Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/e3decc-3ef7-4cb2-81d1-9013ca996b16/1/aN6jV35Sx5X7um_FWU84aHWZVNE.roa
File: aN6jV35Sx5X7um_FWU84aHWZVNE.roa (raw, json)
Hash identifier: 8d9lH4UFz/LeaXRsMsWmw4fk1icuEAtBudmpdRTn2VY=
Subject key identifier: 68:DE:A3:57:7E:52:C7:95:FB:BA:6F:C5:59:4F:38:68:75:99:54:D1
Certificate issuer: /CN=02b610cd43bafced91480fabfdcaae82049fbf71
Certificate serial: 01941FFA807CB78DEBE91E8256B6D7A24798
Authority key identifier: 02:B6:10:CD:43:BA:FC:ED:91:48:0F:AB:FD:CA:AE:82:04:9F:BF:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArYQzUO6_O2RSA-r_cquggSfv3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/e3decc-3ef7-4cb2-81d1-9013ca996b16/1/aN6jV35Sx5X7um_FWU84aHWZVNE.roa
Signing time: Wed 01 Jan 2025 03:48:18 +0000
ROA not before: Wed 01 Jan 2025 03:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197068
IP address blocks: 195.43.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 14:21:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:80:7c:b7:8d:eb:e9:1e:82:56:b6:d7:a2:47:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02b610cd43bafced91480fabfdcaae82049fbf71
Validity
Not Before: Jan 1 03:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68dea3577e52c795fbba6fc5594f3868759954d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:26:0a:f0:45:d3:6c:2d:6c:7d:6c:6e:ba:25:
7f:79:5b:50:ea:7e:1b:c6:c2:cd:5d:df:44:66:a4:
b9:dd:32:41:46:ea:11:b6:b4:ed:e0:3c:e7:6f:8c:
a5:04:a9:5b:ee:08:55:93:0c:30:18:2c:67:6e:b5:
f3:8d:c6:b0:93:b3:c2:3e:ca:21:b2:6e:62:1c:17:
44:5c:8c:9b:37:0e:4f:1a:72:ac:c2:eb:ce:c8:55:
a6:27:33:05:51:23:27:24:6c:56:15:86:01:64:f3:
c2:94:37:b0:50:f2:99:8c:1d:62:3f:3f:d5:1c:de:
e0:00:d2:34:85:da:4b:96:da:87:69:e1:cb:25:84:
f5:d2:dd:d2:37:34:49:50:7e:88:c1:e3:e5:0f:cc:
f2:95:f6:6e:7f:fe:87:58:9c:61:be:b3:a0:3e:be:
66:7e:8a:3b:c3:e1:ba:4d:99:1d:04:00:7c:06:43:
59:73:43:1e:43:ab:a6:8d:a0:24:6e:90:c4:93:52:
6a:6c:2c:93:64:b6:e4:c6:8b:65:1b:bb:48:64:9d:
91:ce:de:c7:ef:55:73:4f:f1:ed:f2:94:a3:77:b8:
d3:ae:38:7b:e3:bd:b9:2f:c8:1e:63:c2:9e:cb:6c:
80:fd:54:63:bc:7c:03:d6:15:e0:90:5c:71:30:96:
39:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:DE:A3:57:7E:52:C7:95:FB:BA:6F:C5:59:4F:38:68:75:99:54:D1
X509v3 Authority Key Identifier:
keyid:02:B6:10:CD:43:BA:FC:ED:91:48:0F:AB:FD:CA:AE:82:04:9F:BF:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArYQzUO6_O2RSA-r_cquggSfv3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/e3decc-3ef7-4cb2-81d1-9013ca996b16/1/aN6jV35Sx5X7um_FWU84aHWZVNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/e3decc-3ef7-4cb2-81d1-9013ca996b16/1/ArYQzUO6_O2RSA-r_cquggSfv3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.92.0/24
Signature Algorithm: sha256WithRSAEncryption
38:d2:8f:14:10:92:96:8f:9b:04:69:ac:99:23:a4:bd:43:f7:
e5:7e:3a:a2:fc:bd:a0:f7:1b:48:db:7f:61:ab:96:66:99:a5:
f3:1e:48:b9:22:51:cb:0b:8c:4a:0d:ff:d5:fa:4c:7c:84:a1:
fd:6a:0a:b3:12:2f:94:d1:b7:74:ed:71:d6:89:e0:61:9f:f0:
cf:f6:81:b7:65:62:e4:05:9d:c6:94:c7:58:6b:29:22:95:9d:
02:e7:86:df:c4:37:3c:82:c0:0d:ad:35:ca:fa:62:3f:14:1b:
b6:23:e3:0d:4f:13:64:e4:52:fc:a8:31:0e:11:9e:80:03:e6:
99:7b:c7:04:10:cb:c2:a6:f5:bf:65:d2:79:65:4a:ed:75:5f:
15:71:6d:54:ba:f1:12:7e:d2:6b:bc:0b:ff:d2:e8:16:dc:32:
4e:68:65:51:56:17:fe:c8:9d:7b:3d:96:1e:40:c1:c0:f9:f2:
65:0b:67:a6:6d:c9:8f:45:af:38:0b:fa:96:26:59:53:03:bd:
29:66:97:6a:19:43:55:18:c8:d6:31:3e:2a:ce:7b:a2:c4:67:
15:c6:7f:ab:1d:ae:ce:1e:21:20:29:30:c1:30:36:8f:b1:8c:
97:07:f6:43:c0:66:0c:84:2e:5e:a8:dc:ae:71:89:59:4a:13:
33:07:00:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 05:52:30 2025 by rpki-client