2a67
Validity
Not Before: Feb 12 11:29:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=06563acccfe6656fcfbda6a6884aa3f48ef44141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:33:af:d5:5d:c6:af:98:42:9a:22:9e:31:a7:
7c:b0:97:6e:a0:c6:74:9d:b2:b8:ee:dc:92:c6:bf:
ae:86:e2:6f:61:63:80:77:29:34:f3:da:43:7b:de:
10:d1:02:ec:7d:f1:a6:76:2a:72:a3:ba:24:a4:67:
92:73:db:39:92:0a:6a:fe:f8:16:c3:7d:8f:c9:48:
e9:13:84:6b:43:df:f1:ba:96:d1:42:4c:5b:67:8b:
ae:42:a3:5e:78:c8:50:f0:9c:86:66:f0:83:c9:99:
f8:b7:c3:d3:67:f2:b1:0e:5f:98:93:9e:75:83:75:
e1:62:49:94:73:45:76:89:6a:49:1a:02:da:e8:65:
a3:09:b3:d6:e8:ef:a3:28:66:b5:eb:76:55:6c:f5:
8f:ff:42:4b:eb:35:2e:a6:72:ce:8c:ac:e3:45:43:
0f:3a:dd:29:e0:44:a1:b9:3e:4c:64:39:e7:1c:78:
84:81:b6:58:d0:79:0e:d4:6c:a8:8b:bd:6b:ac:a0:
49:96:93:94:24:bb:6e:df:a0:b4:04:d2:b1:47:99:
f4:93:02:aa:e8:7c:ad:2b:ee:c0:fa:44:b9:dd:07:
f8:e4:ca:21:0d:33:3c:de:ec:0b:ea:41:c4:49:7f:
ff:e3:12:92:be:f9:c4:94:99:27:0f:ff:33:c8:97:
8e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:56:3A:CC:CF:E6:65:6F:CF:BD:A6:A6:88:4A:A3:F4:8E:F4:41:41
X509v3 Authority Key Identifier:
keyid:48:53:21:6A:C9:D9:21:73:3B:F3:F4:84:39:3A:34:49:5C:0E:2A:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFMhasnZIXM78_SEOTo0SVwOKmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/dfade9-3294-4fab-b607-2828c48e3599/1/BlY6zM_mZW_PvaamiEqj9I70QUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/dfade9-3294-4fab-b607-2828c48e3599/1/SFMhasnZIXM78_SEOTo0SVwOKmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.244.24.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:61:24:c6:3c:47:ff:41:bd:29:c2:3d:6d:2a:52:2d:a4:93:
90:2e:c2:e0:28:27:58:2f:07:67:f3:7b:49:b7:74:26:ba:18:
33:ff:f3:41:54:91:4b:5d:98:ba:cb:83:b2:7b:c7:cb:71:5e:
4d:a5:c1:1e:c6:6b:8d:2c:69:a9:5c:20:ec:7f:36:90:cd:79:
95:9f:84:c9:31:6f:02:9e:04:b8:3a:da:92:b6:e6:0c:44:8f:
2f:11:30:e8:b2:ee:b1:a8:4b:d0:7b:58:a8:50:8c:a5:83:30:
bf:00:16:db:bb:20:a8:ad:d6:e8:a3:23:19:d6:a8:68:b8:7e:
70:4a:a4:6f:2d:82:af:94:17:f3:ce:c8:9c:85:5a:2c:8a:f3:
10:55:98:fa:65:69:23:2c:61:f1:da:45:1d:25:ce:17:2d:08:
d5:a5:5d:51:4b:79:cd:38:d8:8d:31:f6:46:18:57:9c:0e:c0:
03:47:1e:69:0a:81:df:1e:a9:c2:f1:8c:25:e2:d0:3b:6b:3a:
c9:a4:ab:51:38:3a:00:67:80:50:ee:89:61:c6:d6:a0:3e:3d:
1d:ca:62:07:c1:26:8d:7c:cc:26:7e:81:61:3f:7c:4e:a3:67:
ab:c2:82:47:1a:1d:f9:b0:f8:71:93:a0:18:f4:13:fb:d1:c1:
a6:3e:c8:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 05:40:17 2025 by rpki-client