Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/3eYMt6CdZMZ2eABBt9cZkhJCxLI.roa
File: 3eYMt6CdZMZ2eABBt9cZkhJCxLI.roa (raw, json)
Hash identifier: 2O+uMacQN3VxP1CgHqOUAiAfRuhZcif/FvKqlfxFQUw=
Subject key identifier: DD:E6:0C:B7:A0:9D:64:C6:76:78:00:41:B7:D7:19:92:12:42:C4:B2
Certificate issuer: /CN=55baf26967510b3c52e46d1dc593967cdf29f9c9
Certificate serial: 0194F29C0C4581A9A87DA9C775F6D11E1C16
Authority key identifier: 55:BA:F2:69:67:51:0B:3C:52:E4:6D:1D:C5:93:96:7C:DF:29:F9:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/3eYMt6CdZMZ2eABBt9cZkhJCxLI.roa
Signing time: Tue 11 Feb 2025 01:25:00 +0000
ROA not before: Tue 11 Feb 2025 01:25:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 178.253.12.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 14:43:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f2:9c:0c:45:81:a9:a8:7d:a9:c7:75:f6:d1:1e:1c:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55baf26967510b3c52e46d1dc593967cdf29f9c9
Validity
Not Before: Feb 11 01:25:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dde60cb7a09d64c676780041b7d719921242c4b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0c:94:b2:b6:96:c4:e4:37:99:25:25:cf:34:
7e:15:19:66:63:91:cb:0a:c6:f2:86:58:25:41:6c:
b0:0d:60:77:08:bc:a9:8e:8b:46:ca:7b:9f:dc:74:
ea:13:5e:0d:49:06:9a:b8:45:0c:77:3f:cb:ec:61:
01:74:b2:2c:c5:8e:dc:ee:fe:9a:53:62:d3:c3:b2:
7f:0f:e6:2e:45:30:c3:59:b6:e2:ce:81:72:b0:26:
72:77:ce:b2:92:6b:be:27:63:15:52:24:e8:65:c5:
a9:76:eb:5c:5f:97:aa:ca:bc:2b:b0:73:cd:46:fe:
00:4e:e3:f1:9f:15:e9:6c:f7:69:07:9d:da:83:27:
0e:2d:af:07:82:72:56:ec:9d:23:f9:d7:24:27:b6:
6d:21:84:55:f2:1d:fc:93:57:a8:6e:1c:03:78:c0:
71:f3:a2:53:b6:6f:68:00:17:3e:96:15:f3:6b:fc:
9a:0d:c6:a6:b4:4a:3a:72:74:25:7e:b8:7f:73:ee:
0d:99:7d:ff:9b:90:0c:56:b7:6f:f2:c1:84:7d:ba:
c7:ff:81:eb:00:72:85:cb:7e:e0:10:85:ac:ac:ae:
76:49:36:61:09:cb:23:5d:8b:f5:d8:71:d8:c0:dd:
d1:b0:d8:49:36:a7:f6:f6:cc:f9:e8:6b:e1:ec:47:
7c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E6:0C:B7:A0:9D:64:C6:76:78:00:41:B7:D7:19:92:12:42:C4:B2
X509v3 Authority Key Identifier:
keyid:55:BA:F2:69:67:51:0B:3C:52:E4:6D:1D:C5:93:96:7C:DF:29:F9:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/3eYMt6CdZMZ2eABBt9cZkhJCxLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/VbryaWdRCzxS5G0dxZOWfN8p-ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.253.12.0/23
Signature Algorithm: sha256WithRSAEncryption
93:5b:1a:d3:32:5b:c0:2a:33:81:0f:2e:3c:ac:d5:66:f1:28:
94:cb:a8:6f:71:f1:70:4c:8f:de:0b:d5:6e:c2:1e:11:38:bb:
ed:98:bf:f4:b0:f9:e7:18:91:87:f1:41:e5:8f:19:54:8d:4b:
5d:50:02:09:9f:36:50:aa:7d:32:44:0a:37:0c:0c:58:91:fc:
19:30:5a:41:f3:75:d4:44:b1:da:a0:2a:0e:dd:68:ce:b3:52:
c2:c1:55:00:2b:d2:21:87:67:0c:ad:2b:78:27:f1:4d:b6:cc:
0e:91:bf:39:9a:65:2b:37:ae:58:46:e5:92:16:c9:ea:90:41:
53:1a:b7:13:f7:57:c3:71:a7:54:50:a4:a9:43:89:9c:ca:33:
68:fc:e5:c9:c4:03:56:97:1c:ef:30:61:ef:db:61:a3:1f:29:
c0:a4:d0:95:cb:34:ee:37:6c:c7:5b:36:e8:14:7a:da:26:48:
07:1b:d5:8a:5f:e8:00:a9:5c:f1:7c:12:b3:06:6d:2b:00:e1:
9a:16:ef:15:6f:87:1f:94:ae:2a:29:41:66:86:06:d9:47:4e:
0a:f3:8a:a3:03:54:2a:6f:64:6f:9b:93:31:5c:95:67:8c:ac:
1d:56:ce:e4:2c:b8:aa:ad:70:72:26:64:a5:1c:26:04:55:28:
a5:47:e9:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:04:26 2025 by rpki-client