Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/b6IphyIErw7oW1Q3I9HQr6QoW5Y.roa
File: b6IphyIErw7oW1Q3I9HQr6QoW5Y.roa (raw, json)
Hash identifier: cWVDSvsv5EABPqSHTVsKDWp8mh2tMjKm+dXCJQWUvoI=
Subject key identifier: 6F:A2:29:87:22:04:AF:0E:E8:5B:54:37:23:D1:D0:AF:A4:28:5B:96
Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e
Certificate serial: 0194126D99426CBA789FBE879504D90D831F
Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/b6IphyIErw7oW1Q3I9HQr6QoW5Y.roa
Signing time: Sun 29 Dec 2024 12:39:20 +0000
ROA not before: Sun 29 Dec 2024 12:39:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198154
IP address blocks: 5.160.135.0/24 maxlen: 24
5.160.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:12:6d:99:42:6c:ba:78:9f:be:87:95:04:d9:0d:83:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e
Validity
Not Before: Dec 29 12:39:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6fa229872204af0ee85b543723d1d0afa4285b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:00:a6:c5:d0:42:20:ba:a7:12:dd:c8:b6:d8:
6e:91:62:4a:27:48:47:6f:7f:4f:60:27:4e:61:2a:
78:0a:f2:23:ab:e8:67:fe:49:df:59:5a:b9:e1:cf:
77:df:5c:fb:c0:69:cc:e4:7d:7a:a9:c6:6e:4f:8b:
96:92:48:be:b2:68:bc:2a:80:78:3f:fe:8c:3c:32:
ab:f9:9a:c4:5f:23:e1:b2:c1:5a:e4:04:71:f9:b3:
13:d6:f7:79:1f:1d:11:74:aa:24:ad:04:f8:a6:bf:
a4:0a:2e:85:8e:f3:2a:49:73:3a:2d:5d:a8:e9:fb:
d5:5c:6b:2e:6e:66:00:da:22:33:6b:c9:74:58:f2:
e2:8b:db:91:fe:45:f6:8a:e7:39:fc:9f:1f:f4:ae:
f7:ba:68:c9:7b:e0:2b:fc:53:aa:7d:84:63:b8:90:
dd:ca:af:ee:c6:30:f6:23:a2:f9:d2:cf:42:9c:5c:
c3:53:e4:d8:fc:af:63:35:dc:b9:b1:8c:38:47:1e:
e7:02:0b:f0:61:6c:c9:db:59:3e:e0:a4:35:32:84:
90:2e:78:21:27:3a:49:b5:98:48:ec:64:ef:a9:26:
51:d0:52:b1:4a:d1:e5:22:2c:ac:80:9b:64:4d:83:
a2:f6:76:0d:85:f2:64:40:25:bf:cf:c2:94:4b:51:
76:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A2:29:87:22:04:AF:0E:E8:5B:54:37:23:D1:D0:AF:A4:28:5B:96
X509v3 Authority Key Identifier:
keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/b6IphyIErw7oW1Q3I9HQr6QoW5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.135.0/24
5.160.144.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:d5:60:90:84:b8:80:7b:0e:2e:4a:db:dd:86:f4:4c:7c:a1:
e7:69:d1:6c:18:c9:21:bb:89:cb:fb:8f:c4:58:22:42:ef:7f:
fa:fa:59:b5:6b:4c:44:6f:ce:72:3e:2a:b7:6b:04:cd:43:fc:
94:94:e0:a1:a6:c3:a1:cd:7f:a2:58:11:a6:55:bd:11:47:bb:
c0:c6:e7:c1:cc:a6:da:1e:2a:48:10:0b:0a:fe:9e:4a:c9:1a:
19:ee:8e:c0:43:e6:ab:03:b7:5b:82:be:36:1e:72:de:ef:79:
59:70:3d:3d:55:8b:6a:4c:cd:e1:ef:2a:c5:2d:fd:c5:6a:f9:
7a:19:92:96:63:5c:34:ca:20:17:da:15:9e:9b:13:dd:70:00:
28:39:7c:91:e7:a7:66:03:c1:1c:17:ab:1f:2d:90:03:e2:3f:
d0:6b:64:8c:85:dd:75:d6:2b:5e:61:30:8b:45:ab:cb:75:1a:
a4:a7:b4:96:48:f4:fa:1a:c8:86:0c:73:cb:bf:f0:c9:ba:cc:
a3:c2:a9:45:3f:31:a6:c4:cb:82:1a:1e:db:fb:83:74:9e:62:
b1:7c:e1:fd:a1:60:18:6b:a8:03:a2:7d:74:1e:b0:e0:95:f0:
46:dc:f9:26:6d:0c:34:0b:24:e0:d8:95:da:36:dc:d5:53:25:
06:88:3f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:19:36 2025 by rpki-client