Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/4d6ffd-1fac-497f-810c-2b34b8433bb5/1/E4imZNh45fZrrkRaVo210OxI6ys.roa
File: E4imZNh45fZrrkRaVo210OxI6ys.roa (raw, json)
Hash identifier: X5AvX7zdvlzfCcvKfYl1VMIdB4ufvL6SacA+//81cig=
Subject key identifier: 13:88:A6:64:D8:78:E5:F6:6B:AE:44:5A:56:8D:B5:D0:EC:48:EB:2B
Certificate issuer: /CN=1f1e2eaaef0701595ac2754d0121217e7b91d739
Certificate serial: 01957FE3557DAB417E4C908EC195099A56AA
Authority key identifier: 1F:1E:2E:AA:EF:07:01:59:5A:C2:75:4D:01:21:21:7E:7B:91:D7:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hx4uqu8HAVlawnVNASEhfnuR1zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/4d6ffd-1fac-497f-810c-2b34b8433bb5/1/E4imZNh45fZrrkRaVo210OxI6ys.roa
Signing time: Mon 10 Mar 2025 11:49:19 +0000
ROA not before: Mon 10 Mar 2025 11:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 89.18.52.0/22 maxlen: 24
89.18.56.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 11 Mar 2025 07:27:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:7f:e3:55:7d:ab:41:7e:4c:90:8e:c1:95:09:9a:56:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f1e2eaaef0701595ac2754d0121217e7b91d739
Validity
Not Before: Mar 10 11:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1388a664d878e5f66bae445a568db5d0ec48eb2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5a:d5:29:b7:8d:b8:88:4f:71:bd:a3:32:f6:
ea:11:c7:a2:c8:1b:06:a8:7b:c4:dc:98:f6:19:06:
ab:c6:7c:71:5c:55:eb:27:3c:cb:99:fe:31:dd:32:
23:fc:0b:6d:b5:19:2d:51:b0:e5:ee:7b:83:3a:ea:
a4:31:02:9c:5c:82:12:46:b3:02:9e:0b:70:50:84:
b1:3b:95:d7:00:5e:49:21:b3:67:de:43:27:df:6c:
52:17:2f:91:eb:ac:57:7f:d0:2c:c3:b6:b5:72:ce:
a2:3e:18:02:6b:c3:9e:52:cf:b2:b7:36:a8:5d:e3:
03:92:d4:cb:50:c6:d7:dd:61:40:a3:c7:b8:65:fd:
19:7d:51:b5:e1:2d:d2:60:97:f8:27:1e:49:87:1c:
59:de:b7:9e:e6:41:db:3f:8e:64:76:6a:a3:0c:05:
98:23:02:01:68:8a:00:4d:8d:e3:a9:ee:6f:a4:15:
cc:71:62:70:19:2d:1b:bd:d2:9d:f1:b9:c7:1c:68:
42:d8:81:54:0d:77:6c:03:51:95:3b:8e:ed:53:71:
0b:fd:5b:d0:77:e2:77:45:99:b2:85:b9:bb:85:bc:
36:ac:8a:fd:d9:cb:f0:f8:17:99:fe:93:e5:9d:65:
d9:08:cd:2a:b4:98:81:4e:c3:af:28:56:47:f4:97:
8a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:88:A6:64:D8:78:E5:F6:6B:AE:44:5A:56:8D:B5:D0:EC:48:EB:2B
X509v3 Authority Key Identifier:
keyid:1F:1E:2E:AA:EF:07:01:59:5A:C2:75:4D:01:21:21:7E:7B:91:D7:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hx4uqu8HAVlawnVNASEhfnuR1zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/4d6ffd-1fac-497f-810c-2b34b8433bb5/1/E4imZNh45fZrrkRaVo210OxI6ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/4d6ffd-1fac-497f-810c-2b34b8433bb5/1/Hx4uqu8HAVlawnVNASEhfnuR1zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.18.52.0-89.18.59.255
Signature Algorithm: sha256WithRSAEncryption
5a:19:c9:a6:0c:f1:e4:ea:f0:18:7c:c8:8e:f8:b4:d8:2a:a2:
03:42:9d:2a:58:77:3e:44:68:ea:b1:6a:b5:c0:5a:c2:90:c0:
35:3c:97:b8:34:4a:85:eb:32:86:61:a8:73:00:0c:f1:f0:68:
7d:6d:c1:70:ac:f9:6a:2e:9a:30:52:60:08:6d:75:1d:ca:d8:
6b:93:fa:8c:af:ad:43:62:67:09:d1:b0:35:54:87:8c:ab:a1:
ed:ff:b3:1d:b6:29:aa:b9:96:a4:44:93:98:a6:25:d4:f3:a4:
86:a6:28:2f:8a:28:2a:9a:12:c1:80:0d:3a:69:3a:37:0b:b8:
28:27:cc:3a:b8:41:31:89:b2:6b:1c:22:f3:b6:ae:1b:d5:33:
a6:c7:09:7c:07:8c:67:01:24:95:a4:88:5e:d4:2d:ee:f9:f7:
bf:0c:cc:fb:c4:c5:f8:fe:b0:8b:9d:27:2c:92:d6:19:b5:b1:
ff:b5:28:9a:a8:c1:7a:52:d8:90:58:c2:a3:e5:4b:a9:a1:80:
6a:32:bf:13:bf:4d:07:af:b6:54:5b:98:f5:ab:dc:6d:4b:74:
20:8c:67:46:c9:5d:7a:ea:cf:f3:05:1a:db:c3:00:4f:e1:bb:
94:b2:3d:89:c1:ba:5f:6f:cf:a4:6a:c0:bc:e6:9f:d9:89:d1:
d4:cd:23:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 02:05:00 2025 by rpki-client