Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Fkgwb--7uaFgvVEEsARgvdKLwg4.roa
File: Fkgwb--7uaFgvVEEsARgvdKLwg4.roa (raw, json)
Hash identifier: kzFDLoSdd0tCY+NRaaQ3ohhYJEBflBvr2UDEZLBu5UI=
Subject key identifier: 16:48:30:6F:EF:BB:B9:A1:60:BD:51:04:B0:04:60:BD:D2:8B:C2:0E
Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e
Certificate serial: 0194126D99B8E330964CD952A148830EBAE2
Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Fkgwb--7uaFgvVEEsARgvdKLwg4.roa
Signing time: Sun 29 Dec 2024 12:39:20 +0000
ROA not before: Sun 29 Dec 2024 12:39:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200252
IP address blocks: 5.160.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:12:6d:99:b8:e3:30:96:4c:d9:52:a1:48:83:0e:ba:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e
Validity
Not Before: Dec 29 12:39:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1648306fefbbb9a160bd5104b00460bdd28bc20e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6b:ce:4a:43:4f:e9:db:78:ca:82:6c:b2:fb:
5e:8c:52:12:3f:02:30:f1:9d:5c:83:d9:d9:77:ba:
fc:e2:88:ea:80:ae:77:00:42:33:4a:33:da:ae:f2:
b1:40:c1:9a:90:fe:c9:f0:cf:39:00:5d:3d:12:9e:
16:9a:d5:4b:79:7b:73:11:3b:c8:02:84:cf:b5:f3:
db:01:5b:d0:85:c0:b8:e5:c1:01:e0:8a:83:27:a0:
90:8f:d3:1c:e7:d4:17:dc:aa:a5:84:ed:5d:2e:b9:
28:24:9a:20:90:10:b6:74:70:bd:92:df:b3:0e:77:
63:e1:cb:bd:d5:7b:f3:4b:34:0c:09:1f:53:83:98:
25:9d:c2:89:80:c7:79:57:59:92:eb:dd:1c:5a:31:
43:f0:b5:4e:b8:13:ea:dd:5f:18:a2:48:ff:b7:73:
60:b6:0b:d5:a8:bd:a4:39:a0:f7:26:10:1b:f4:fe:
77:c9:b2:ed:60:6d:ab:c0:35:50:41:3c:c1:75:cc:
91:fb:93:9c:f3:9e:9a:5c:29:8f:18:93:00:4c:ad:
1e:ff:1c:4e:ed:c0:2b:ad:21:04:4f:0a:c3:a2:c3:
2b:d8:70:72:ae:86:05:d1:cc:ee:cb:81:d1:a8:88:
8a:e8:a3:8e:0f:33:65:fd:8d:95:9d:82:61:d5:5e:
b6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:48:30:6F:EF:BB:B9:A1:60:BD:51:04:B0:04:60:BD:D2:8B:C2:0E
X509v3 Authority Key Identifier:
keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Fkgwb--7uaFgvVEEsARgvdKLwg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.117.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:30:09:77:9a:18:02:54:11:56:92:40:e6:9d:5a:15:20:a7:
71:71:0b:0c:e2:35:c7:48:58:fe:e3:5c:fd:ec:f0:bf:93:56:
a6:d7:40:03:fe:d4:fd:45:51:9e:7f:17:35:db:78:b3:55:07:
8a:f7:85:e5:43:cf:91:69:4e:ed:2b:f9:15:50:8e:4a:22:6e:
d2:61:f5:73:aa:45:1c:44:3d:c8:5b:c6:72:2c:82:cd:50:c7:
1d:12:ca:20:fe:15:6f:b2:7a:5e:f5:88:bc:3e:3b:0f:77:f1:
97:6d:0c:62:e6:5f:ad:42:05:04:fb:46:cb:45:18:c4:7b:0c:
cc:9d:15:8a:55:ea:3b:14:f9:f3:55:19:f4:94:71:4c:f5:9e:
5e:c8:e3:5d:38:87:ce:be:90:a8:4f:a5:5a:49:d3:03:31:3e:
58:40:d5:02:88:57:1f:4f:37:af:77:56:77:ae:cf:0e:62:25:
0a:6c:69:88:af:76:15:38:a4:94:1d:65:53:3d:f6:e6:51:62:
a7:16:b7:26:0a:f4:1d:74:29:16:43:bc:bd:8d:d8:ab:68:85:
a2:eb:ba:57:6e:bb:a4:65:e8:32:3c:ab:6e:81:e7:7e:c9:58:
11:a2:b3:ab:ec:c9:01:22:ee:d9:5d:d9:3a:0f:e4:c3:16:2e:
05:d0:62:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:30:37 2025 by rpki-client