Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/s1Flyy_nzneKDmBM2pqwjkuofBc.roa
File: s1Flyy_nzneKDmBM2pqwjkuofBc.roa (raw, json)
Hash identifier: Cc7VHsiQn/s5rmdPQaUdp9s2R97TJvXABIAZ3UfPBMw=
Subject key identifier: B3:51:65:CB:2F:E7:CE:77:8A:0E:60:4C:DA:9A:B0:8E:4B:A8:7C:17
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0195CA03EF40B15A8F8BBE6341240ADC2EE5
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/s1Flyy_nzneKDmBM2pqwjkuofBc.roa
Signing time: Mon 24 Mar 2025 21:16:50 +0000
ROA not before: Mon 24 Mar 2025 21:16:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215287
IP address blocks: 82.153.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Mar 2025 17:05:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ca:03:ef:40:b1:5a:8f:8b:be:63:41:24:0a:dc:2e:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Mar 24 21:16:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b35165cb2fe7ce778a0e604cda9ab08e4ba87c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:43:16:79:bd:6d:e5:62:e1:cd:93:48:5c:96:
0e:f2:73:a6:0e:f1:51:23:03:02:af:c9:be:6f:ae:
b0:d6:80:09:2c:b5:2b:73:1a:cb:da:44:f9:21:8e:
d7:4c:61:eb:21:b9:c0:67:46:31:2b:c2:fa:4e:14:
95:8f:ce:90:a3:e2:12:bf:2c:b5:4e:4f:c1:29:41:
52:b1:12:43:56:34:9f:18:54:30:55:12:45:cc:bf:
ad:8b:79:60:01:32:7e:78:cb:e3:7f:f9:3a:e2:b5:
8a:53:ea:43:6c:07:d6:d9:66:9c:a9:ac:83:15:d0:
1a:0d:79:6e:8b:18:ef:8e:56:4e:ed:39:64:9b:59:
06:ae:34:a7:48:b8:e5:6b:d6:65:f6:96:0b:78:1d:
6a:75:5d:a0:09:c3:a6:70:b5:40:e8:59:0a:2d:1b:
de:bc:97:66:f6:1f:09:d2:e4:2a:2b:7b:db:17:53:
35:7a:22:d1:c4:89:0a:f1:a6:af:fe:ab:da:37:98:
f6:cd:4e:ea:d4:1d:87:36:9d:e4:03:49:0a:e7:19:
dc:a2:8f:73:a3:bf:56:49:22:dc:95:26:93:4c:1d:
a5:c0:85:bd:42:4c:53:a6:a6:ef:5b:d8:19:a9:31:
90:b8:53:96:6d:0d:ad:b3:66:61:2b:05:67:f4:c9:
32:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:51:65:CB:2F:E7:CE:77:8A:0E:60:4C:DA:9A:B0:8E:4B:A8:7C:17
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/s1Flyy_nzneKDmBM2pqwjkuofBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.153.50.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:50:64:53:d2:53:72:59:87:55:26:b1:14:89:22:60:ca:7a:
aa:ec:54:fb:3f:66:e7:b5:e6:41:08:bd:cc:2c:59:6f:1b:79:
29:22:96:89:16:9f:60:03:0d:5e:7b:b8:ec:ac:a1:52:93:f0:
7f:6f:6f:be:0a:65:45:f1:2c:8d:6d:15:c2:64:34:96:11:d5:
f6:ee:65:bd:79:c1:54:db:b1:c4:14:27:82:1d:c0:7d:f4:1d:
a3:13:ea:95:ec:e8:ff:ec:2b:af:1a:5a:34:1c:31:57:e0:4d:
5d:01:32:27:1f:d8:80:92:1a:d2:1b:c0:6b:6d:4b:1f:3d:ca:
dc:07:aa:91:fe:07:bc:c8:9d:40:9d:b5:98:9b:98:de:1f:f7:
69:73:8a:6e:63:4a:62:84:7b:07:80:18:4b:b6:f9:40:57:60:
b3:42:cb:b8:66:39:07:98:79:85:47:69:a3:84:50:4d:14:5c:
76:2f:b9:04:52:49:be:31:05:3e:45:88:6e:2e:4d:7e:cd:f8:
c0:88:fd:e8:b2:67:3f:ab:59:e5:af:9c:7b:00:eb:13:4c:d3:
13:78:3a:89:ab:10:8c:dc:10:5d:86:ee:4e:55:1a:c2:3a:ab:
07:d5:1f:9f:06:ac:13:40:82:c7:ee:65:db:94:1e:3c:18:5e:
46:f0:00:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:15:13 2025 by rpki-client