Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/jN149eltilPGKezXNSHd7aFQNrQ.roa
File: jN149eltilPGKezXNSHd7aFQNrQ.roa (raw, json)
Hash identifier: UQpGXgurT8zLVLl1dzXbB5szgcapBhEdktAOqGNV4NE=
Subject key identifier: 8C:DD:78:F5:E9:6D:8A:53:C6:29:EC:D7:35:21:DD:ED:A1:50:36:B4
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019701D4D614A3B927AE27EE68C1F5693A13
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/jN149eltilPGKezXNSHd7aFQNrQ.roa
Signing time: Sat 24 May 2025 10:26:54 +0000
ROA not before: Sat 24 May 2025 10:26:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 273163
IP address blocks: 185.225.244.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 27 May 2025 14:19:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:01:d4:d6:14:a3:b9:27:ae:27:ee:68:c1:f5:69:3a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: May 24 10:26:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8cdd78f5e96d8a53c629ecd73521ddeda15036b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e2:63:7d:3f:c6:60:f9:c4:ab:11:0d:c4:2f:
8f:aa:8f:03:07:c7:6c:2f:1d:c3:e4:12:e0:29:6e:
e2:3a:0e:de:45:dd:9e:2e:40:1b:72:70:e7:b4:1d:
92:23:d0:ab:d8:ed:85:57:f6:fb:61:33:26:9f:3a:
5b:30:92:a8:19:fa:d4:1a:b2:ad:a0:15:88:f7:ba:
0a:fd:ea:72:a7:1b:9e:55:fc:67:9f:85:68:78:31:
e6:db:e1:b0:05:82:59:68:cb:75:1a:a9:f2:7f:92:
00:77:56:bd:a2:33:a3:4f:34:73:79:46:2d:76:63:
e0:bc:a4:ed:92:33:a0:03:09:da:06:2f:20:34:9e:
1d:be:fe:81:a7:bb:a8:7c:2f:cb:69:b6:f4:47:53:
c7:93:52:c3:3e:88:2e:7b:3a:6f:78:9c:1a:d7:b3:
66:f9:90:f6:91:a2:f9:47:d7:0e:62:ca:12:c7:f6:
11:4d:86:05:ba:c3:10:e7:91:53:fd:8d:ec:82:96:
a4:1f:43:97:f0:71:c2:b4:a9:43:4c:7d:33:c9:6a:
27:62:82:71:f5:b1:34:49:37:b5:d9:b8:31:56:6c:
9e:b6:3b:dc:db:5c:ac:4f:a2:8c:99:4f:01:fe:b5:
b2:04:e7:d2:c6:2e:1b:91:88:b8:82:f1:01:8e:6f:
b0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:DD:78:F5:E9:6D:8A:53:C6:29:EC:D7:35:21:DD:ED:A1:50:36:B4
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/jN149eltilPGKezXNSHd7aFQNrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.244.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:da:29:c2:1e:18:90:06:04:c7:86:9f:4c:0c:68:12:98:97:
82:5f:af:a9:37:be:01:1f:03:c3:d5:dc:7f:ab:6d:36:50:7f:
a6:15:6d:c2:10:99:d6:ae:72:72:60:94:29:25:97:8c:8e:f5:
ed:83:4e:fb:22:8b:50:d8:ad:61:31:40:e3:eb:89:4b:d3:a7:
99:46:22:c5:5f:ee:b3:04:30:a2:42:c9:8a:bd:fb:cb:d9:ba:
c0:5f:0e:ea:c7:a9:9d:dd:5a:9f:04:71:51:d1:82:fe:5a:3b:
e9:9b:2c:a2:6b:f2:2b:ad:45:6c:11:9e:a7:94:8e:70:7d:ce:
e7:28:1f:86:ce:6f:ac:4a:5f:82:6a:6a:4b:33:a3:c2:5f:97:
d6:09:31:5c:ec:59:bb:b1:62:a8:90:ec:d3:c2:76:52:d9:de:
51:59:22:ed:49:94:75:59:4b:4f:f6:80:4b:04:f1:51:5f:5e:
9a:d4:ec:bc:b1:81:02:b6:77:54:d4:68:ec:24:e9:09:3d:71:
77:e1:24:bc:af:14:76:c1:61:cc:16:8b:fa:ff:ae:3d:5d:ed:
6d:b1:26:5d:fe:23:f6:1b:67:33:6c:cc:25:39:81:63:41:09:
ff:21:6a:18:3c:90:63:6a:17:29:6c:5e:d4:ed:ef:82:d2:a6:
a2:ae:ea:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 06:17:45 2025 by rpki-client