Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/zbKTyuuHv57YS42VQKMQH55gI7o.roa
File: zbKTyuuHv57YS42VQKMQH55gI7o.roa (raw, json)
Hash identifier: KhJ/3bqAXepzVcqztsS4qCMG+X2pyBITpgIoft/tinA=
Subject key identifier: CD:B2:93:CA:EB:87:BF:9E:D8:4B:8D:95:40:A3:10:1F:9E:60:23:BA
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0195A99996799B34C19D861E06E825276EEB
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/zbKTyuuHv57YS42VQKMQH55gI7o.roa
Signing time: Tue 18 Mar 2025 14:12:49 +0000
ROA not before: Tue 18 Mar 2025 14:12:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210558
IP address blocks: 155.2.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Mar 2025 19:39:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a9:99:96:79:9b:34:c1:9d:86:1e:06:e8:25:27:6e:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Mar 18 14:12:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cdb293caeb87bf9ed84b8d9540a3101f9e6023ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c2:f8:2a:32:5c:a9:09:93:42:13:e2:44:0f:
c9:94:45:ac:9a:72:67:77:7b:69:1c:a4:4a:26:d2:
df:af:36:e4:3a:e7:f6:b9:35:77:18:24:a6:d8:1b:
a2:06:da:e5:65:7c:77:36:f8:bc:25:80:91:60:33:
12:25:17:07:dd:0e:07:dd:c4:6a:16:9f:b2:0a:01:
f5:8a:43:17:c0:6f:09:44:27:1b:66:55:68:eb:75:
25:53:01:ce:9e:ea:40:0f:92:fe:69:9d:ce:9a:7e:
f7:06:be:28:1f:77:fc:cd:72:01:a8:1d:c5:f9:d5:
81:7b:97:c5:a1:13:2c:01:df:21:0e:71:22:a8:4a:
01:83:df:d2:27:58:08:cf:1f:02:98:cb:2b:eb:c8:
43:69:33:07:8d:0f:84:bc:aa:32:5e:4d:9c:93:d8:
0b:1f:2c:4b:fc:5b:65:98:b7:29:67:6a:e8:39:01:
5c:9a:94:c2:1a:6e:5a:6e:96:cd:40:ed:2b:f7:a2:
60:6b:75:c2:35:8e:f6:d2:e8:26:87:4b:e1:9d:52:
2e:d2:89:53:78:d1:1a:32:79:29:83:67:16:e5:b3:
3c:ce:c9:bf:ef:1a:3c:5e:a9:f9:d8:13:34:07:19:
31:06:9a:75:2f:c0:0e:8c:d3:38:eb:83:13:0f:20:
50:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B2:93:CA:EB:87:BF:9E:D8:4B:8D:95:40:A3:10:1F:9E:60:23:BA
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/zbKTyuuHv57YS42VQKMQH55gI7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.2.192.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:a0:41:bd:81:68:5f:02:eb:5f:bd:03:31:72:68:d7:ab:87:
0f:0d:e9:78:94:fd:9d:9c:a6:7b:29:e7:f6:49:15:e4:3a:26:
e9:13:e4:4e:d5:0c:1c:c1:27:0d:da:1a:73:dd:c6:c5:50:1f:
49:4c:4d:26:5c:b4:7c:e0:df:b3:c9:1f:53:c1:bb:14:8b:7f:
8d:dc:bc:7b:c1:62:ca:2f:4f:71:a1:26:1f:c4:db:2e:81:3a:
9d:3a:28:07:d1:24:43:74:4b:60:4e:68:ac:16:cd:c2:15:fb:
59:32:48:3a:a1:ba:25:0d:c4:7c:b3:87:aa:1f:0f:b6:06:25:
df:51:10:9e:9c:c2:4b:d3:62:e0:e1:e7:17:d2:fb:f6:69:7d:
90:9d:0b:c0:d1:05:6c:0c:7b:11:d4:8d:93:d6:d5:79:9c:74:
73:46:86:7b:a6:a8:7c:52:eb:31:36:6c:e2:54:b8:cf:42:dc:
03:a8:8f:bb:24:81:e4:16:0c:bc:50:2e:26:35:3b:3b:b5:7f:
61:ef:e9:8c:bd:a7:11:19:9a:b8:44:98:1a:09:12:7d:1e:3b:
43:82:5b:47:17:5d:68:99:72:0f:b6:c2:d7:77:d4:5c:ef:22:
16:83:53:13:33:9e:88:17:41:d5:fd:5a:0f:bc:b4:22:1e:91:
ca:fd:87:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 20:15:48 2025 by rpki-client