Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/0ac44d-b3be-4277-80f8-58cf89888e2a/1/XhoHlmLgzhxJmMW6Q1EPLT9nFAI.roa
File: XhoHlmLgzhxJmMW6Q1EPLT9nFAI.roa (raw, json)
Hash identifier: qrAgMxb8yB9WgwzB2ofK1VkmuRd+bAi310MrSrVg6AQ=
Subject key identifier: 5E:1A:07:96:62:E0:CE:1C:49:98:C5:BA:43:51:0F:2D:3F:67:14:02
Certificate issuer: /CN=e56076f27e13d1800e77d16e4b60b23b6f58c820
Certificate serial: 0196ABD2A35CEAC36BA3BB8F71449203A12C
Authority key identifier: E5:60:76:F2:7E:13:D1:80:0E:77:D1:6E:4B:60:B2:3B:6F:58:C8:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5WB28n4T0YAOd9FuS2CyO29YyCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/0ac44d-b3be-4277-80f8-58cf89888e2a/1/XhoHlmLgzhxJmMW6Q1EPLT9nFAI.roa
Signing time: Wed 07 May 2025 17:37:10 +0000
ROA not before: Wed 07 May 2025 17:37:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29049
IP address blocks: 185.64.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 May 2025 08:14:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ab:d2:a3:5c:ea:c3:6b:a3:bb:8f:71:44:92:03:a1:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e56076f27e13d1800e77d16e4b60b23b6f58c820
Validity
Not Before: May 7 17:37:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5e1a079662e0ce1c4998c5ba43510f2d3f671402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f6:7a:bd:b1:b2:9b:b3:da:87:a6:a4:d9:59:
ae:41:4d:53:3f:03:0c:07:00:2b:f5:bf:c4:52:a3:
b2:a7:ac:25:62:6c:53:56:cb:c2:69:14:0e:ec:c6:
6d:16:e1:52:6b:d2:26:4b:4d:8e:32:24:69:a2:e6:
83:c2:d5:32:37:1e:f5:ae:61:df:d1:67:cd:e9:01:
61:b9:04:22:5b:f4:49:7f:09:4d:da:02:e1:5c:15:
22:b0:f2:cf:1c:30:c0:33:84:ce:70:34:58:0c:da:
eb:a4:a1:42:df:3d:b7:6a:98:bf:38:e9:82:40:b5:
e7:6a:68:31:f4:9f:d7:0e:f1:73:21:0b:ed:2e:4d:
24:90:a2:59:34:ab:36:0e:08:70:24:67:db:e4:18:
c9:d3:53:6c:a0:bf:28:73:2e:af:de:df:bd:ac:70:
19:ad:6a:16:0a:1f:77:eb:ae:d2:76:4c:43:ab:04:
f0:2f:82:4e:98:cf:4d:9f:79:6d:d8:f7:ed:61:e3:
7e:8a:9e:f9:4f:af:40:4a:83:bc:28:5b:33:f7:4b:
9b:0a:10:b9:4d:28:3d:df:b6:c9:60:1f:6e:d0:d9:
bd:cf:d0:98:03:fe:58:ec:c1:df:1a:73:7c:e4:40:
10:54:bc:84:00:31:58:a4:6a:0a:9b:c1:80:04:d0:
8d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1A:07:96:62:E0:CE:1C:49:98:C5:BA:43:51:0F:2D:3F:67:14:02
X509v3 Authority Key Identifier:
keyid:E5:60:76:F2:7E:13:D1:80:0E:77:D1:6E:4B:60:B2:3B:6F:58:C8:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5WB28n4T0YAOd9FuS2CyO29YyCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0ac44d-b3be-4277-80f8-58cf89888e2a/1/XhoHlmLgzhxJmMW6Q1EPLT9nFAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/0ac44d-b3be-4277-80f8-58cf89888e2a/1/5WB28n4T0YAOd9FuS2CyO29YyCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.78.0/24
Signature Algorithm: sha256WithRSAEncryption
59:72:c4:c7:92:c7:54:fb:78:3a:55:f0:35:c1:79:3a:c0:2c:
73:cf:78:67:81:0e:89:96:d3:ff:fd:55:ee:00:04:53:f2:ca:
35:c9:e2:1d:02:6c:c4:4e:b9:2c:bf:cb:31:47:c0:87:e9:29:
0e:27:61:84:d9:17:f3:76:de:6b:14:f9:64:73:ce:01:76:c8:
3b:cc:21:37:97:12:36:34:48:de:df:cd:be:63:5a:5c:36:a7:
43:1a:97:9d:3e:58:6a:43:5f:ae:77:9e:76:f8:ea:9c:86:12:
c5:50:e5:1e:82:48:ac:0a:16:0b:9d:1e:6a:5a:65:8c:48:e0:
56:a8:19:c7:21:b8:f0:2e:82:bd:34:1e:4c:75:50:58:da:cd:
0a:36:f4:1f:74:d8:11:a7:42:39:61:af:bf:94:d3:7f:7b:e5:
41:5c:75:6a:0a:6d:5f:79:c4:95:a9:6d:ac:f7:f7:03:c0:c1:
c2:3d:89:12:b3:69:6d:d4:59:93:b4:bb:ed:34:e0:9b:c9:c2:
8a:54:3b:f4:e7:08:d5:ab:2d:c9:e4:e8:e8:a1:51:e6:f3:20:
0c:3d:b0:57:fc:b6:c9:6c:6c:08:65:e6:51:b4:95:cf:3d:de:
d4:16:d6:dc:73:fd:0b:83:aa:0d:08:e1:ae:c5:b0:d3:ed:30:
d3:9f:13:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:52:19 2025 by rpki-client