Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/_IrbknhEFSlCj10212Oz2GLVuvE.roa
File: _IrbknhEFSlCj10212Oz2GLVuvE.roa (raw, json)
Hash identifier: osZVM7q8KOBvMrOKdPyXVAp+sMDfTKb/o4NXb1LCXWM=
Subject key identifier: FC:8A:DB:92:78:44:15:29:42:8F:5D:36:D7:63:B3:D8:62:D5:BA:F1
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 0196B4AF512E4C7450603A94A6414C6609D6
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/_IrbknhEFSlCj10212Oz2GLVuvE.roa
Signing time: Fri 09 May 2025 10:55:10 +0000
ROA not before: Fri 09 May 2025 10:55:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 272470
IP address blocks: 185.155.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 May 2025 09:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:af:51:2e:4c:74:50:60:3a:94:a6:41:4c:66:09:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: May 9 10:55:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fc8adb9278441529428f5d36d763b3d862d5baf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ad:b2:aa:dc:7e:8b:81:0b:74:a7:99:73:58:
28:6e:5e:cf:f3:9f:e1:47:d0:41:3a:09:ec:35:a9:
57:e9:73:89:63:8d:8c:ee:1f:95:6c:51:90:4d:b3:
05:f2:2e:7b:c4:eb:bd:ff:dc:47:17:2b:26:73:93:
fe:78:f5:4f:74:c3:b0:17:47:f5:e6:4c:b3:82:6b:
65:bc:ad:ec:5d:9b:82:62:d0:28:39:7f:f0:78:fd:
62:cd:31:7d:b0:cb:a2:ce:32:62:dd:a4:2b:46:88:
72:7c:b0:23:93:88:85:3f:b1:c2:ff:6e:7f:97:34:
38:f1:d7:31:7f:5c:1b:f9:ab:83:3f:c8:a3:71:48:
8b:b1:de:e9:75:95:02:d7:0b:7b:35:43:7c:77:a9:
32:73:15:e1:e5:cb:9d:fc:d5:40:3a:b6:c6:0f:76:
d5:50:04:de:ec:04:58:c5:a4:89:64:2d:63:27:35:
07:a4:8c:76:2e:fa:5b:d6:18:f6:89:00:57:ac:5c:
d5:df:a1:a1:0b:ce:70:f8:f4:99:32:a2:87:aa:33:
66:54:21:91:8a:46:68:cc:53:cb:d7:ba:ee:96:8a:
72:97:ec:8a:8b:b1:46:ab:51:d5:40:7b:99:c7:09:
e5:5e:60:e0:d3:0b:7e:28:20:73:eb:0a:55:c5:80:
18:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8A:DB:92:78:44:15:29:42:8F:5D:36:D7:63:B3:D8:62:D5:BA:F1
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/_IrbknhEFSlCj10212Oz2GLVuvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.53.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:2b:14:2b:32:cf:15:7b:91:08:f9:b8:2e:02:07:ae:48:aa:
82:8f:ef:de:15:91:ef:91:20:bb:f5:c2:4a:ec:62:4a:53:5e:
e3:23:b6:e4:05:82:d3:16:3d:70:69:db:48:5c:32:07:d7:08:
74:e1:39:c3:17:97:30:e1:11:26:b0:85:7a:18:1c:c2:3a:6f:
36:1f:dc:b1:c7:45:c4:eb:73:4f:47:96:c4:49:b6:95:51:6f:
93:d5:24:17:19:c2:12:b0:29:e5:e1:7d:55:30:8d:b1:14:e7:
22:98:f4:be:f0:3b:08:fe:87:97:67:ae:df:85:b5:bc:55:f0:
fd:f4:68:43:34:ce:2b:28:a9:00:9c:8a:82:a1:e3:ef:cc:24:
06:04:24:82:8b:64:db:af:e4:1a:99:2f:01:73:f8:d2:ad:8d:
1d:6a:64:6a:04:fc:1d:9a:38:b2:6d:41:59:d8:f9:6d:1c:d3:
a4:51:79:ca:1c:45:d3:b6:3e:b8:63:2c:fd:0d:55:1d:7e:ef:
3f:ee:04:5e:0b:6f:ca:cf:59:88:c4:96:dc:98:da:68:42:e7:
ab:46:01:c0:29:82:a6:6a:b4:14:25:15:a1:27:64:81:72:03:
53:39:c8:a3:9a:90:15:1d:65:85:78:f1:fb:57:b4:04:28:45:
6d:3a:f6:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:09:02 2025 by rpki-client