Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/1-jPyUyidOC1licYPlJBUiSc1tXQ.roa
File: 1-jPyUyidOC1licYPlJBUiSc1tXQ.roa (raw, json)
Hash identifier: O17l400YWQ9aLowIzLGcaxq9yiXyzAdMUu5Hear5s/Y=
Subject key identifier: FA:33:F2:53:28:9D:38:2D:65:89:C6:0F:94:90:54:89:27:35:B5:74
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 01942827BD141DCA6A45C8ACF22D8C6F60E4
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/1-jPyUyidOC1licYPlJBUiSc1tXQ.roa
Signing time: Thu 02 Jan 2025 17:54:40 +0000
ROA not before: Thu 02 Jan 2025 17:54:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44029
IP address blocks: 87.229.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 25 Feb 2025 18:33:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:bd:14:1d:ca:6a:45:c8:ac:f2:2d:8c:6f:60:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Jan 2 17:54:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fa33f253289d382d6589c60f949054892735b574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d3:bf:91:7b:84:15:c9:e1:cb:c9:d5:4c:d0:
e3:86:0c:3e:d3:8a:dc:5b:20:cf:09:d7:0f:9b:9e:
0a:68:d9:d5:6f:bb:cd:3e:ea:91:bb:24:88:ec:b8:
b8:2c:a0:e2:74:fb:95:d0:b1:a5:ca:ef:b4:3e:b2:
2f:31:22:b8:bd:ca:e8:3b:49:42:25:a6:fc:36:04:
b7:b2:dc:11:e8:75:9c:59:0a:77:02:91:53:cf:ec:
f7:11:c5:69:95:21:1c:3c:89:40:ab:69:ad:55:9d:
08:71:62:83:eb:87:e2:76:e9:f7:dc:05:cc:3a:fb:
59:89:d3:6a:cd:54:ec:2e:d4:91:35:2f:73:01:12:
81:69:d2:ea:cb:19:5f:73:26:fe:da:b2:5b:1a:cd:
31:8e:0a:3f:23:3c:38:82:bb:44:29:a8:1e:bd:6a:
3f:8c:5f:15:b2:29:07:b8:47:db:bd:50:e9:3f:74:
73:3e:2e:f6:e8:6a:71:41:49:1b:26:d1:7e:4a:53:
c0:61:6c:20:94:61:df:9f:f3:2d:b3:5a:81:ca:6b:
13:ad:7d:b1:c0:7d:e8:68:a3:e3:eb:79:7f:d2:6a:
5c:cc:a8:7d:e8:c6:d9:79:11:15:87:4b:6c:47:de:
a3:87:aa:01:fa:30:8f:70:09:2b:7a:05:54:e0:27:
d2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:33:F2:53:28:9D:38:2D:65:89:C6:0F:94:90:54:89:27:35:B5:74
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/1-jPyUyidOC1licYPlJBUiSc1tXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.229.10.0/23
Signature Algorithm: sha256WithRSAEncryption
47:4e:12:cf:03:59:63:7f:b6:62:77:0d:da:7c:ba:c8:6d:c1:
24:66:e2:89:28:5d:f8:db:e8:41:54:9f:31:e2:98:6a:e6:23:
d7:1a:c8:a9:b6:4f:7a:13:1f:a6:26:54:60:9a:19:d3:3f:73:
75:10:32:76:5f:1f:9e:fe:d9:c7:62:97:06:65:50:db:49:cb:
d9:ef:05:54:56:b0:9a:bb:89:3b:d8:dc:6e:f3:66:ec:40:2b:
a0:aa:cf:36:b7:8d:18:a5:01:61:2b:af:7d:6b:b9:c5:6b:c4:
ee:6d:31:93:a4:47:e9:52:98:bc:0b:95:c0:67:7d:1f:12:d8:
de:dc:1a:a2:bd:9f:95:3c:e0:41:13:c5:d5:3c:7e:85:24:d6:
d6:bc:31:5d:ad:75:63:88:fd:d3:ec:80:3e:c5:fe:a4:8d:b9:
e5:d7:7c:c7:c0:f3:56:fe:2f:22:36:b0:24:e9:4e:98:35:23:
e9:cd:32:9e:d3:1f:0c:0c:c3:f3:a2:20:68:09:ba:f9:32:b8:
ca:fa:17:1c:21:6b:b9:68:6b:58:2d:f1:54:29:98:8a:b2:56:
bd:a4:1c:e9:9d:70:2f:01:07:bb:8b:d0:f0:b9:a2:0f:b2:9c:
2d:85:09:b7:e5:13:b4:d8:78:89:e5:3e:b5:82:45:3c:4a:ad:
ce:5e:25:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 17:06:51 2025 by rpki-client