Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/FQ1fyKPygaKMA0RO4f6CduPvtvc.roa
File: FQ1fyKPygaKMA0RO4f6CduPvtvc.roa (raw, json)
Hash identifier: lzwP4qMpNiWxW7aSlJWREjQf86IjGnj+JOXt2cmXfZg=
Subject key identifier: 15:0D:5F:C8:A3:F2:81:A2:8C:03:44:4E:E1:FE:82:76:E3:EF:B6:F7
Certificate issuer: /CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Certificate serial: 01944FCEAA0D7320E5511BA717D8B3773DE7
Authority key identifier: 09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/FQ1fyKPygaKMA0RO4f6CduPvtvc.roa
Signing time: Fri 10 Jan 2025 10:42:11 +0000
ROA not before: Fri 10 Jan 2025 10:42:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 150369
IP address blocks: 89.187.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Mar 2025 18:40:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:4f:ce:aa:0d:73:20:e5:51:1b:a7:17:d8:b3:77:3d:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=091ec7ccf0fa761ed99bc5a7a9ec0d0eeb0bf055
Validity
Not Before: Jan 10 10:42:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=150d5fc8a3f281a28c03444ee1fe8276e3efb6f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:95:04:d4:30:ac:22:be:b9:69:64:81:43:a9:
a8:9c:55:01:1b:c4:bd:98:a5:c2:ab:22:b4:8d:b7:
65:64:8c:8c:4b:36:52:61:9a:53:c8:b1:e6:05:3e:
1d:fb:06:1b:8e:91:9e:94:54:4a:39:46:6a:79:50:
da:d6:ed:a7:b3:c3:e4:57:74:b7:69:57:45:93:8f:
e8:69:be:29:bc:e7:e5:62:35:f0:e4:67:a3:28:5d:
c2:68:f3:71:ed:f0:16:17:26:bc:28:78:51:c5:6c:
cf:2f:79:bc:3e:ba:53:d1:7c:74:04:b0:8c:3c:32:
dd:60:4c:80:aa:a1:76:e9:55:a7:90:59:2f:9a:af:
42:45:88:2a:d8:13:66:49:01:27:3c:89:0e:91:5d:
a6:e4:e9:20:9d:b1:1e:49:1f:2e:b9:db:ac:7c:d7:
4c:c0:16:67:4b:e8:e8:3d:e2:56:fd:d5:9d:ee:de:
9e:9a:79:62:95:be:f2:30:5d:5d:88:df:90:76:af:
1b:1b:bf:a3:9c:e8:7b:a5:15:36:c3:74:55:c8:da:
6a:1c:a7:fc:b3:8c:8e:b5:7f:df:c3:53:72:d3:53:
65:77:d4:d5:43:14:e3:22:5f:ac:fb:b5:6c:b2:c2:
e6:86:e3:da:79:00:de:58:cf:55:fb:5c:ee:78:c2:
8d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:0D:5F:C8:A3:F2:81:A2:8C:03:44:4E:E1:FE:82:76:E3:EF:B6:F7
X509v3 Authority Key Identifier:
keyid:09:1E:C7:CC:F0:FA:76:1E:D9:9B:C5:A7:A9:EC:0D:0E:EB:0B:F0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CR7HzPD6dh7Zm8WnqewNDusL8FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/FQ1fyKPygaKMA0RO4f6CduPvtvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/e6478a-7b73-4758-addd-45cfc857dddd/1/CR7HzPD6dh7Zm8WnqewNDusL8FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.187.5.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:2f:f4:fe:ae:a7:c5:3d:ac:7c:51:60:b6:c5:99:f3:a5:f6:
00:89:01:2b:74:e1:dc:a7:74:f2:78:78:26:34:a8:96:a9:c7:
74:5c:56:fb:59:9a:27:93:16:b8:2b:f9:af:b0:90:1a:a6:59:
ac:4d:9a:95:8c:3c:4d:4a:12:9e:31:0c:a7:6a:87:30:72:a9:
f0:10:01:49:24:4e:62:dd:64:74:4b:2a:2f:1d:26:92:12:aa:
cf:24:12:20:e6:1b:ca:0f:56:86:b3:5c:84:e2:f7:3a:29:3f:
b8:11:21:4f:db:6b:4e:81:74:a4:32:e4:f9:3c:8f:04:9c:c7:
f7:cf:cf:57:28:17:7f:46:21:8c:8f:0f:e2:cb:ab:7a:51:d7:
5d:8a:07:b4:e3:48:27:00:46:39:af:c2:82:29:80:1d:48:03:
b7:fe:9d:81:e9:24:ef:a2:01:a8:da:a0:f7:e6:98:a3:70:38:
d9:b3:97:64:1d:6c:a5:ad:7c:37:1d:0e:85:42:6d:61:f0:64:
f4:d0:0e:5a:5b:d2:ee:b5:5f:52:d3:c3:db:d0:06:68:8c:94:
03:a6:c8:60:c6:92:38:32:67:2e:0c:42:1b:02:09:54:6a:51:
7b:c7:23:27:6b:ec:8f:cb:8b:da:eb:18:e2:82:cd:89:0d:6c:
1c:2e:d7:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:11:28 2025 by rpki-client