Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/a9db23-a67c-4f8b-8adf-70522d814e0c/1/aJO10I4vRiIXH8JtjSBuxDlXiFQ.roa
File: aJO10I4vRiIXH8JtjSBuxDlXiFQ.roa (raw, json)
Hash identifier: 1AjsURZ2iztEI7mSBefy3DbN/tA/zWjYujnEyLarNSI=
Subject key identifier: 68:93:B5:D0:8E:2F:46:22:17:1F:C2:6D:8D:20:6E:C4:39:57:88:54
Certificate issuer: /CN=e930b76e721f5d834ed53e49284d9790339211c8
Certificate serial: 0196C9710874C0D084831B5B73E20CD98559
Authority key identifier: E9:30:B7:6E:72:1F:5D:83:4E:D5:3E:49:28:4D:97:90:33:92:11:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6TC3bnIfXYNO1T5JKE2XkDOSEcg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/a9db23-a67c-4f8b-8adf-70522d814e0c/1/aJO10I4vRiIXH8JtjSBuxDlXiFQ.roa
Signing time: Tue 13 May 2025 11:39:10 +0000
ROA not before: Tue 13 May 2025 11:39:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210618
IP address blocks: 194.9.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 May 2025 02:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:71:08:74:c0:d0:84:83:1b:5b:73:e2:0c:d9:85:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e930b76e721f5d834ed53e49284d9790339211c8
Validity
Not Before: May 13 11:39:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6893b5d08e2f4622171fc26d8d206ec439578854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:54:86:6a:dc:6f:d0:af:a6:85:e9:ba:b4:3e:
0a:62:bd:ff:d1:a3:54:14:44:db:cd:9a:4a:f8:03:
66:8f:56:37:b3:3e:92:6f:49:48:c4:0c:1c:e3:a1:
61:6a:c2:3a:88:49:f4:f2:80:3f:46:aa:6d:f7:67:
49:86:5a:9a:ae:11:09:72:8f:03:64:69:87:48:c1:
d3:bc:70:1b:cc:47:5b:eb:77:ad:89:de:3c:be:5b:
f8:80:00:0a:53:f8:34:ee:8a:f2:fd:a6:d6:d1:77:
01:50:c8:dc:12:e9:76:25:e8:c7:25:8c:60:5e:0e:
3d:27:16:eb:b7:30:0d:eb:ea:b6:89:e8:bc:ab:0b:
e7:83:6b:9b:17:fd:63:8c:32:69:b6:ed:d3:45:04:
b1:9c:39:92:ec:1c:86:24:6c:76:a7:aa:8f:3a:9e:
b8:87:ee:d4:95:ee:68:e6:e0:76:a5:23:21:a7:d8:
91:de:e5:ad:c3:80:72:f5:f4:11:c4:6e:6b:0a:54:
26:cc:31:91:31:69:f0:0f:9e:9f:60:c1:e2:58:ab:
17:a7:df:2c:50:b8:8d:7f:60:a2:10:20:91:46:83:
49:d0:ff:b8:3d:79:68:86:4b:b3:21:45:f1:48:6c:
f5:7a:7b:87:70:f1:cf:29:03:d7:87:b5:a6:d4:5e:
f9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:93:B5:D0:8E:2F:46:22:17:1F:C2:6D:8D:20:6E:C4:39:57:88:54
X509v3 Authority Key Identifier:
keyid:E9:30:B7:6E:72:1F:5D:83:4E:D5:3E:49:28:4D:97:90:33:92:11:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6TC3bnIfXYNO1T5JKE2XkDOSEcg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a9db23-a67c-4f8b-8adf-70522d814e0c/1/aJO10I4vRiIXH8JtjSBuxDlXiFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/a9db23-a67c-4f8b-8adf-70522d814e0c/1/6TC3bnIfXYNO1T5JKE2XkDOSEcg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.180.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:2c:0c:55:31:af:23:db:62:ad:c0:bf:08:d0:16:8c:ae:56:
5c:0d:23:5e:dc:fe:06:d3:3e:fc:a8:e2:30:7d:ab:50:20:86:
1a:7b:d2:86:98:92:c7:6f:72:e8:af:48:81:f1:53:92:60:d4:
b9:8e:39:bf:70:f1:04:44:c6:13:9d:da:38:99:92:3f:76:60:
4a:10:76:be:f8:53:42:73:f0:2b:37:87:6d:74:b3:3d:37:7b:
3b:f5:55:4c:7e:93:60:9e:3e:0f:ab:23:68:3e:64:58:b6:78:
2f:74:02:35:d5:9a:0e:62:50:13:fe:e1:08:99:28:8d:b0:01:
b3:e9:3e:e0:25:fe:d8:f8:0b:a1:56:80:4c:a5:23:18:9d:cc:
ff:ec:9d:08:51:41:7e:f0:73:df:c7:62:38:87:52:77:eb:2a:
e3:c3:c0:7f:a2:c3:4a:7a:f1:78:d1:c3:17:1d:6f:d6:05:9f:
1b:4d:1d:f9:3a:d3:5c:be:4e:70:ae:27:c9:b7:96:de:91:fa:
44:e4:c8:a1:87:be:14:09:e2:84:72:40:ed:ac:ac:3f:4b:31:
07:47:6c:18:98:b3:a7:71:77:cd:86:4b:e9:ce:f1:65:38:66:
40:06:34:ff:d1:2d:25:06:01:f0:16:db:ee:ae:dd:ba:36:7a:
37:82:71:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:25:24 2025 by rpki-client