Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/37z0uhEqDqSbIwvDGh-YImSc-bs.roa
File: 37z0uhEqDqSbIwvDGh-YImSc-bs.roa (raw, json)
Hash identifier: IfxOwOzn8Toq+PQvd4wjQJ0y0K9dVVqsm7VPZQ1+mpU=
Subject key identifier: DF:BC:F4:BA:11:2A:0E:A4:9B:23:0B:C3:1A:1F:98:22:64:9C:F9:BB
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0194CB0BA95518BC379A9308B0FD59EAE668
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/37z0uhEqDqSbIwvDGh-YImSc-bs.roa
Signing time: Mon 03 Feb 2025 09:02:06 +0000
ROA not before: Mon 03 Feb 2025 09:02:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34918
IP address blocks: 212.16.71.0/24 maxlen: 24
212.80.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Feb 2025 09:08:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:cb:0b:a9:55:18:bc:37:9a:93:08:b0:fd:59:ea:e6:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 3 09:02:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dfbcf4ba112a0ea49b230bc31a1f9822649cf9bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:55:30:c0:3e:12:f0:24:3c:d8:20:43:72:ce:
9b:5a:8b:fc:c3:15:e0:a2:6d:8f:37:6a:cc:4d:df:
80:ad:a3:e6:13:e8:41:41:91:43:19:72:46:21:28:
39:93:7f:4d:0c:c1:00:64:23:5f:2b:ab:4e:8f:30:
51:a1:06:09:12:a3:e6:5d:e9:69:61:9c:f3:60:fd:
cd:a0:96:c5:9f:67:68:82:ee:e6:ee:a7:48:12:8c:
27:9b:57:eb:34:4d:d5:d6:7b:71:fc:12:c3:7f:33:
2f:a7:6a:e5:52:93:95:75:c1:83:08:02:d6:83:3d:
60:28:7c:17:a7:a0:cb:b7:00:8b:9f:a0:60:d0:64:
bc:23:52:f0:c5:39:ab:44:4b:07:79:7b:f2:2b:ed:
5e:1b:10:2e:95:5d:9f:e8:82:bb:67:82:0d:4f:b8:
57:51:4c:38:27:3d:94:59:23:69:69:1c:ea:0e:1a:
0e:70:19:4e:66:86:4d:a6:a4:e6:23:fa:eb:4a:e7:
dc:86:85:4d:14:f4:68:d6:06:f3:58:4e:6c:16:45:
bf:c3:92:6f:ca:6c:78:a7:ee:0f:6a:5a:56:b1:e9:
b6:a5:3a:05:5b:6b:04:dd:54:e0:7f:92:93:d3:9a:
c1:bf:ea:1e:64:63:bf:32:37:1a:ff:a7:b2:7c:e8:
8d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:BC:F4:BA:11:2A:0E:A4:9B:23:0B:C3:1A:1F:98:22:64:9C:F9:BB
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/37z0uhEqDqSbIwvDGh-YImSc-bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.71.0/24
212.80.29.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:ed:f3:7e:ec:03:be:01:c1:b1:66:55:3c:7c:18:bf:a7:43:
a5:0b:e5:b7:c3:4e:d4:92:ab:e5:33:54:5c:0b:34:dd:a7:bb:
a6:a2:7a:e7:e8:19:b6:2e:78:57:f1:cd:0c:2e:ed:5c:8b:b0:
3b:62:62:05:f9:cc:07:53:4a:0d:8e:a1:a4:66:5a:96:1f:99:
4a:19:94:04:4a:e4:76:5c:5e:86:6a:8d:ff:c3:59:62:ee:8f:
dc:d3:a1:2f:94:1c:71:89:a6:00:8a:b4:86:53:5e:bc:83:f9:
d6:4b:20:f8:64:12:45:44:57:a6:fe:69:61:35:40:25:e0:ca:
ac:dd:1d:37:78:c3:a5:ef:9d:fe:29:40:a6:b1:7e:30:05:a4:
61:68:c9:73:61:9f:9d:f3:cb:31:2d:f0:18:a4:8e:f6:a7:ef:
e3:4c:79:71:dc:31:8c:94:4e:42:b2:76:e5:e2:4c:e9:73:73:
38:6f:a7:3e:ae:bf:f0:ed:21:7e:28:5f:15:5e:42:93:a3:93:
7f:08:aa:e3:bc:2d:11:a5:e2:4b:23:6c:bd:a5:08:14:01:15:
99:fd:0e:8d:b1:d1:4f:c9:ca:c7:a0:d1:5f:fc:a2:8f:08:95:
60:c6:c6:98:fa:a4:d3:97:bc:2f:a0:fb:fe:69:07:a2:ad:c1:
98:f0:26:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 08:49:06 2025 by rpki-client