Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/hGIj7Ohu_drz5SNgfFm5M7Sm3hQ.roa
File: hGIj7Ohu_drz5SNgfFm5M7Sm3hQ.roa (raw, json)
Hash identifier: 0nCd9cmuhteSN6qetvC4unM6O73VftJmuo4mkG71eAI=
Subject key identifier: 84:62:23:EC:E8:6E:FD:DA:F3:E5:23:60:7C:59:B9:33:B4:A6:DE:14
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 019507157A99EBC2FE03DC50DA5CB39F0FEF
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/hGIj7Ohu_drz5SNgfFm5M7Sm3hQ.roa
Signing time: Sat 15 Feb 2025 00:50:02 +0000
ROA not before: Sat 15 Feb 2025 00:50:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 45.141.170.0/23 maxlen: 24
185.81.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Feb 2025 08:57:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:07:15:7a:99:eb:c2:fe:03:dc:50:da:5c:b3:9f:0f:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Feb 15 00:50:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=846223ece86efddaf3e523607c59b933b4a6de14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:aa:d0:1d:f9:7d:4d:a2:31:9b:7d:cf:72:09:
bf:19:07:00:3f:e6:da:69:bb:04:f1:1d:75:8c:70:
94:1d:d8:fc:d3:43:f1:68:b4:19:bb:6e:e4:57:00:
76:17:2f:1f:62:48:6d:f1:80:96:53:ba:ba:61:05:
b9:da:d4:7e:35:6d:07:ac:92:f1:02:1f:85:9d:67:
4d:eb:b7:cf:54:62:9d:e9:a6:5e:5a:57:9e:3c:84:
7b:cb:0a:10:f2:2d:c7:42:ad:c5:27:d2:46:19:37:
c4:4a:ec:3b:e4:0e:80:65:6a:91:71:12:0b:55:b0:
11:fd:e6:70:5e:3a:ac:df:c8:06:3c:64:ed:b1:4f:
e1:4f:1a:db:71:19:d0:db:b3:24:dd:8d:10:ea:dc:
6b:33:e4:3e:75:e4:59:da:9f:8f:89:16:fe:ea:df:
4a:72:f0:06:1b:15:31:63:c0:a6:17:7a:fa:29:b0:
56:d1:45:e8:9b:61:34:ae:23:b3:82:9c:9d:a6:79:
ef:24:00:6a:43:14:76:76:22:4d:f5:9f:25:c0:57:
55:6f:39:bd:0e:09:d5:85:9e:04:14:bb:e2:fd:29:
b5:b9:b3:30:5c:25:97:53:38:bf:06:6e:68:2e:c8:
eb:f5:5b:ca:fb:a2:65:5e:5a:88:a0:cd:4a:a8:ba:
ad:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:62:23:EC:E8:6E:FD:DA:F3:E5:23:60:7C:59:B9:33:B4:A6:DE:14
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/hGIj7Ohu_drz5SNgfFm5M7Sm3hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.170.0/23
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
78:8f:14:22:7f:de:be:3c:8c:83:43:f9:e9:45:ec:b8:fa:67:
1b:db:e4:07:63:a0:9c:74:84:51:9e:ff:9a:49:4b:95:44:0b:
66:23:00:21:03:2f:33:9f:0d:62:b7:d2:d5:a0:c6:4d:47:47:
d7:e8:14:13:e9:59:ad:ee:5d:2d:02:d7:43:b9:9e:a3:9f:26:
ed:0c:0a:22:e5:ea:20:09:c6:e5:6f:53:6e:41:8a:23:ac:5d:
33:dc:01:ec:9a:b1:0b:7a:00:0e:db:71:39:7a:08:10:29:c4:
d0:f4:69:0f:33:9b:3f:8a:a2:7f:93:e3:e1:72:c2:52:ff:3b:
9b:32:93:db:d1:1b:88:18:7f:fc:f0:00:98:e0:e2:80:18:15:
e5:23:b8:a0:27:30:2f:33:de:9e:2f:d0:ab:ae:6d:09:38:00:
27:f7:52:a1:f0:25:b4:03:f4:d4:9e:ca:c8:ce:70:22:b0:ef:
d3:6b:1e:38:86:0a:e0:7f:2d:f4:88:d5:8a:87:1d:11:bf:ce:
09:0b:d1:f7:11:c4:2d:1e:65:93:15:d6:56:eb:a6:00:fd:64:
14:4a:7e:d5:52:57:cf:3b:59:fa:d9:25:39:e2:38:aa:6c:13:
6a:6b:f0:23:09:72:df:76:0e:9f:50:1a:fa:a9:2c:65:37:4c:
81:92:49:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 20:23:20 2025 by rpki-client