Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/54cGgr_VUulRBt5OU13VVYaDW0Q.roa
File: 54cGgr_VUulRBt5OU13VVYaDW0Q.roa (raw, json)
Hash identifier: bmkaExXG2MQGKHcrk5b5uOmrWgfzI+c7f9H0u3ed+AM=
Subject key identifier: E7:87:06:82:BF:D5:52:E9:51:06:DE:4E:53:5D:D5:55:86:83:5B:44
Certificate issuer: /CN=55baf26967510b3c52e46d1dc593967cdf29f9c9
Certificate serial: 01958F541FF1EB9D16B9D20247C3C8D9607F
Authority key identifier: 55:BA:F2:69:67:51:0B:3C:52:E4:6D:1D:C5:93:96:7C:DF:29:F9:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/54cGgr_VUulRBt5OU13VVYaDW0Q.roa
Signing time: Thu 13 Mar 2025 11:46:49 +0000
ROA not before: Thu 13 Mar 2025 11:46:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 83.147.232.0/22 maxlen: 24
178.253.38.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Mar 2025 08:05:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:54:1f:f1:eb:9d:16:b9:d2:02:47:c3:c8:d9:60:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55baf26967510b3c52e46d1dc593967cdf29f9c9
Validity
Not Before: Mar 13 11:46:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e7870682bfd552e95106de4e535dd55586835b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:05:8b:35:72:d6:14:69:f6:0d:d2:16:3b:8b:
ee:ad:da:2e:a8:b7:fe:f0:cc:b9:14:58:af:7b:f2:
1b:a9:1c:4e:39:47:04:8f:7b:d6:c4:4e:e2:47:cc:
da:45:02:c9:7f:f1:38:6b:ee:95:fa:36:d8:d7:9e:
79:f1:4a:39:72:94:e2:e2:ed:3e:1d:dd:49:2e:3d:
53:ee:76:0b:20:f6:65:7d:20:7b:87:65:82:63:ca:
74:8d:b1:bf:33:38:8c:ed:03:55:2d:34:d5:eb:01:
45:02:5f:9a:60:80:48:cd:61:bb:3d:77:83:80:34:
7b:f3:8a:d4:53:d8:40:66:18:44:47:0a:ab:c9:34:
24:dc:d5:a2:57:58:94:db:de:aa:55:59:6f:30:39:
92:b4:32:78:b0:74:10:2b:ec:56:06:46:aa:cd:3b:
65:ad:35:98:4c:3a:fa:2d:e1:76:e5:9e:7c:95:22:
96:cf:43:40:ac:d7:cc:a0:86:14:a2:60:9b:e0:45:
4c:f0:b0:ea:9b:1f:e4:b1:07:03:cc:a5:45:ae:06:
83:ef:84:52:11:65:32:c0:ff:cd:a0:0d:c0:77:71:
8b:39:6f:f2:ad:c9:09:c9:c2:4e:5a:67:f9:4a:f9:
14:78:2d:65:f0:78:2c:2e:7c:66:fd:da:95:84:2a:
25:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:87:06:82:BF:D5:52:E9:51:06:DE:4E:53:5D:D5:55:86:83:5B:44
X509v3 Authority Key Identifier:
keyid:55:BA:F2:69:67:51:0B:3C:52:E4:6D:1D:C5:93:96:7C:DF:29:F9:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbryaWdRCzxS5G0dxZOWfN8p-ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/54cGgr_VUulRBt5OU13VVYaDW0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5aa4dc-d184-4db4-9e10-49f981ee5981/1/VbryaWdRCzxS5G0dxZOWfN8p-ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.232.0/22
178.253.38.0/23
Signature Algorithm: sha256WithRSAEncryption
62:e5:7c:c3:aa:10:3f:b1:0b:dc:aa:65:ba:6d:5d:d5:c3:76:
9c:bf:66:e7:9e:62:12:ef:d6:db:c0:f4:1b:ac:cd:95:8e:56:
02:02:66:65:f8:33:05:02:36:f4:8d:ea:97:1b:1d:c6:c2:64:
b5:8a:83:f9:0f:fd:04:c8:c6:fd:d3:fe:32:76:57:eb:ff:92:
c2:9d:84:e8:8f:ef:61:ca:0b:c7:b7:45:84:42:00:65:d0:e0:
31:e5:e0:5e:97:99:61:44:31:d7:4d:fe:86:b8:ec:f6:c3:0e:
fa:87:e0:f9:fa:a5:3e:84:bd:85:69:19:09:1c:99:e4:a4:77:
ec:cf:24:ef:75:cb:7b:51:f0:45:ea:7e:60:e4:05:dd:08:d8:
d0:20:2a:a6:72:7d:a3:a2:da:6e:ec:da:54:69:a6:06:02:44:
d0:4a:32:49:33:6d:e7:20:b0:f2:89:f6:dc:f0:95:45:9b:8f:
55:d5:df:7e:78:d4:2b:5a:61:8e:57:99:7e:65:79:1d:f1:8c:
ad:d0:58:0f:73:09:e2:c5:3c:3c:61:1b:57:33:68:16:4b:52:
94:b3:88:6b:14:15:7c:cb:26:07:16:6d:88:e4:f8:30:3a:d6:
47:db:3d:66:21:d3:d1:b8:14:e1:d3:14:84:05:aa:e3:00:27:
86:d2:b7:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:51:29 2025 by rpki-client