Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/WdefOIpQID7EzLc3vT7pbJScjcc.roa
File: WdefOIpQID7EzLc3vT7pbJScjcc.roa (raw, json)
Hash identifier: 9eeRti7F2k4ZQM0jXuagH9KEDmqibG90PeKsV8WySx0=
Subject key identifier: 59:D7:9F:38:8A:50:20:3E:C4:CC:B7:37:BD:3E:E9:6C:94:9C:8D:C7
Certificate issuer: /CN=576705b557b823086b6a532324bfbba36995cb1c
Certificate serial: 0196F910DFD634268F9D856B2E8C1DDE9135
Authority key identifier: 57:67:05:B5:57:B8:23:08:6B:6A:53:23:24:BF:BB:A3:69:95:CB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V2cFtVe4IwhralMjJL-7o2mVyxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/WdefOIpQID7EzLc3vT7pbJScjcc.roa
Signing time: Thu 22 May 2025 17:35:54 +0000
ROA not before: Thu 22 May 2025 17:35:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214098
IP address blocks: 185.56.161.0/24 maxlen: 24
2a07:5c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 22 May 2025 19:10:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f9:10:df:d6:34:26:8f:9d:85:6b:2e:8c:1d:de:91:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=576705b557b823086b6a532324bfbba36995cb1c
Validity
Not Before: May 22 17:35:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=59d79f388a50203ec4ccb737bd3ee96c949c8dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2f:79:e6:a5:b2:6e:ba:6f:17:01:04:13:4a:
93:f8:28:59:ca:70:35:1f:ae:a7:58:43:7d:59:73:
6f:57:ec:1e:18:c6:42:79:a9:fc:bf:07:2a:46:6c:
29:d8:f0:dc:2f:24:f9:59:94:9c:69:81:6f:e1:64:
f0:de:19:67:8d:f6:19:e1:48:df:23:50:2b:1a:19:
cf:d6:c6:ae:8c:2c:d6:58:39:f4:0d:47:4b:6f:7b:
b6:49:6d:06:80:28:90:c2:6a:41:e5:bf:fb:5f:fd:
81:fa:e2:a9:f4:5d:35:6a:b5:e8:21:08:8c:78:c8:
c8:9f:b6:a6:8b:eb:cd:2e:1a:7d:fc:3e:20:c8:5b:
30:59:e7:dc:c7:bb:1a:a9:93:9b:dc:9d:5f:c5:24:
82:4e:ae:9c:92:f1:4c:4b:7c:6f:e4:16:ed:e6:48:
df:43:ec:11:50:25:05:3a:15:41:3a:a0:7f:02:eb:
25:30:63:66:48:6e:d1:97:28:da:d1:09:9c:21:ac:
cd:db:b7:1d:4a:4f:36:d6:f7:2d:b8:06:2b:41:22:
cf:0c:a0:02:3f:b5:93:44:1f:79:ef:3a:ef:3a:f4:
96:7c:4c:b8:ac:b2:4f:58:12:2a:ab:ce:6b:2a:87:
bf:f5:1b:d1:89:1b:39:0e:b8:32:e6:e2:55:ee:d4:
07:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D7:9F:38:8A:50:20:3E:C4:CC:B7:37:BD:3E:E9:6C:94:9C:8D:C7
X509v3 Authority Key Identifier:
keyid:57:67:05:B5:57:B8:23:08:6B:6A:53:23:24:BF:BB:A3:69:95:CB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V2cFtVe4IwhralMjJL-7o2mVyxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/WdefOIpQID7EzLc3vT7pbJScjcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/V2cFtVe4IwhralMjJL-7o2mVyxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.161.0/24
IPv6:
2a07:5c0::/29
Signature Algorithm: sha256WithRSAEncryption
12:17:52:62:ef:25:bd:c9:1f:85:ef:f6:6c:0f:48:f4:17:67:
f7:b2:33:62:c2:11:67:6d:c6:22:43:50:27:3b:c5:f1:7a:08:
e1:7c:61:23:26:7d:f3:31:ea:f8:5d:1f:31:5f:67:9a:09:a0:
f1:b9:93:a1:dd:2c:54:95:f9:1b:1d:21:12:37:d4:87:e1:5b:
cd:93:25:d3:82:f3:63:bd:1b:e9:9e:25:59:09:b3:5f:36:ea:
25:c5:6c:2d:5d:67:69:90:17:85:e5:b1:ef:9c:af:42:62:91:
4a:83:60:a3:a6:87:e2:52:49:64:dd:c6:ec:f7:84:aa:85:02:
a0:1f:f4:2e:f7:5a:05:4b:3b:20:22:9a:43:8f:15:bf:95:69:
e9:e3:4b:87:b2:e9:f9:fd:01:be:15:ef:00:60:94:bc:1e:91:
d2:91:2d:46:17:59:68:d8:8e:94:0f:bd:ac:65:7d:16:dd:49:
2a:43:47:cc:a5:f5:93:08:4e:bc:16:c9:95:12:c0:85:6f:da:
cf:6b:b8:a8:47:44:aa:d6:d2:2f:4f:78:d0:36:13:32:d1:57:
a8:ee:c8:2e:8c:4d:a6:d6:07:0c:56:df:de:93:1a:7a:06:e6:
b8:83:fe:4e:cc:81:05:9c:5b:39:ad:f5:45:f5:8d:a4:78:97:
51:9a:46:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 02:37:21 2025 by rpki-client