Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/eZzRj8LDdRAomaNJRKI2Xv2mLns.roa
File: eZzRj8LDdRAomaNJRKI2Xv2mLns.roa (raw, json)
Hash identifier: hqxeC2ZvSdd9u4m+a+ln20OiofplHSWCLCo1Pj1eeQ0=
Subject key identifier: 79:9C:D1:8F:C2:C3:75:10:28:99:A3:49:44:A2:36:5E:FD:A6:2E:7B
Certificate issuer: /CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Certificate serial: 019552C24B8B365F19BEB207F776845C52E5
Authority key identifier: 12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/eZzRj8LDdRAomaNJRKI2Xv2mLns.roa
Signing time: Sat 01 Mar 2025 17:30:19 +0000
ROA not before: Sat 01 Mar 2025 17:30:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396982
IP address blocks: 192.40.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Mar 2025 11:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:52:c2:4b:8b:36:5f:19:be:b2:07:f7:76:84:5c:52:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Validity
Not Before: Mar 1 17:30:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=799cd18fc2c375102899a34944a2365efda62e7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4b:26:ec:74:a5:f2:6d:93:b4:b8:d4:79:ee:
09:76:55:33:ad:09:4e:1c:2a:41:f2:1e:65:81:d3:
79:29:92:f3:33:8b:db:a1:8c:9d:51:9a:fe:bb:a1:
40:42:84:07:f7:24:7d:3f:a9:2c:07:e4:56:7a:9b:
36:91:6c:9f:9a:09:7b:bf:b8:93:e5:b6:8b:b2:05:
a3:b3:06:c4:04:6e:fb:c7:76:ba:f3:9a:6c:fd:8d:
a8:df:ec:ed:74:dc:9a:5f:fa:37:8e:02:08:68:25:
f1:d9:a9:fb:8a:54:e5:7f:ac:da:f1:8b:d1:f8:28:
2d:f4:55:d8:4f:94:ed:ba:63:44:80:59:fa:18:3c:
ab:9a:e2:29:f0:7a:6e:a2:3f:64:62:40:a1:23:68:
b3:aa:2c:ad:35:f3:c0:6a:f5:95:de:12:ed:a7:d8:
61:0e:6e:6c:85:47:cf:21:73:96:a0:05:aa:49:f2:
71:f5:fa:28:fa:e9:fe:93:d4:e6:96:2e:ef:a8:2b:
b0:12:ad:e1:1f:7a:ad:25:df:17:d9:f3:67:74:9b:
f0:77:ef:9f:8a:32:8a:80:dc:32:16:7d:85:80:ad:
4b:a0:8c:82:27:a1:58:42:8d:86:c6:32:48:0e:64:
51:69:3c:66:fa:0b:25:40:c3:ca:fe:21:d7:00:6d:
68:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:9C:D1:8F:C2:C3:75:10:28:99:A3:49:44:A2:36:5E:FD:A6:2E:7B
X509v3 Authority Key Identifier:
keyid:12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/eZzRj8LDdRAomaNJRKI2Xv2mLns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.40.69.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:ce:7d:ce:f8:5f:6a:70:05:28:bf:bb:da:c1:9d:de:da:06:
c5:0a:64:e8:bf:01:18:b2:ff:f1:ee:b4:1d:97:59:42:71:e6:
b7:91:75:bd:43:8e:19:df:d3:cf:21:0f:7d:1e:57:66:8e:6c:
0a:be:01:8a:fe:35:fa:0a:04:25:24:e1:85:99:44:80:00:05:
8c:34:c1:f6:37:b3:55:ee:fb:6b:09:21:54:24:0a:7c:b9:51:
ea:e0:40:51:0e:13:87:07:a1:f5:da:65:12:b7:5a:9d:74:69:
20:10:82:4b:50:73:15:23:88:9f:b1:51:61:f1:10:84:fd:ce:
88:6c:e1:f5:45:c2:7e:33:f1:a1:11:a9:49:fa:34:d0:f2:d0:
84:36:de:f4:b3:ed:3e:46:5c:ca:ff:53:2b:3a:ae:49:fc:23:
d1:1e:5c:c9:53:cc:17:30:87:b1:cf:05:e4:6a:8d:cb:16:24:
d8:f5:8d:4f:16:a3:ac:34:de:61:f0:0b:fb:e8:dc:49:8c:88:
1e:26:f2:cd:a2:2a:e0:0e:fe:0f:35:ca:67:b9:36:99:eb:ab:
6a:7c:13:de:28:50:f4:f5:96:e6:b7:10:8d:01:45:de:f4:eb:
82:60:fc:9c:4c:05:c5:b1:fb:db:1e:84:e8:93:6c:be:4a:68:
f3:a2:28:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:21:25 2025 by rpki-client