Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2YPy_85r1hMHyfiieWtAfYhRnVU.roa
File: 2YPy_85r1hMHyfiieWtAfYhRnVU.roa (raw, json)
Hash identifier: J1JjHKhudbnhxFRP4/JTTv33ZPLugl0gxF1epItQeEE=
Subject key identifier: D9:83:F2:FF:CE:6B:D6:13:07:C9:F8:A2:79:6B:40:7D:88:51:9D:55
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0196C474CB238D834C3E1066115AA4010F10
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2YPy_85r1hMHyfiieWtAfYhRnVU.roa
Signing time: Mon 12 May 2025 12:25:10 +0000
ROA not before: Mon 12 May 2025 12:25:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58349
IP address blocks: 45.92.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 May 2025 11:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:74:cb:23:8d:83:4c:3e:10:66:11:5a:a4:01:0f:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 12 12:25:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d983f2ffce6bd61307c9f8a2796b407d88519d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f9:c6:9d:4e:c8:b3:45:29:8f:5a:8f:c3:07:
84:b4:2e:8b:74:2a:f7:cc:9e:86:b2:ea:f4:c6:9c:
9f:64:f9:c0:3e:0b:fe:41:1d:4f:22:6e:08:72:3e:
01:8e:0b:52:83:5b:8f:2e:38:42:2a:46:75:35:65:
56:8f:8d:c3:76:65:5b:a6:a4:ec:af:15:0c:0e:2c:
c0:0c:f1:b1:24:4b:b2:c0:22:78:31:ef:5d:0b:69:
9d:ee:e8:98:a8:c1:67:c5:dc:9f:54:4b:49:a6:52:
c3:96:17:08:04:2f:88:c1:de:3a:04:bd:51:e6:57:
0b:4d:9e:0e:8f:a8:54:ed:2c:ee:3d:f3:87:15:1e:
ca:49:81:a1:5b:5f:3d:43:32:18:9c:db:c3:6f:3b:
11:cb:38:47:72:1a:f7:a4:ed:63:4c:23:13:12:e6:
18:59:48:e6:a7:0d:2c:c3:0f:e0:4e:a1:54:bc:da:
e0:dc:67:c7:be:5e:13:a7:04:fe:c9:96:4a:ce:0c:
36:8a:f7:5d:df:19:97:1d:90:47:34:75:1e:b7:25:
ab:90:29:50:38:b0:45:53:10:3e:c7:81:3d:c5:e4:
40:dd:ee:c9:6c:61:76:9b:5c:1f:a3:66:64:54:65:
db:67:8a:92:14:74:60:a8:6d:49:c3:4a:46:28:24:
b1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:83:F2:FF:CE:6B:D6:13:07:C9:F8:A2:79:6B:40:7D:88:51:9D:55
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2YPy_85r1hMHyfiieWtAfYhRnVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.247.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:66:fa:50:31:04:5f:fb:1d:bb:90:a0:2c:71:d0:8f:40:cc:
5f:d5:3a:f4:8c:d2:a4:93:02:50:87:77:9d:76:45:c1:dd:5f:
35:8f:f3:97:ab:8c:fb:d8:be:25:30:45:73:27:cf:ef:0a:d4:
3a:50:02:44:36:11:14:a0:fc:05:e2:93:ae:63:19:98:eb:b6:
35:c8:ca:88:c1:20:eb:25:11:bf:e9:b2:bb:4b:a2:f0:6e:7d:
52:bb:80:11:60:bc:58:ee:23:ea:16:72:81:56:40:59:d2:41:
82:cd:a5:37:78:e6:19:d3:bb:a7:9a:4c:71:f1:84:89:4d:c7:
9b:a2:bc:4f:6e:f4:30:fc:14:2e:2f:96:87:27:12:90:51:4e:
c5:ea:3f:73:57:91:ae:c9:a7:63:fc:d0:6a:fa:a2:fa:8c:92:
be:00:61:df:ac:23:3c:e5:5f:f9:b9:be:9b:49:95:72:d8:cf:
7c:2d:91:cb:15:1e:db:ac:85:15:56:63:92:41:3a:f1:69:21:
ee:80:6a:59:71:91:93:b2:af:7e:7f:01:38:13:a8:24:86:ba:
7c:b1:d5:66:0d:fe:41:9c:99:f5:05:29:2a:72:ca:56:67:05:
ca:48:5c:1e:83:b8:d2:5a:af:c6:76:ad:85:8b:2e:9d:8d:b4:
98:ee:5f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 02:35:29 2025 by rpki-client