Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/j-vSPDeCllPOeGxF13JWMREsjxI.roa
File: j-vSPDeCllPOeGxF13JWMREsjxI.roa (raw, json)
Hash identifier: tMKnNi8/CP6DiNj2cWk9hOSCI2GocFdOcK8NJLYoeZA=
Subject key identifier: 8F:EB:D2:3C:37:82:96:53:CE:78:6C:45:D7:72:56:31:11:2C:8F:12
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 019542CCF3EF6F3523B7D622D51399726444
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/j-vSPDeCllPOeGxF13JWMREsjxI.roa
Signing time: Wed 26 Feb 2025 15:08:02 +0000
ROA not before: Wed 26 Feb 2025 15:08:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43260
IP address blocks: 195.178.148.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Mar 2025 10:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:42:cc:f3:ef:6f:35:23:b7:d6:22:d5:13:99:72:64:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Feb 26 15:08:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8febd23c37829653ce786c45d7725631112c8f12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e0:ad:a1:e6:b2:16:b1:9f:e5:3c:0c:2b:64:
c2:01:be:ba:f0:31:e6:4e:ae:80:8f:4f:fd:8f:28:
f4:fa:a5:06:a3:fe:8d:23:48:57:44:f8:93:17:f5:
65:7a:3d:11:1d:89:da:55:69:82:70:68:10:6d:01:
46:de:fd:71:81:a8:ca:4b:0f:79:48:9d:57:57:68:
ac:9e:10:16:5d:ea:87:94:28:2f:c2:93:79:00:1d:
b7:6d:75:f9:0e:72:fd:49:fb:4c:aa:a2:2c:6b:8c:
a2:1b:04:e6:e5:af:98:91:1e:73:62:a8:09:7a:75:
5b:98:57:3e:e3:26:3d:91:bc:a4:c5:87:5e:68:3e:
23:d4:db:38:53:6c:62:d8:75:1b:5d:80:e9:1d:c8:
cb:c7:04:60:25:0a:69:00:dc:6e:5c:8f:24:c6:a7:
6b:e0:45:60:1f:dc:3c:d6:3b:ed:74:8a:70:ab:bc:
d5:be:9f:67:98:84:a4:c4:0a:44:d3:2d:9d:40:f3:
9b:58:47:35:1f:9e:6e:49:59:b5:51:eb:32:cf:d6:
0f:72:5e:84:78:cb:99:d6:3e:a1:1f:7d:a4:74:2a:
1a:d0:f9:62:d3:40:52:41:7a:d8:05:34:d1:2b:67:
09:40:44:ae:91:f3:c6:84:3a:00:29:0d:0c:d2:7b:
f7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:EB:D2:3C:37:82:96:53:CE:78:6C:45:D7:72:56:31:11:2C:8F:12
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/j-vSPDeCllPOeGxF13JWMREsjxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.148.0/23
Signature Algorithm: sha256WithRSAEncryption
43:1a:41:fa:43:e5:13:d7:b7:fc:35:68:47:53:80:da:7e:f8:
87:6a:45:67:eb:51:b0:44:33:61:69:54:5b:63:bb:9f:81:8f:
94:3f:2b:6b:82:51:19:1b:17:24:e5:16:10:f2:9a:7f:0c:47:
ca:14:ac:d7:93:7e:c3:5d:f4:47:24:07:78:b6:97:43:d7:37:
74:b6:a8:15:18:71:d0:63:ff:d9:3c:95:8b:3a:f1:3b:f8:99:
ce:93:f7:38:37:d2:92:0e:e8:73:1d:63:7c:4c:5a:8c:96:61:
1a:62:0b:31:91:ac:4e:d5:01:cd:ae:58:2b:04:8b:d3:bf:d0:
46:2a:5f:5a:f5:58:58:d4:e1:e9:95:a3:2c:06:92:46:ac:ad:
59:51:fd:9e:3f:a4:64:e5:67:ec:f7:e3:34:ea:f4:22:3c:1b:
6a:78:8f:85:6a:ee:77:8f:b2:5b:7a:59:c7:0a:46:a7:64:fa:
9d:4a:c7:b6:08:5a:d7:19:a8:a7:f0:2c:a3:4e:3c:e6:45:50:
ee:c9:14:e1:4c:27:80:4e:ba:3e:a9:bd:ca:8a:07:d2:71:57:
7a:4e:c2:d0:fa:49:c4:45:23:3f:70:97:c6:9d:9e:e3:fe:15:
65:54:6d:ca:bc:6c:45:5d:0c:71:ab:f8:e1:51:f8:17:5b:45:
3c:9e:d3:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:26:14 2025 by rpki-client