Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/I56xHZ0jMr95TMEaXiG1Ty6B8so.roa
File: I56xHZ0jMr95TMEaXiG1Ty6B8so.roa (raw, json)
Hash identifier: hKn6aHMtEyu2mQy1v7NxE9GBsFGAhn9Haf8WGdd2874=
Subject key identifier: 23:9E:B1:1D:9D:23:32:BF:79:4C:C1:1A:5E:21:B5:4F:2E:81:F2:CA
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 01953896344C2F86E40AAE316F8A8B3C8DB1
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/I56xHZ0jMr95TMEaXiG1Ty6B8so.roa
Signing time: Mon 24 Feb 2025 15:32:02 +0000
ROA not before: Mon 24 Feb 2025 15:32:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15924
IP address blocks: 188.124.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Mar 2025 18:24:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:38:96:34:4c:2f:86:e4:0a:ae:31:6f:8a:8b:3c:8d:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Feb 24 15:32:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=239eb11d9d2332bf794cc11a5e21b54f2e81f2ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2b:d4:c1:02:9e:bf:92:3e:b4:f0:4d:4f:bd:
52:d5:a2:67:c4:70:44:95:c3:8f:31:0e:23:ac:f7:
c1:71:a8:54:f7:4c:65:26:cf:16:84:4f:c3:d3:bc:
a0:4b:7f:fc:db:d6:ad:29:82:f1:8c:9d:08:74:ed:
b6:dd:42:ab:92:d4:03:f7:5c:ee:04:b6:41:dc:27:
df:2b:37:c6:39:ec:4a:77:1e:1c:c3:18:a0:af:42:
2a:cc:8e:e9:d2:1f:e0:4d:76:73:cf:0d:48:d1:eb:
46:9d:72:20:d8:a0:fe:b8:94:56:9a:c1:2d:2e:b5:
e0:f1:ce:17:98:d6:a7:2d:93:90:05:e9:80:57:d7:
ea:e5:b6:b0:97:38:d8:2a:5d:94:3f:ef:c6:af:7e:
8e:34:0a:15:d5:53:8a:31:b0:29:33:4f:0a:0d:81:
13:32:24:07:bd:99:f4:35:b0:6e:f8:f0:e6:5d:e3:
cc:06:fc:f7:6b:fc:98:cb:54:01:59:58:33:36:94:
b2:f3:6c:a9:48:8e:63:34:0a:c3:75:22:f7:3b:1f:
12:17:f0:fa:f8:cc:8b:a7:e3:58:7a:0c:83:b3:c3:
d8:a1:0b:a2:fa:99:16:2b:ca:f9:86:b4:35:af:03:
a8:57:9e:ba:1e:f2:57:a1:db:25:7e:59:3b:2e:7a:
77:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9E:B1:1D:9D:23:32:BF:79:4C:C1:1A:5E:21:B5:4F:2E:81:F2:CA
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/I56xHZ0jMr95TMEaXiG1Ty6B8so.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.124.13.0/24
Signature Algorithm: sha256WithRSAEncryption
20:9d:c6:59:ec:86:93:77:7d:1e:14:28:78:24:02:5b:f6:95:
c6:47:4d:b9:d8:b8:95:36:c8:fa:cb:f9:f3:fc:e3:58:93:64:
f0:6b:81:0e:ec:72:0d:a8:c9:15:a2:4e:68:07:ec:fd:61:ba:
26:d6:d8:e1:77:80:7e:f8:ae:4c:cb:c7:db:bb:57:2d:d2:30:
a3:e1:bb:5e:23:02:ff:a2:2e:bb:4b:10:7b:e4:3d:78:b4:e9:
c3:3b:59:44:c8:6e:31:a5:58:81:97:2d:0a:a3:4d:ce:d6:55:
94:51:ea:6b:bb:25:7b:6c:e4:f3:46:8a:dc:3b:18:4d:e3:bf:
47:9a:91:74:d7:7a:3b:e3:03:41:66:6f:c8:f9:9c:39:5f:86:
18:76:d5:73:0d:0b:53:7c:95:7f:05:c9:1d:08:39:df:03:5f:
41:70:da:6b:f1:d4:4d:58:c2:e0:68:2a:32:d7:9a:c7:a5:7f:
37:f8:dd:94:93:b5:78:98:90:96:c5:82:ee:30:0e:f6:7f:25:
68:bd:e2:76:35:7a:61:cf:da:a3:26:b1:fd:4d:de:33:8a:52:
f5:e3:30:3e:f8:ca:52:49:1c:00:6d:74:7c:4d:e3:cc:e0:1a:
ac:e9:77:36:73:ce:0d:74:8e:92:d2:89:f2:d8:68:16:2c:04:
cc:67:d0:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 00:56:23 2025 by rpki-client