Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/437150-783c-431a-b3fd-7c3d79401ec2/1/CgBRpI0CCoMEKK3MneBXQ1AY9xA.roa
File: CgBRpI0CCoMEKK3MneBXQ1AY9xA.roa (raw, json)
Hash identifier: dI3tZVgkXKY0Mc8BJluIDv1g9J04laCpVGa21Gq8ftQ=
Subject key identifier: 0A:00:51:A4:8D:02:0A:83:04:28:AD:CC:9D:E0:57:43:50:18:F7:10
Certificate issuer: /CN=40518ecbd6464d78ad451551648f9206f7fb5f42
Certificate serial: 0194731CAC5D9B2C43103710EF75A1BF6F1F
Authority key identifier: 40:51:8E:CB:D6:46:4D:78:AD:45:15:51:64:8F:92:06:F7:FB:5F:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QFGOy9ZGTXitRRVRZI-SBvf7X0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/437150-783c-431a-b3fd-7c3d79401ec2/1/CgBRpI0CCoMEKK3MneBXQ1AY9xA.roa
Signing time: Fri 17 Jan 2025 07:14:06 +0000
ROA not before: Fri 17 Jan 2025 07:14:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214849
IP address blocks: 138.222.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Jan 2025 07:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:73:1c:ac:5d:9b:2c:43:10:37:10:ef:75:a1:bf:6f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40518ecbd6464d78ad451551648f9206f7fb5f42
Validity
Not Before: Jan 17 07:14:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0a0051a48d020a830428adcc9de057435018f710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:dd:a7:56:27:c6:e8:25:aa:26:a7:d0:34:a4:
4e:72:e1:9b:6a:b9:84:e6:22:62:26:16:ec:96:fa:
14:eb:82:27:2f:71:2d:f3:ce:a3:47:1a:be:40:f4:
08:da:38:fb:f9:4f:86:51:1b:cc:61:ad:ad:e2:ec:
27:4f:3a:e0:03:21:15:1b:f4:30:46:27:50:73:c3:
65:76:ab:35:b4:db:22:f8:84:65:27:d5:9e:6d:b8:
9c:5c:e4:8f:e8:cb:b7:ef:f3:a6:f3:06:5e:a1:d2:
9b:73:a6:03:b1:f7:0d:5a:fa:67:53:b8:32:93:3a:
b4:84:a9:e8:01:e4:1b:08:4d:07:e7:4a:b0:cd:48:
ef:56:81:ca:64:24:57:64:cb:ae:71:31:85:83:2f:
30:c2:32:49:6b:ae:5b:88:60:a5:0b:fd:fa:16:3c:
34:5a:43:ab:f1:48:12:8b:5c:1f:ec:5e:38:56:70:
f9:61:60:64:a7:2d:42:60:d3:66:29:3b:12:54:2f:
ee:b9:3c:ee:b6:a1:6b:a6:c0:83:79:c5:06:3d:84:
7c:a3:5f:5f:59:18:a0:93:69:fd:be:c4:24:71:39:
6e:1c:3e:c3:47:b5:0b:22:8b:29:81:2b:30:66:40:
b5:c4:e3:3a:3b:e2:0b:cf:05:dc:06:fb:e5:84:35:
f0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:00:51:A4:8D:02:0A:83:04:28:AD:CC:9D:E0:57:43:50:18:F7:10
X509v3 Authority Key Identifier:
keyid:40:51:8E:CB:D6:46:4D:78:AD:45:15:51:64:8F:92:06:F7:FB:5F:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QFGOy9ZGTXitRRVRZI-SBvf7X0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/437150-783c-431a-b3fd-7c3d79401ec2/1/CgBRpI0CCoMEKK3MneBXQ1AY9xA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/437150-783c-431a-b3fd-7c3d79401ec2/1/QFGOy9ZGTXitRRVRZI-SBvf7X0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.222.67.0/24
Signature Algorithm: sha256WithRSAEncryption
41:57:30:0d:70:ac:58:d2:6a:36:b2:4e:92:c1:97:47:51:67:
fa:e0:4c:19:aa:dd:a1:68:1a:6e:14:bb:05:70:f5:eb:9b:29:
c6:52:ac:26:10:15:ec:53:aa:e2:5d:ef:1c:b6:b4:37:85:60:
db:a6:10:56:fb:fc:f0:40:47:7a:d9:eb:a0:f4:05:05:c0:4f:
46:49:cf:d5:98:7b:4b:89:e4:67:2a:af:c9:09:e7:75:e9:45:
93:1c:78:82:b9:17:a1:2a:ae:e6:ca:70:43:6a:75:b1:7c:6a:
0d:a0:e3:b4:78:5f:0c:43:e6:86:97:5f:a5:33:f1:d9:c1:72:
5f:03:19:a5:b1:66:81:41:0a:ed:09:b1:df:6c:5a:d8:f4:a2:
9a:82:d2:e0:0a:f6:5f:fc:7d:a2:de:4e:5b:d7:76:f6:9f:eb:
d6:b4:66:7b:c3:3b:67:ba:f9:5b:be:dd:83:b9:07:c7:c8:ac:
08:e9:89:01:8a:30:2b:b1:db:20:36:88:2d:b1:86:89:5d:44:
ae:07:bc:a4:16:fd:74:cd:55:3e:12:cc:69:98:bb:60:f0:2e:
8e:3d:b4:88:b4:ce:62:5f:81:fc:9a:86:0e:ee:cd:7e:26:4b:
df:36:fe:42:67:67:d3:e4:b1:54:ff:3d:ef:99:c0:fe:42:88:
37:49:90:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:14:22 2025 by rpki-client