Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/L8icUHNFvkve_BXRCsiO4D9TK2k.roa
File: L8icUHNFvkve_BXRCsiO4D9TK2k.roa (raw, json)
Hash identifier: jT4d5IeIkWFqPvzeLp85p225cr9C4emava1S1PGKM1w=
Subject key identifier: 2F:C8:9C:50:73:45:BE:4B:DE:FC:15:D1:0A:C8:8E:E0:3F:53:2B:69
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 01968CDA2D05AFCD87861DA286E893712DAA
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/L8icUHNFvkve_BXRCsiO4D9TK2k.roa
Signing time: Thu 01 May 2025 17:17:10 +0000
ROA not before: Thu 01 May 2025 17:17:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 185.164.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 May 2025 19:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8c:da:2d:05:af:cd:87:86:1d:a2:86:e8:93:71:2d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: May 1 17:17:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2fc89c507345be4bdefc15d10ac88ee03f532b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:91:b8:a3:0a:ff:70:00:3c:45:3e:ea:6a:16:
70:da:1c:8f:1a:fc:25:78:ff:ad:17:4d:14:fe:27:
0d:ae:e6:d4:ea:9b:6c:79:b0:69:0d:bc:77:5d:8b:
3c:c1:50:80:f0:49:dc:cd:c5:d1:73:71:ff:9d:7c:
18:4d:8d:39:5d:16:4c:e6:ee:03:28:1b:44:cc:0e:
90:84:52:23:6f:fe:35:ad:ce:0d:f4:71:95:61:0d:
51:e3:9e:f5:1d:37:f1:62:e7:cd:fe:40:71:15:8e:
45:b9:2c:15:3c:e0:08:82:14:28:21:d3:e5:32:83:
db:ed:c2:49:53:be:1b:b5:3f:06:1f:f1:7e:8d:3c:
bb:57:29:05:78:54:57:ed:5a:c9:b1:8d:c1:62:83:
e2:01:a4:0d:8f:7a:e9:10:a1:30:75:3e:77:c9:12:
00:4e:c5:9e:e4:f6:ae:46:94:5c:d5:49:ad:d1:a6:
aa:c9:2e:6f:f8:34:c0:cc:1d:22:c2:09:2a:ed:3f:
ad:04:81:ab:35:9a:c8:86:42:c2:0d:95:ab:03:bc:
a1:1c:08:35:d8:82:5f:9e:d5:6e:13:92:f1:6f:57:
4f:a9:15:ff:13:c4:fd:ed:71:73:03:f9:fc:de:5b:
e8:35:61:3d:2b:ee:16:eb:3e:74:05:d9:6c:f8:24:
dc:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C8:9C:50:73:45:BE:4B:DE:FC:15:D1:0A:C8:8E:E0:3F:53:2B:69
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/L8icUHNFvkve_BXRCsiO4D9TK2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.175.0/24
Signature Algorithm: sha256WithRSAEncryption
64:a3:3d:d0:23:6c:b5:44:d9:cd:f3:02:80:fb:70:d8:8d:b2:
ea:91:05:09:f6:aa:37:a0:c6:53:ff:bd:3b:00:0e:43:a3:5a:
44:fe:18:f5:58:f3:de:6f:01:28:3f:70:84:37:41:94:f6:bd:
e7:07:ad:f2:95:c6:d9:0f:3d:dc:45:e9:41:44:e6:b2:0f:8b:
fe:18:ed:13:7b:29:48:e6:a1:6d:1e:e5:74:de:e5:64:6c:2b:
7a:2c:f0:6d:8e:26:82:fb:1c:3a:41:bf:4b:e6:49:a5:48:fd:
5b:7b:52:eb:e9:f1:50:70:d8:13:e0:4b:d0:a1:91:24:85:77:
87:3f:53:8a:3f:fc:f9:f9:0d:c2:27:a6:65:cc:c4:bd:42:ea:
e2:db:d5:22:57:ce:6c:f1:b6:a1:df:b4:29:63:9d:0b:d9:f3:
94:14:d6:25:2e:eb:7f:3f:be:e8:40:3a:a0:81:b7:b2:0d:5b:
d6:1a:86:4a:40:7e:46:cf:15:7c:05:f5:ed:75:ae:3d:c3:7f:
55:e3:79:3d:c3:a7:fe:8f:ab:6d:96:68:ef:a1:05:ef:e1:5b:
32:48:64:cb:cb:25:e3:d8:ff:9b:8d:b5:c2:11:e4:54:80:e1:
42:81:09:a4:55:e0:78:5b:51:19:01:17:a7:fa:bb:d3:71:3a:
e8:4e:ad:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:13:53 2025 by rpki-client