Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/PtBlkUG2sH8739rbPaHz_UEZV24.roa
File: PtBlkUG2sH8739rbPaHz_UEZV24.roa (raw, json)
Hash identifier: 2q7aZm9TWspI2DUE9GKo4R32eOWP+wqfMeOFPEKJUic=
Subject key identifier: 3E:D0:65:91:41:B6:B0:7F:3B:DF:DA:DB:3D:A1:F3:FD:41:19:57:6E
Certificate issuer: /CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Certificate serial: 019556D6E9A1F74A47F8C6F3DB83504D0A2C
Authority key identifier: 5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/PtBlkUG2sH8739rbPaHz_UEZV24.roa
Signing time: Sun 02 Mar 2025 12:31:19 +0000
ROA not before: Sun 02 Mar 2025 12:31:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 45.89.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Mar 2025 17:38:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:56:d6:e9:a1:f7:4a:47:f8:c6:f3:db:83:50:4d:0a:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Validity
Not Before: Mar 2 12:31:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3ed0659141b6b07f3bdfdadb3da1f3fd4119576e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:c9:41:29:e1:62:82:16:82:e5:59:99:62:e3:
e2:88:60:fe:15:c3:08:99:dd:b1:44:03:44:b0:bf:
89:d1:92:27:27:62:76:f1:89:44:1b:32:5c:94:cc:
69:9a:e3:27:90:2f:63:d7:92:a7:b2:12:be:38:5e:
e3:79:8a:17:71:d1:39:18:39:c0:62:6d:7c:20:14:
0a:e9:68:42:d4:95:8d:72:42:0a:4e:b9:2a:6e:44:
8f:f6:b0:af:a3:15:37:af:24:c4:04:76:d4:5b:51:
bd:3d:01:e9:4a:1b:00:dd:54:36:f7:2d:91:f5:b3:
42:6b:ff:f5:0b:18:42:9e:3a:c1:07:29:c2:b8:37:
e9:80:a5:dc:3d:30:9e:7d:a0:01:59:a0:2e:7d:6f:
e5:d3:15:1f:8b:d8:23:f3:96:b5:3c:0b:41:d9:2c:
fb:62:99:9c:d8:c4:1c:3b:8b:b7:41:69:42:20:24:
c5:86:29:5f:0c:1f:c4:1d:11:78:43:35:85:80:ae:
a4:cd:a9:15:e0:6d:53:c5:44:56:d6:63:23:3e:a1:
23:b0:b6:37:d3:e7:7e:e7:51:52:8b:8e:e7:90:0c:
2e:2f:15:4e:66:5f:de:7d:92:65:ce:67:ae:ac:47:
12:2e:96:10:10:38:5f:aa:70:14:a3:85:64:75:60:
61:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D0:65:91:41:B6:B0:7F:3B:DF:DA:DB:3D:A1:F3:FD:41:19:57:6E
X509v3 Authority Key Identifier:
keyid:5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/PtBlkUG2sH8739rbPaHz_UEZV24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/Xu4NfnMISkLkx_cRjyOD_P82m6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.28.0/24
Signature Algorithm: sha256WithRSAEncryption
92:d6:36:f6:b3:f9:36:ea:28:5b:a1:8b:6e:d0:53:88:f1:9f:
f6:95:a7:d3:b9:94:6c:9c:b4:90:9c:a1:f2:0e:db:8f:59:e7:
d9:75:27:12:32:41:e3:60:7d:f0:8e:ae:6a:19:a9:b3:69:41:
4f:82:ed:fd:70:44:7a:fc:f5:88:20:14:cb:cc:e2:5b:d6:2e:
33:b5:0d:0d:78:0c:5f:07:6d:b3:be:d7:75:79:12:71:7c:74:
6d:b2:a3:d9:d6:7d:0a:f0:43:dd:52:58:ef:5e:73:47:29:a8:
28:eb:53:01:77:fb:c8:39:da:3c:a0:c0:d7:9a:12:bc:fd:34:
2a:7e:e0:1b:b0:3b:d8:fa:6f:80:10:31:eb:d2:b2:bc:42:45:
49:ad:e1:fd:6e:48:5a:62:9e:f3:e3:d9:ee:f2:55:6c:39:2a:
ff:8f:6a:04:b4:bf:85:d6:92:64:ef:fd:8c:14:a0:ae:89:f4:
2d:2a:78:b1:17:e5:8a:a4:a3:6b:dd:a4:a1:c8:41:7f:a7:b3:
67:68:1d:13:52:77:49:9e:e6:03:47:19:44:a2:86:6f:7b:d5:
19:37:87:39:85:c9:c2:73:44:92:0e:ff:86:a4:f9:0f:9b:64:
98:76:45:85:a4:f0:9b:b5:be:97:a4:e2:35:b9:2e:c9:73:e7:
d6:b3:d1:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 19:17:29 2025 by rpki-client