Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/2574d2-cb0c-4b2a-be83-8e00bda3b245/1/s1HoWBdoxO6gJ-n7GMeQUg9_YGw.roa
File: s1HoWBdoxO6gJ-n7GMeQUg9_YGw.roa (raw, json)
Hash identifier: cT1pEHqaTRyGFwxMaKLa8DiETliZp1vSQXeGBezqDqo=
Subject key identifier: B3:51:E8:58:17:68:C4:EE:A0:27:E9:FB:18:C7:90:52:0F:7F:60:6C
Certificate issuer: /CN=1b4d80373e3e34d00a85b84128d405399bcf8a45
Certificate serial: 0196E35748AEEB2C80902C1388FD56F54320
Authority key identifier: 1B:4D:80:37:3E:3E:34:D0:0A:85:B8:41:28:D4:05:39:9B:CF:8A:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G02ANz4-NNAKhbhBKNQFOZvPikU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/2574d2-cb0c-4b2a-be83-8e00bda3b245/1/s1HoWBdoxO6gJ-n7GMeQUg9_YGw.roa
Signing time: Sun 18 May 2025 12:21:10 +0000
ROA not before: Sun 18 May 2025 12:21:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56755
IP address blocks: 185.237.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 May 2025 13:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:e3:57:48:ae:eb:2c:80:90:2c:13:88:fd:56:f5:43:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b4d80373e3e34d00a85b84128d405399bcf8a45
Validity
Not Before: May 18 12:21:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b351e8581768c4eea027e9fb18c790520f7f606c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e6:49:6d:7e:b3:b1:1c:6e:db:d6:34:76:cb:
2b:e0:46:ca:f7:0d:ec:80:42:96:15:3c:44:9b:81:
02:59:5c:ce:67:d1:a3:a8:61:13:f9:32:ea:ef:23:
58:f3:0a:e4:3e:cb:61:3e:6d:e2:5c:04:5e:41:c9:
78:f3:dd:d2:e6:02:9b:a5:df:a6:56:2f:1e:f5:cc:
08:c6:22:65:79:5c:fa:40:10:aa:5c:fe:72:75:e6:
fa:6f:b4:18:3d:ed:c7:8a:8b:a8:5e:36:49:c9:a8:
6f:5a:8e:b3:ff:4a:0e:8d:ad:f0:fc:c1:32:71:3c:
e7:59:15:bf:1a:71:0e:de:f7:d8:10:89:93:af:b0:
ce:e4:41:26:89:67:17:47:a6:45:b9:2d:8b:c1:ec:
bb:15:f1:7c:29:b7:47:b6:d9:cf:65:35:ce:b4:88:
06:e9:24:81:e9:31:89:2d:41:b1:23:17:3c:b8:06:
41:37:ab:c2:d2:3b:05:57:08:07:66:50:22:5b:a5:
d2:e2:08:1b:c1:88:b6:16:0d:64:b9:a4:71:de:23:
74:04:95:4c:a2:26:47:96:c4:96:c7:26:d1:e5:1b:
07:21:8c:9e:a1:33:95:af:99:e2:55:e7:9c:17:69:
04:38:a4:89:73:03:b1:94:e9:57:30:19:f4:57:f9:
dd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:51:E8:58:17:68:C4:EE:A0:27:E9:FB:18:C7:90:52:0F:7F:60:6C
X509v3 Authority Key Identifier:
keyid:1B:4D:80:37:3E:3E:34:D0:0A:85:B8:41:28:D4:05:39:9B:CF:8A:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G02ANz4-NNAKhbhBKNQFOZvPikU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2574d2-cb0c-4b2a-be83-8e00bda3b245/1/s1HoWBdoxO6gJ-n7GMeQUg9_YGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2574d2-cb0c-4b2a-be83-8e00bda3b245/1/G02ANz4-NNAKhbhBKNQFOZvPikU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.93.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ac:e5:f6:17:25:a6:5e:e1:3e:4d:bb:f0:62:28:a7:69:fa:
18:1b:c5:a9:cb:a0:4f:a5:b4:ee:c1:6e:8f:d5:ef:34:c7:1f:
bb:0d:5b:1e:04:e7:53:70:07:d4:94:c1:c5:2c:32:b0:36:9d:
3a:fc:2e:52:09:9a:b5:b3:53:f2:02:c5:4c:0a:eb:55:17:9e:
39:1e:a0:64:49:e7:be:a3:d1:90:71:73:c4:08:c8:41:dd:89:
37:41:23:9c:c1:e1:f4:c2:fc:4c:9a:5a:78:0c:4a:24:1b:dd:
4c:09:ea:c7:ff:48:ea:7d:49:ef:99:a5:0e:bb:cb:31:20:52:
5e:19:5e:db:cf:b9:d8:27:cf:b5:7f:56:fc:03:8f:d2:ac:d3:
17:1f:44:a1:c0:a9:a4:a9:81:10:e6:f8:44:c9:36:2c:7f:fc:
eb:01:a4:5c:36:1e:68:61:82:9f:dc:5a:6d:d0:ea:03:14:27:
29:41:9a:97:49:ef:b2:0b:5c:1d:12:19:d3:f1:e9:ba:7d:3f:
73:6c:c0:0e:76:bf:f8:6b:b5:e2:1f:0f:3e:12:7f:6d:d1:87:
2c:65:23:a1:b2:dc:a2:63:e3:b8:cd:2f:c9:9f:d1:8f:c4:f0:
0b:d9:b7:50:ff:e4:6d:8d:48:c7:cc:ae:ba:da:1a:50:9c:c0:
1b:67:a7:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:15:38 2025 by rpki-client