Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/vrF88vOpZBIgW0wqP9Z5p_Z_-bs.roa
File: vrF88vOpZBIgW0wqP9Z5p_Z_-bs.roa (raw, json)
Hash identifier: AmBtQE9Gy8vIH5xf5ItjNpJRbMgJImdu7cqke+zKU/0=
Subject key identifier: BE:B1:7C:F2:F3:A9:64:12:20:5B:4C:2A:3F:D6:79:A7:F6:7F:F9:BB
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 0195A9ABE603A1D52FEB978EBC82185BC9D2
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/vrF88vOpZBIgW0wqP9Z5p_Z_-bs.roa
Signing time: Tue 18 Mar 2025 14:32:49 +0000
ROA not before: Tue 18 Mar 2025 14:32:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 196695
IP address blocks: 5.183.154.0/24 maxlen: 24
213.226.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Apr 2025 20:31:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a9:ab:e6:03:a1:d5:2f:eb:97:8e:bc:82:18:5b:c9:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Mar 18 14:32:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=beb17cf2f3a96412205b4c2a3fd679a7f67ff9bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ca:76:19:ae:0e:20:a1:3b:8b:cb:16:f6:10:
cc:68:ef:15:61:73:e9:d7:4a:a0:78:7d:71:8a:fc:
b6:34:08:6e:6a:0e:ba:bf:5e:80:4a:3e:87:2e:c2:
ac:3b:68:77:fa:d3:f8:b9:7d:25:a2:5e:9a:5d:51:
8b:c5:02:a7:0b:fa:ef:d7:7c:07:28:18:64:f7:24:
1d:be:c2:e9:23:6d:4c:76:c5:f0:9c:25:dc:8a:fa:
74:33:be:ce:af:0f:d5:b6:37:f0:f2:1d:5c:fc:7f:
67:32:7d:8e:30:6c:6e:f4:08:3f:48:f9:b5:19:04:
8a:4e:21:8b:be:e7:8c:0c:e9:f3:0e:82:80:56:b0:
9e:1b:fb:ea:51:73:e6:31:70:36:29:b8:52:88:58:
b3:de:b6:2d:68:b6:ac:4c:08:f6:84:db:c2:b2:68:
81:c3:0f:a7:bb:a3:20:15:cd:bf:6b:02:d4:83:2d:
e7:9a:61:df:5c:69:b6:40:47:28:79:ff:3c:4c:a6:
78:88:65:b4:d1:5d:50:03:a8:65:77:49:9b:27:cc:
98:6a:57:f4:2d:40:09:d1:c1:26:31:04:10:a6:e5:
38:fe:bb:ea:7b:ae:f8:d7:cf:49:19:cd:64:9d:cf:
7b:fa:ff:b0:3c:98:28:b1:b4:34:3a:11:6d:57:27:
c1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:B1:7C:F2:F3:A9:64:12:20:5B:4C:2A:3F:D6:79:A7:F6:7F:F9:BB
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/vrF88vOpZBIgW0wqP9Z5p_Z_-bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.154.0/24
213.226.123.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:04:14:6a:e3:59:cb:6f:78:ca:0e:3d:95:4b:52:4c:6c:c6:
0c:e0:1f:51:d2:96:9a:88:9b:64:42:e6:ba:1c:35:e9:9e:b5:
a8:0b:dd:8a:ff:93:17:07:12:1e:55:4a:96:b7:9a:e8:d2:9a:
85:13:b6:01:e1:5b:89:99:5b:d7:19:21:07:bf:72:32:82:28:
9d:56:5d:f7:b5:78:03:50:16:2e:4e:e2:0f:4b:94:c9:82:1b:
36:fe:97:90:ed:7d:49:b8:bc:2e:66:fe:d1:9a:33:67:07:cd:
57:35:3f:38:bf:fa:66:c4:96:67:b9:dd:59:08:46:e2:e8:99:
7b:9b:c1:a5:96:8e:dc:fb:db:4d:be:8f:ad:62:e5:a1:4e:e4:
55:8e:e5:66:ed:d8:f1:e5:2a:81:10:58:5c:10:6b:ad:78:5d:
73:32:ad:f6:7c:1c:16:4a:a1:78:28:fe:d4:cb:01:44:0a:d7:
94:30:04:03:a3:30:b6:dc:98:60:b4:38:1b:35:23:3f:e7:09:
ea:70:28:e4:bf:c9:2d:3f:e4:47:12:ca:da:9a:48:dd:5b:93:
e0:34:10:2a:34:55:ac:92:42:a7:96:82:fe:48:c0:ca:b4:5a:
d1:0e:aa:57:19:26:43:07:2b:51:d8:6a:73:91:19:1f:20:15:
2e:52:6d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 23:41:36 2025 by rpki-client