Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/v_ANcvXPDgOvYOlHSmmosM9Sfzo.roa
File: v_ANcvXPDgOvYOlHSmmosM9Sfzo.roa (raw, json)
Hash identifier: /6y7H+iVkgtla71SwcMd2nWPAK4sgzrzgfaTtNDoZLI=
Subject key identifier: BF:F0:0D:72:F5:CF:0E:03:AF:60:E9:47:4A:69:A8:B0:CF:52:7F:3A
Certificate issuer: /CN=576705b557b823086b6a532324bfbba36995cb1c
Certificate serial: 0196F96E42570E3B3B20B38F67EB319E5FBB
Authority key identifier: 57:67:05:B5:57:B8:23:08:6B:6A:53:23:24:BF:BB:A3:69:95:CB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V2cFtVe4IwhralMjJL-7o2mVyxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/v_ANcvXPDgOvYOlHSmmosM9Sfzo.roa
Signing time: Thu 22 May 2025 19:17:54 +0000
ROA not before: Thu 22 May 2025 19:17:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214098
IP address blocks: 185.56.161.0/24 maxlen: 24
2a07:5c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 23 May 2025 14:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f9:6e:42:57:0e:3b:3b:20:b3:8f:67:eb:31:9e:5f:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=576705b557b823086b6a532324bfbba36995cb1c
Validity
Not Before: May 22 19:17:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bff00d72f5cf0e03af60e9474a69a8b0cf527f3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:55:dd:a2:b8:6e:67:be:00:64:a0:fb:f6:3a:
a3:c7:cc:b9:4c:81:9c:22:ae:25:6c:67:a9:c2:cb:
2d:09:89:c8:27:ba:d4:9c:58:72:49:7e:4e:d0:0e:
7b:d0:39:6a:4c:e5:ff:75:f6:5b:e6:a7:7b:62:80:
43:bd:10:10:dc:40:ff:41:1a:c8:30:ac:14:c1:c4:
b1:43:7e:f9:ba:26:bc:00:6c:b2:0e:9a:83:b1:00:
8c:a1:1c:7f:57:87:37:d0:8b:78:7d:80:ea:9e:29:
a1:6f:07:42:ec:98:58:ee:9b:ef:58:47:7a:92:9d:
01:79:92:d2:17:69:d4:40:23:2c:39:7a:01:81:3e:
35:8f:02:f2:00:98:4d:f5:9f:58:96:9b:68:23:0a:
78:d1:68:e8:fc:c7:24:d1:d5:ec:1d:88:ed:7c:94:
ac:d0:16:02:4a:46:c9:e7:34:92:a9:55:b0:f0:2a:
70:4f:17:e8:86:d2:4e:58:89:41:a9:2a:21:53:dc:
54:d6:09:e0:6a:a5:33:ed:42:0f:53:ac:11:da:97:
c9:92:d9:65:45:f7:60:17:c4:b9:fe:ce:99:d3:fa:
16:70:8e:fa:05:35:84:8a:ec:52:f6:ad:a6:3d:86:
82:b6:10:77:30:4e:89:80:18:c1:3e:61:27:8a:1d:
27:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:F0:0D:72:F5:CF:0E:03:AF:60:E9:47:4A:69:A8:B0:CF:52:7F:3A
X509v3 Authority Key Identifier:
keyid:57:67:05:B5:57:B8:23:08:6B:6A:53:23:24:BF:BB:A3:69:95:CB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V2cFtVe4IwhralMjJL-7o2mVyxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/v_ANcvXPDgOvYOlHSmmosM9Sfzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7d7e1d-33c0-4342-b259-a7bf3bf902d8/1/V2cFtVe4IwhralMjJL-7o2mVyxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.161.0/24
IPv6:
2a07:5c0::/48
Signature Algorithm: sha256WithRSAEncryption
8f:f7:92:26:31:66:f2:fb:07:c4:75:76:a9:34:94:10:25:2f:
11:d0:42:97:5b:be:95:5b:3f:68:af:c9:6d:a8:cb:ba:7c:5f:
b7:bf:fd:91:55:57:05:8e:fd:da:66:b2:2e:c3:0e:9d:ba:b2:
b5:d8:2d:86:93:65:10:a7:6c:e4:b0:52:e4:44:50:12:9c:af:
13:f3:20:01:61:37:76:9b:1a:24:5c:6a:92:09:13:5e:b1:5d:
1a:c7:71:83:b6:7b:ba:40:92:c2:8c:da:86:46:d0:74:4e:fa:
dc:ef:7f:41:46:f1:91:ef:14:5b:ff:6f:1e:69:19:4a:13:5f:
b3:6f:87:4f:8e:ce:08:b3:64:6f:f5:9a:cc:29:99:c0:a0:57:
fa:9d:40:89:6c:8d:13:f8:12:9b:e5:19:54:8a:f6:dc:e8:86:
f3:c3:9b:fc:34:41:32:d4:af:2c:f4:33:31:81:da:3a:2e:e5:
f9:1c:ef:b5:0c:20:d8:0e:d7:6c:bd:77:05:5f:11:1c:d4:21:
90:25:61:67:16:68:36:e1:38:d2:1c:2c:95:2e:01:c2:ae:b6:
08:70:14:ae:28:49:8d:41:21:ea:65:db:6c:ef:7f:e1:94:f6:
bf:eb:6c:7d:e0:56:73:64:e0:27:a8:79:57:50:0f:19:3b:61:
93:d7:dd:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 02:40:11 2025 by rpki-client