Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/6py12OnwNRgQqCVFCMp8G_JkKcQ.roa
File: 6py12OnwNRgQqCVFCMp8G_JkKcQ.roa (raw, json)
Hash identifier: UUIqfexGSfGqk6Juu45vvL/nKBVckmBLf0rH/tW+6Ww=
Subject key identifier: EA:9C:B5:D8:E9:F0:35:18:10:A8:25:45:08:CA:7C:1B:F2:64:29:C4
Certificate issuer: /CN=1a9154e1c5578b0fef8abb779f8117e64e884d18
Certificate serial: 01953059C015001E0473ECCC8D1D5409CE64
Authority key identifier: 1A:91:54:E1:C5:57:8B:0F:EF:8A:BB:77:9F:81:17:E6:4E:88:4D:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpFU4cVXiw_virt3n4EX5k6ITRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/6py12OnwNRgQqCVFCMp8G_JkKcQ.roa
Signing time: Sun 23 Feb 2025 01:09:02 +0000
ROA not before: Sun 23 Feb 2025 01:09:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13347
IP address blocks: 193.176.98.0/24 maxlen: 24
2a12:f3c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sun 23 Mar 2025 16:37:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:30:59:c0:15:00:1e:04:73:ec:cc:8d:1d:54:09:ce:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a9154e1c5578b0fef8abb779f8117e64e884d18
Validity
Not Before: Feb 23 01:09:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ea9cb5d8e9f0351810a8254508ca7c1bf26429c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1a:8a:3c:4b:6a:7a:88:3a:0d:f3:83:1b:c7:
44:b7:7f:5f:5a:f6:6e:d7:da:6e:6a:24:fb:3d:2b:
21:be:1d:34:25:6c:84:43:d7:3d:ee:9a:6c:4b:49:
bf:82:8a:97:9f:01:a0:4e:ea:98:7d:7a:49:5d:6b:
9f:9e:f5:b5:24:58:e9:08:52:1f:1d:04:de:e2:85:
9b:e0:fe:ca:be:b8:ce:c7:c0:99:c6:e6:16:09:33:
1a:12:bf:08:27:4d:f8:ce:63:c4:a7:1c:86:cf:ca:
a7:5f:72:0b:b0:53:94:f7:d0:23:72:68:51:ca:d9:
47:b7:a9:fd:a6:ba:fe:c8:73:6a:45:0d:3b:c7:87:
75:26:41:44:3f:94:b6:65:ea:9b:6e:cc:85:b9:9c:
7f:35:9a:0e:95:1c:3c:f6:d3:c6:01:85:59:4c:f9:
a4:ac:c6:05:8e:b3:c6:e4:d9:58:be:2a:45:7c:f6:
aa:22:5e:d3:56:38:20:8f:4e:79:61:68:97:8a:e0:
1c:f8:76:39:91:82:3d:06:7d:fd:10:d5:93:db:d9:
2f:9a:ea:82:8a:18:d4:e6:47:cb:d8:e6:f0:53:13:
56:c7:05:be:fe:07:2f:48:0b:4d:53:99:46:56:13:
09:b4:24:9f:84:58:4a:b1:99:87:bb:98:1c:68:e5:
44:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:9C:B5:D8:E9:F0:35:18:10:A8:25:45:08:CA:7C:1B:F2:64:29:C4
X509v3 Authority Key Identifier:
keyid:1A:91:54:E1:C5:57:8B:0F:EF:8A:BB:77:9F:81:17:E6:4E:88:4D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpFU4cVXiw_virt3n4EX5k6ITRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/6py12OnwNRgQqCVFCMp8G_JkKcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/54bac8-bf50-44d2-ad42-388d8ad2a5bb/1/GpFU4cVXiw_virt3n4EX5k6ITRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.98.0/24
IPv6:
2a12:f3c0::/29
Signature Algorithm: sha256WithRSAEncryption
83:7b:da:0b:ff:dd:8d:51:56:4f:a0:2f:7d:f3:23:29:9d:1e:
ec:1d:71:c7:9e:86:03:6e:65:7a:41:a8:f2:58:8d:1e:0c:28:
5c:12:6f:06:c9:5e:d4:93:57:4b:57:8a:0e:83:97:96:41:24:
16:a7:22:5c:12:4e:73:68:be:fc:3f:82:e0:16:bd:54:c0:b4:
7a:4e:91:1b:b4:f4:59:b1:74:65:1f:ac:b8:a4:da:3a:a5:71:
e7:07:51:6a:a0:a2:bc:bb:55:de:e5:bb:f2:38:5d:1b:26:e9:
5a:38:74:3e:76:10:9d:07:9f:db:02:bd:85:28:d9:c4:34:3c:
1b:d3:a5:2d:ea:97:2d:62:d7:af:3d:e4:d7:e0:a6:6b:34:a2:
70:85:7b:80:77:86:0f:5b:bd:9c:c1:10:0c:64:75:e4:98:12:
48:c9:6d:e5:ea:a6:c7:7c:af:12:b0:06:33:30:38:9b:1a:04:
2a:f9:f0:c9:68:21:14:43:f8:72:57:41:9a:78:1f:01:51:47:
c1:43:96:b6:f7:59:a1:eb:4d:1a:2f:6e:34:85:5b:7a:6f:df:
88:bd:43:7b:10:7d:db:91:df:6a:30:f3:3b:20:78:72:f1:71:
6d:d8:ad:b3:d8:98:a3:19:71:36:fc:ef:c7:27:02:4b:45:f3:
7b:5b:90:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 16:11:25 2025 by rpki-client