Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/AVG0EVUDHW7ZmkRb9qGeeBVlZUk.roa
File: AVG0EVUDHW7ZmkRb9qGeeBVlZUk.roa (raw, json)
Hash identifier: 8AoQa1xuWqVY/VvkpGrZAUxvuM0i9L3WIdk34AUji9Q=
Subject key identifier: 01:51:B4:11:55:03:1D:6E:D9:9A:44:5B:F6:A1:9E:78:15:65:65:49
Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e
Certificate serial: 0194126D9B75B22F5D886B51943225949A83
Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/AVG0EVUDHW7ZmkRb9qGeeBVlZUk.roa
Signing time: Sun 29 Dec 2024 12:39:20 +0000
ROA not before: Sun 29 Dec 2024 12:39:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212355
IP address blocks: 5.160.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:12:6d:9b:75:b2:2f:5d:88:6b:51:94:32:25:94:9a:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e
Validity
Not Before: Dec 29 12:39:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0151b41155031d6ed99a445bf6a19e7815656549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:71:c0:d4:70:79:ab:a1:d6:e4:24:9a:d3:9d:
ff:2c:4b:80:2d:d1:2a:36:63:e9:27:59:bf:22:d3:
79:d0:63:da:c9:c9:14:b2:51:7b:67:fe:62:f7:d2:
e0:90:d3:74:21:da:2d:ef:a9:21:68:19:66:65:ae:
ec:f7:4b:38:93:8f:68:b6:42:6a:b4:01:c6:f9:ab:
e6:7c:38:54:91:68:55:19:67:1d:fd:2c:a3:ca:26:
a0:c3:0f:89:51:1e:3c:5b:a9:a8:2c:ab:eb:00:2a:
0b:07:a7:a8:ce:60:d4:45:32:78:78:a3:31:80:e1:
4f:6d:ca:a5:e0:e3:f0:26:ee:22:16:cc:b6:a2:d3:
3b:d8:c3:4a:21:b6:d2:2c:6c:bd:a9:68:15:c9:34:
53:d7:0e:a4:44:e4:fa:1e:1d:53:2a:ab:7e:5b:5f:
29:1d:1a:86:04:da:a4:b6:f6:b4:64:63:93:1f:93:
75:8c:27:c9:6a:dd:54:17:6c:47:0e:55:33:2d:0c:
2e:75:53:7a:b4:8e:9f:73:a6:2b:e5:cd:ea:1a:7a:
99:57:b0:f8:6a:2d:55:fe:51:5c:5b:4b:1e:9b:47:
ef:34:40:bf:64:8b:7f:f7:89:4d:31:00:e6:dc:28:
ec:9e:c1:c6:92:ce:d9:aa:f8:4a:7c:a4:f2:5e:c8:
9c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:51:B4:11:55:03:1D:6E:D9:9A:44:5B:F6:A1:9E:78:15:65:65:49
X509v3 Authority Key Identifier:
keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/AVG0EVUDHW7ZmkRb9qGeeBVlZUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.11.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:67:c7:86:f7:bf:05:df:2f:6b:79:f0:b2:6a:a3:7d:b3:09:
42:03:d9:ba:29:05:2f:71:52:22:14:0a:c1:43:4d:2e:04:e3:
22:c2:63:2f:36:38:46:19:02:c5:7c:36:96:cd:22:b2:40:2d:
5d:0f:d1:e5:37:fe:25:27:da:04:de:2e:28:8d:9f:ba:92:dc:
2f:d2:d7:d7:cf:ee:dc:a6:ed:f1:b6:57:2d:74:7c:ab:ad:59:
43:63:ee:de:b8:fb:53:21:a2:58:4b:e4:01:06:8d:1b:e0:c4:
ff:32:fc:c4:ca:9f:6a:4a:de:92:c2:77:5f:0c:59:00:49:f8:
62:a8:f8:1b:23:21:43:f2:ef:62:8f:4d:58:fd:63:fb:0a:0d:
b1:8b:43:73:aa:a3:fd:9d:20:02:54:a1:0d:b3:e0:68:2b:3b:
d5:61:8d:92:6b:11:cc:53:cb:54:3a:ff:d1:8c:68:67:dd:bb:
54:bb:f1:c2:d3:5c:42:e9:d2:be:50:1e:a0:b3:45:dc:fa:7f:
46:cb:02:01:8f:d2:e5:66:31:3c:88:b4:ec:60:2f:48:69:8f:
7f:2a:8a:b7:c7:e2:1e:47:06:84:26:6c:ab:53:b1:cb:e2:8b:
ba:56:1c:a8:68:30:00:c8:d9:5d:7f:36:a4:de:b7:42:83:f5:
4d:ff:b7:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:40:10 2025 by rpki-client