Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/PC61Xlk75HG0RoqG0GHnSHqzYpI.roa
File: PC61Xlk75HG0RoqG0GHnSHqzYpI.roa (raw, json)
Hash identifier: SRJL6ldCrcLbdYHfUpEc8KOR1YbewtxlvZUdVrCUnDg=
Subject key identifier: 3C:2E:B5:5E:59:3B:E4:71:B4:46:8A:86:D0:61:E7:48:7A:B3:62:92
Certificate issuer: /CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Certificate serial: 01917EE994329FBC131E38DE5620A3BCF781
Authority key identifier: BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/PC61Xlk75HG0RoqG0GHnSHqzYpI.roa
Signing time: Fri 23 Aug 2024 11:05:22 +0000
ROA not before: Fri 23 Aug 2024 11:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15404
IP address blocks: 5.182.152.0/24 maxlen: 24
2a0e:900:d001::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Nov 2024 16:21:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7e:e9:94:32:9f:bc:13:1e:38:de:56:20:a3:bc:f7:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Validity
Not Before: Aug 23 11:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c2eb55e593be471b4468a86d061e7487ab36292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:02:8a:6b:88:a6:5a:03:69:02:cb:32:51:5c:
9d:af:0e:be:f6:66:2f:00:c0:b8:14:e4:e5:12:08:
ec:c1:65:32:a8:a5:c3:b2:af:16:7b:99:4d:28:1d:
31:f9:b6:fc:3c:23:7f:bf:af:39:03:05:62:7c:60:
f0:d5:38:41:05:06:fa:02:2c:02:25:8a:ba:b6:f0:
9f:b2:0d:d9:73:3b:b9:ba:c5:7a:2c:1c:19:93:be:
ab:f2:a1:61:28:96:ea:dd:27:b2:8b:8a:17:6c:b6:
55:60:2e:fc:ae:df:40:ad:d8:1c:ae:d5:be:d0:d0:
3e:8b:4e:f4:19:e4:3f:b4:2c:66:68:2f:ea:d1:75:
13:32:f9:e8:a3:bd:01:f5:62:e6:2c:2a:cf:87:fd:
94:7f:a1:6b:0f:11:06:14:fe:91:32:18:27:3e:eb:
57:d2:5b:66:cb:f3:28:4a:85:db:6e:e8:31:da:9b:
3e:21:7d:d0:0b:2e:ab:01:64:37:2c:2b:4d:ed:51:
8e:35:48:48:eb:60:64:b3:15:2b:1f:be:25:9e:ef:
e8:97:f7:eb:55:28:c2:87:e0:67:85:7b:0d:5d:4c:
5c:a6:17:ac:1c:d2:93:67:b5:be:34:a3:46:1b:7b:
c3:9e:4e:5f:9c:f6:42:0c:57:75:26:73:29:d6:7c:
5d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:2E:B5:5E:59:3B:E4:71:B4:46:8A:86:D0:61:E7:48:7A:B3:62:92
X509v3 Authority Key Identifier:
keyid:BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/PC61Xlk75HG0RoqG0GHnSHqzYpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.152.0/24
IPv6:
2a0e:900:d001::/48
Signature Algorithm: sha256WithRSAEncryption
37:db:4f:8e:54:9e:08:15:71:87:ef:65:71:30:72:64:c7:6a:
a3:d8:63:c1:dd:5b:a4:89:79:89:2c:a5:d2:5d:85:ed:3f:5a:
3d:93:e4:e3:76:d3:d2:a4:c2:05:cc:e7:7c:f4:be:09:ff:4b:
0f:bb:a0:5d:8f:a3:2e:36:e9:4b:54:9e:f4:9d:b8:33:a7:4b:
ce:63:3a:2e:49:08:0d:2d:2a:b0:c1:92:72:a0:2a:39:49:25:
d2:18:04:96:e8:9c:aa:c8:ec:93:ad:9f:5f:7a:e2:4b:8b:51:
6d:c1:fc:33:94:1f:97:a0:0e:48:ef:bb:fb:30:60:40:58:f0:
a4:da:1a:be:42:41:1c:3f:0b:b2:f2:ed:ee:ab:12:c8:e3:6e:
7d:46:a8:81:b0:ed:b1:c9:69:ed:95:bb:63:85:df:ba:61:32:
d3:81:72:b8:e9:e8:8c:9e:a8:74:74:a3:0e:07:5e:60:18:f6:
cb:cd:fd:e0:3c:59:2c:c7:96:c1:b8:91:f3:62:43:66:77:4c:
9a:38:06:7d:6b:da:21:04:35:85:20:e5:ea:8e:27:2a:b7:5d:
eb:13:e3:b7:76:f2:1c:98:34:b1:25:e8:94:bf:08:0e:e6:1f:
56:d9:fb:4b:a6:90:c8:37:2e:b4:c8:e2:40:44:aa:9a:d1:89:
7b:8d:2f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 06:34:17 2025 by rpki-client