Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/pHZUPJ69Gj35RACisM0BhBjlecM.roa
File: pHZUPJ69Gj35RACisM0BhBjlecM.roa (raw, json)
Hash identifier: ZJC8ECzzXHM3Q2kO51iJm12ROxX4Njv4xjgdH5lWT9Q=
Subject key identifier: A4:76:54:3C:9E:BD:1A:3D:F9:44:00:A2:B0:CD:01:84:18:E5:79:C3
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01942746B2E33F852AAF41B27D7B69729130
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/pHZUPJ69Gj35RACisM0BhBjlecM.roa
Signing time: Thu 02 Jan 2025 13:48:52 +0000
ROA not before: Thu 02 Jan 2025 13:48:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210164
IP address blocks: 78.135.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Feb 2025 01:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:b2:e3:3f:85:2a:af:41:b2:7d:7b:69:72:91:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 13:48:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a476543c9ebd1a3df94400a2b0cd018418e579c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:be:62:1b:0b:b7:f8:50:e7:55:b8:2f:48:60:
5f:18:72:3e:38:eb:37:1c:39:64:77:d2:5f:ba:23:
cb:d9:6f:27:7c:51:29:7b:a7:5b:fa:b2:2b:83:10:
82:17:de:4e:cf:40:c3:b2:6e:40:ab:4d:5b:97:e3:
ce:22:58:47:5a:1d:0a:f9:fa:10:3d:f9:e0:4f:d7:
6e:25:ce:3c:56:c1:b0:27:83:00:3c:fb:5e:ca:21:
61:f6:21:92:79:2f:25:b6:1c:00:91:05:79:cd:b8:
71:94:a6:e4:50:ee:24:68:fe:f0:d2:38:a8:ee:69:
4b:6b:3c:04:5a:11:1b:d1:c9:65:ed:e6:5e:b8:fb:
c4:f0:a9:9d:a9:5c:77:49:8f:95:1c:b8:1a:68:4b:
40:b9:48:4c:89:08:61:77:1c:9b:60:83:11:29:3d:
ba:27:85:a8:55:0e:83:eb:14:1e:38:61:6a:be:4a:
8f:c0:9a:5d:7a:3e:12:23:28:c9:10:fd:72:4f:e5:
90:88:7b:4c:86:4e:a8:80:ff:c9:a1:b5:e3:26:d2:
a5:5f:79:4d:6e:90:5b:e3:67:cb:d0:a5:28:29:af:
b4:56:de:47:ff:04:17:cc:43:65:2e:9b:1c:fe:99:
83:5a:b6:50:49:3a:1a:ce:1a:86:92:73:a0:30:cb:
09:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:76:54:3C:9E:BD:1A:3D:F9:44:00:A2:B0:CD:01:84:18:E5:79:C3
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/pHZUPJ69Gj35RACisM0BhBjlecM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.104.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:c2:e7:86:b0:59:54:ab:ba:23:1a:3d:6c:6f:54:e3:d2:9d:
54:28:79:14:a4:dd:dc:ae:67:c3:3a:81:a3:16:9c:7d:a4:0b:
33:59:fd:f2:a2:3d:f8:08:1b:19:88:4e:b2:ae:93:05:d5:24:
bf:28:a3:2c:7a:66:90:ff:90:9f:db:c3:69:33:b2:7b:ba:05:
57:b9:da:ba:dd:7d:81:82:7c:1e:ea:7c:3e:a6:d9:7e:74:ff:
7c:e0:9d:24:67:c1:60:e9:8f:d0:12:63:37:7d:73:e0:f1:fa:
db:b4:14:95:d5:f4:ca:e1:00:95:e4:a1:b8:d3:a7:8e:a9:be:
8d:c1:42:76:4b:ba:b5:52:a1:c6:b4:5e:cf:79:f5:22:91:6e:
08:0b:db:20:1d:a9:79:5e:6b:9b:03:58:6a:75:41:78:85:47:
e8:10:97:a0:90:aa:f0:16:f0:ec:f3:f1:8b:2c:cf:46:07:fa:
76:e3:f6:7a:dc:1c:13:4b:f3:0d:43:d5:07:9a:56:e5:e8:49:
b5:0b:ea:e0:c7:87:33:ac:c0:26:02:35:48:02:f8:52:3e:ea:
a0:44:1a:17:5d:5b:28:7d:24:e0:e2:88:5c:e3:59:99:9d:c2:
3b:b4:d1:47:62:78:7c:81:3d:5b:5a:e1:30:69:17:65:61:5c:
aa:63:98:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 06:56:11 2025 by rpki-client