Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/gso80dWZriFgbqxGyrfhyamRJi0.roa
File: gso80dWZriFgbqxGyrfhyamRJi0.roa (raw, json)
Hash identifier: 0NvH3cCEzwXrsiQYY0+bDQi4JQo5miPUda3BP8iD+fM=
Subject key identifier: 82:CA:3C:D1:D5:99:AE:21:60:6E:AC:46:CA:B7:E1:C9:A9:91:26:2D
Certificate issuer: /CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Certificate serial: 0197311E4962CC0B3501DE9AE521037BB0F7
Authority key identifier: 42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/gso80dWZriFgbqxGyrfhyamRJi0.roa
Signing time: Mon 02 Jun 2025 14:49:17 +0000
ROA not before: Mon 02 Jun 2025 14:49:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214914
IP address blocks: 83.174.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jun 2025 15:12:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:31:1e:49:62:cc:0b:35:01:de:9a:e5:21:03:7b:b0:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421bae989898d9402424aadafbb47c3a6d4c25b3
Validity
Not Before: Jun 2 14:49:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=82ca3cd1d599ae21606eac46cab7e1c9a991262d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d5:5f:2d:d6:0b:fd:5e:d5:92:32:a0:c1:f4:
65:f0:ef:f3:68:bc:83:93:9c:94:f8:d0:ab:b9:03:
06:99:50:9a:de:62:e9:e1:a0:9e:c8:9b:e5:12:4f:
9e:68:54:f6:6e:c3:cc:8c:7e:24:89:df:09:27:b3:
9c:86:d8:27:5a:83:df:c5:a4:3f:fd:9a:ce:11:ce:
c6:e7:21:b3:12:bd:6f:f5:23:e3:61:f5:36:a7:60:
89:e9:05:30:c9:e2:25:41:d0:b8:4b:f3:00:dc:0d:
bb:f7:fd:9a:8b:47:62:1f:34:79:e3:bf:b7:ca:86:
13:ac:8c:4b:6b:ca:08:8e:65:ae:27:39:53:bc:39:
05:22:dc:a9:63:74:ac:6a:79:ae:ff:66:28:9a:5a:
ae:87:41:e8:32:fd:10:14:b7:b2:5d:f1:ef:f3:b1:
a3:d8:1b:cd:81:95:bc:2d:fd:d5:76:c0:eb:a6:9a:
1f:38:bc:00:ac:31:39:64:55:fb:d1:05:19:a8:70:
69:bc:32:f3:e6:c2:9d:24:e6:cc:46:21:14:d1:01:
fa:60:a0:e3:f9:3f:ff:5d:4e:ad:37:97:c3:2f:b8:
ff:cc:ef:c6:b2:0a:90:e5:4f:89:b1:f0:6b:52:23:
44:ce:a8:d4:4c:bc:d9:3d:83:5b:08:2b:96:4d:a4:
fd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CA:3C:D1:D5:99:AE:21:60:6E:AC:46:CA:B7:E1:C9:A9:91:26:2D
X509v3 Authority Key Identifier:
keyid:42:1B:AE:98:98:98:D9:40:24:24:AA:DA:FB:B4:7C:3A:6D:4C:25:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QhuumJiY2UAkJKra-7R8Om1MJbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/gso80dWZriFgbqxGyrfhyamRJi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/b34cb0-2f71-4f59-bd5e-67efcb3d86fe/1/QhuumJiY2UAkJKra-7R8Om1MJbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.174.150.0/24
Signature Algorithm: sha256WithRSAEncryption
64:7d:ee:f3:d1:0a:0f:17:db:59:85:cc:0e:f9:d6:8e:e6:d6:
29:15:65:dd:99:65:67:d7:dd:67:b6:47:63:26:a7:dc:99:49:
50:4a:57:da:90:93:f6:6f:e0:e8:f7:68:34:56:f0:d0:97:e6:
f2:2d:8e:c9:6e:da:56:94:b6:72:d7:b9:8e:9d:66:c1:34:ba:
a4:18:ea:6d:28:67:08:ce:59:47:42:87:f1:75:39:0c:47:af:
47:9a:cd:7c:a9:0b:15:21:f7:b9:30:f0:33:23:4c:f5:7e:d9:
57:4a:0a:29:36:fe:a4:ae:0d:1f:4b:d1:73:b2:10:30:6a:08:
42:b3:01:fc:8d:e2:d1:83:47:9c:c8:42:c5:67:2f:36:27:46:
ca:df:c8:f8:62:f5:62:ce:17:c6:c3:25:38:5a:b1:de:39:6f:
17:b9:8e:4b:54:73:7e:90:1d:f5:13:47:50:a8:8e:1f:d3:30:
93:53:f7:4f:76:9c:88:17:fc:51:35:84:ea:30:3c:c7:8c:f2:
e7:bb:a9:69:4b:c5:2a:37:c8:fa:14:3c:7e:83:63:c3:2c:11:
a7:89:58:8c:c5:23:1e:a6:68:64:02:ba:99:72:20:98:23:17:
ae:c6:fa:af:57:5b:e8:f5:ad:e2:b5:85:df:20:65:4c:a7:a4:
7d:f4:6f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 02:48:08 2025 by rpki-client