Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vJGqqp9rjWmrIlh5ZawQ23tmMEM.roa
File: vJGqqp9rjWmrIlh5ZawQ23tmMEM.roa (raw, json)
Hash identifier: 5/P0ZK8WbrGOj3map3foryZCTWpyXY/uiWmMYHPT2xc=
Subject key identifier: BC:91:AA:AA:9F:6B:8D:69:AB:22:58:79:65:AC:10:DB:7B:66:30:43
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194F0972D0127E4F0C13B9DAA72E59F832F
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vJGqqp9rjWmrIlh5ZawQ23tmMEM.roa
Signing time: Mon 10 Feb 2025 16:00:26 +0000
ROA not before: Mon 10 Feb 2025 16:00:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208946
IP address blocks: 93.171.158.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 21:58:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f0:97:2d:01:27:e4:f0:c1:3b:9d:aa:72:e5:9f:83:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Feb 10 16:00:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bc91aaaa9f6b8d69ab22587965ac10db7b663043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7c:ca:ac:9f:84:d7:0e:47:81:a6:cb:7e:67:
11:d9:6d:f3:19:b3:27:1d:d9:69:bc:f5:b6:ea:64:
c9:f2:40:cb:1a:23:6d:de:65:85:d4:09:d1:f8:39:
73:03:b0:80:9f:4d:9f:a0:ab:c4:a6:61:91:08:a8:
5b:42:fb:ff:89:1a:86:a9:d8:d5:4c:66:f2:20:de:
e6:ce:00:77:c0:d3:67:61:03:a6:57:34:ab:c6:e2:
69:85:dd:d8:1c:d0:7f:3c:cb:26:01:08:3c:a7:11:
4d:e6:07:73:e0:08:60:81:09:81:ff:bb:61:c9:00:
b1:d5:49:b3:16:77:d7:14:4c:28:fe:d2:96:b3:81:
47:a3:a6:04:09:5a:ce:cb:2f:71:9f:73:58:37:82:
65:89:01:df:48:6a:15:28:89:e6:a5:8d:b7:16:88:
e9:c7:27:e3:79:9d:32:64:bd:44:8b:2c:2c:06:c1:
43:68:ce:05:3f:5e:66:35:20:f9:bb:bf:ff:8f:55:
ef:ee:29:18:ef:cf:8b:ae:93:2b:6f:d6:9d:8a:e5:
96:97:cc:d5:0a:0c:af:bc:a8:be:a8:63:69:c1:31:
fe:4a:8f:cb:0a:9f:f2:ea:b1:2b:1c:7d:cc:33:7c:
b1:90:76:22:87:5e:5d:41:ad:97:f7:2f:af:fb:71:
84:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:91:AA:AA:9F:6B:8D:69:AB:22:58:79:65:AC:10:DB:7B:66:30:43
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/vJGqqp9rjWmrIlh5ZawQ23tmMEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.158.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:47:52:5d:e6:84:51:38:cc:06:a4:e3:fc:97:43:c6:84:11:
32:39:8b:82:af:e3:0a:a4:d3:80:62:c2:98:ee:10:be:92:9f:
fe:32:1e:47:3f:f0:63:aa:2e:01:3c:03:3c:29:6d:37:95:74:
30:85:96:c4:f8:9a:72:bd:00:50:35:95:3d:29:5b:06:ba:d5:
4a:84:26:48:19:5f:b4:1a:0d:a5:c9:c1:96:8b:48:d3:77:26:
47:ff:08:9c:9a:5f:51:ee:d6:c2:71:30:bc:ef:88:88:a7:1b:
cb:58:e4:51:01:87:1b:66:ca:b2:d6:26:17:72:79:da:f7:f6:
4d:66:a9:24:09:ac:a3:98:51:61:a5:cb:c5:57:e2:1a:ea:6e:
75:ca:5b:c6:7c:8d:8e:e0:80:d0:22:87:bc:e8:70:14:05:59:
fa:6c:14:84:bf:85:1e:2b:f9:e2:fa:34:9a:87:21:42:71:80:
68:9f:ac:9b:3c:d0:ed:b5:c1:31:d6:98:4b:d4:5e:1a:4c:24:
85:d1:bf:d8:ef:0b:b9:93:a5:ec:5c:00:d1:db:06:93:7e:e9:
74:d3:b3:f1:29:2f:df:76:ff:17:13:0e:db:6c:6c:03:09:af:
ec:ef:3c:08:c9:36:08:ed:98:92:3c:50:35:a6:1a:b1:b8:54:
ec:bf:d5:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 10:04:22 2025 by rpki-client