Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/yF6vDlucXo8AhE4nYP6jVe_Tsj0.roa
File: yF6vDlucXo8AhE4nYP6jVe_Tsj0.roa (raw, json)
Hash identifier: Pf5X+lm3ma7NpILFTe8GlyRkDhYtfS5EeLevxoCbI+Q=
Subject key identifier: C8:5E:AF:0E:5B:9C:5E:8F:00:84:4E:27:60:FE:A3:55:EF:D3:B2:3D
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 0196F7463219EB2DA86BD02AEE84F574E932
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/yF6vDlucXo8AhE4nYP6jVe_Tsj0.roa
Signing time: Thu 22 May 2025 09:14:54 +0000
ROA not before: Thu 22 May 2025 09:14:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 147.161.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 May 2025 11:13:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f7:46:32:19:eb:2d:a8:6b:d0:2a:ee:84:f5:74:e9:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: May 22 09:14:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c85eaf0e5b9c5e8f00844e2760fea355efd3b23d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:17:82:2f:79:cc:88:d3:24:a0:ef:c0:8d:5b:
53:ee:f3:9d:e0:37:1a:2b:2a:13:50:1d:95:0a:b3:
45:ac:00:7c:b0:54:08:11:3a:33:ee:15:15:13:33:
14:9e:d9:9c:aa:80:97:37:d4:69:40:e9:03:9d:40:
6e:ae:6f:82:e0:0c:fc:a2:22:84:23:b1:38:3a:e3:
68:1f:af:00:5a:04:5e:d8:38:5e:e9:15:3a:a9:e9:
f6:48:c2:c0:da:d7:6b:9d:68:23:cd:fb:6f:21:99:
8f:0b:25:e1:d8:0b:3f:97:5d:f0:dc:64:f2:87:40:
5c:72:e5:ac:6b:d0:89:d1:4e:4c:7d:eb:da:ea:8b:
f0:14:ed:b3:8a:33:fc:76:10:8d:f4:60:1e:a6:9c:
25:7c:bf:b8:f5:52:da:4f:ce:55:40:81:76:3b:09:
43:da:84:24:40:36:d1:b3:61:58:f2:a6:2b:1b:41:
28:b4:21:f2:c3:2a:f9:01:2c:29:34:b2:08:00:ff:
67:96:c5:54:44:66:42:21:2a:c1:57:1d:e7:c1:fd:
4d:0a:d5:71:d2:ed:b9:b8:2e:69:5b:fa:99:12:af:
45:2b:b4:e8:8a:31:5b:af:83:cd:64:ba:90:03:4b:
f3:a0:3c:2a:3b:4c:a0:ea:84:54:c8:95:b4:8a:33:
cc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:5E:AF:0E:5B:9C:5E:8F:00:84:4E:27:60:FE:A3:55:EF:D3:B2:3D
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/yF6vDlucXo8AhE4nYP6jVe_Tsj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.3.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:76:4b:ea:e5:7d:ad:15:37:6d:6a:ea:b5:f8:61:0c:0a:f6:
81:a2:dd:1c:02:ae:43:10:29:8b:76:3d:6e:4c:40:fb:eb:bd:
c1:c9:64:3a:eb:05:0d:0f:93:bf:07:99:86:4a:25:d1:e1:28:
c0:f1:f8:1a:dc:99:00:53:8a:5c:11:de:f2:9f:14:b8:94:f1:
13:4f:10:7f:62:2d:29:16:e7:95:01:40:63:02:55:9e:a1:63:
67:5d:a9:b8:fe:88:06:8d:f9:1e:8b:4e:4e:7c:29:2f:5e:a6:
c4:3b:34:91:fb:dc:be:6b:63:35:fd:3a:f0:f3:d4:e5:4d:c0:
4b:79:bb:4c:13:52:29:5f:df:19:fc:13:b4:14:80:56:75:87:
ca:38:1f:3a:82:45:f5:aa:75:3a:46:7c:ec:a2:78:e8:75:c2:
0b:a9:6b:26:dc:c3:e0:fd:3b:ac:66:0a:21:9e:4a:18:07:2a:
8e:ac:36:e3:07:a8:21:57:2d:e5:bd:cc:57:c5:54:45:b6:08:
93:c3:10:d6:bc:d7:35:71:17:28:4a:0e:3b:c0:ed:63:43:f4:
55:54:43:45:ca:ee:e4:32:e9:f9:ba:20:3c:76:b6:58:12:91:
32:68:d7:2b:e3:2c:31:a9:67:40:87:ab:5e:2a:d1:e1:68:82:
13:e9:b0:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 23:31:24 2025 by rpki-client