Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/eS_npTfJ_BkKVvvhABzHyVlV5jA.roa
File: eS_npTfJ_BkKVvvhABzHyVlV5jA.roa (raw, json)
Hash identifier: gnEDS1Jc+FwfXYRCxK9VHJJJ7FuVSLHrWn4cIXbPAps=
Subject key identifier: 79:2F:E7:A5:37:C9:FC:19:0A:56:FB:E1:00:1C:C7:C9:59:55:E6:30
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 0194C1350CBCECD6624FCAAC03A0E12A270D
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/eS_npTfJ_BkKVvvhABzHyVlV5jA.roa
Signing time: Sat 01 Feb 2025 11:11:06 +0000
ROA not before: Sat 01 Feb 2025 11:11:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58345
IP address blocks: 5.134.32.0/20 maxlen: 20
193.108.206.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 03 Feb 2025 09:49:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c1:35:0c:bc:ec:d6:62:4f:ca:ac:03:a0:e1:2a:27:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Feb 1 11:11:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=792fe7a537c9fc190a56fbe1001cc7c95955e630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:73:aa:72:4d:44:1c:88:f5:b9:eb:bf:80:d9:
f0:33:4a:d8:dd:f3:2b:91:c5:4a:63:36:c8:92:f9:
5c:d4:94:1e:17:8d:a9:ae:f7:a8:ac:d1:5d:8d:08:
59:d8:41:3d:23:da:13:89:d5:ba:7e:5c:b2:6e:a7:
8f:fa:bd:f9:b1:e8:f4:65:24:34:b9:e4:1f:c1:18:
60:f8:a9:a2:df:65:22:b1:1b:0f:1c:ec:cb:27:c4:
35:e0:57:d7:c7:89:99:95:43:ea:a0:60:dd:c0:06:
3b:1b:64:2b:d8:57:70:8d:53:b6:45:a5:40:b9:d9:
76:1c:46:35:91:04:5c:c7:44:1e:d9:57:d0:ba:7f:
59:89:40:99:03:c4:a0:3d:85:ff:d7:f7:6f:bc:3b:
e3:a0:db:29:16:7f:21:db:d1:27:74:b8:7a:d7:f9:
57:d0:33:68:a3:70:12:4b:7b:ce:6f:59:0c:b2:fe:
a6:e0:24:15:63:f8:52:46:a7:94:1c:22:aa:ae:d5:
63:6a:68:a8:90:68:93:24:ad:ca:ed:96:af:e7:56:
e0:e1:f5:9b:75:35:38:c6:66:7d:cc:54:2f:26:72:
54:0d:6e:1d:b6:8c:49:18:02:37:8b:59:28:84:4a:
63:d9:8e:f3:6f:52:92:2d:8c:ac:06:55:1e:88:a1:
0c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2F:E7:A5:37:C9:FC:19:0A:56:FB:E1:00:1C:C7:C9:59:55:E6:30
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/eS_npTfJ_BkKVvvhABzHyVlV5jA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.32.0/20
193.108.206.0/23
Signature Algorithm: sha256WithRSAEncryption
54:10:52:71:f6:06:d4:3e:e5:2c:75:2f:fc:82:d8:13:c2:4d:
11:bd:53:87:59:65:2b:98:ca:ca:de:ab:ea:32:11:df:53:df:
66:37:fd:7f:b6:cd:2d:51:5e:9f:e3:cd:37:4a:16:68:21:6c:
8f:39:90:9e:69:c7:ec:43:ec:38:89:ee:e8:e0:cf:39:6e:d4:
c6:de:39:6e:99:a6:0d:8d:1a:67:b4:72:93:32:dc:4b:22:a9:
6a:32:27:e8:0f:f9:8c:01:c2:a0:7d:7d:df:6b:fe:00:6c:24:
99:7a:4c:95:d3:52:46:1a:a7:10:ad:05:be:b0:55:8a:e5:79:
c2:8e:f2:38:f2:f1:d6:44:97:3b:db:6b:02:eb:75:de:bf:c6:
a2:d2:c8:4d:94:ae:87:c3:85:a6:6f:ee:f4:85:c2:91:5a:55:
21:6b:c5:db:c1:0a:3e:91:ac:28:9f:cc:6c:11:a7:40:13:cd:
2b:0a:a0:c1:c6:6e:3a:94:4e:f0:16:2a:7a:20:d4:4c:ce:48:
c5:e6:0d:4e:23:a9:c9:a5:d4:c8:68:5c:2c:fe:67:07:41:73:
22:70:65:5e:ca:f9:6b:f6:a7:10:95:02:1c:c7:30:d7:03:cd:
fb:66:14:e1:7a:b1:aa:f8:31:8c:aa:ca:45:9c:75:8a:58:c6:
d3:52:8b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:40:57 2025 by rpki-client