Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/5oX983X3LD2X23idiZ_Or5lKbek.roa
File: 5oX983X3LD2X23idiZ_Or5lKbek.roa (raw, json)
Hash identifier: HCjSxs8XygqwKF/WHBUhG5IQDgsYtCodAgQZbQWkiRw=
Subject key identifier: E6:85:FD:F3:75:F7:2C:3D:97:DB:78:9D:89:9F:CE:AF:99:4A:6D:E9
Certificate issuer: /CN=8491bbeacf5b0c589e99b93f84e1c5e47d9af604
Certificate serial: 018CC50011A3AA6E782AEC43399F9D59E88E
Authority key identifier: 84:91:BB:EA:CF:5B:0C:58:9E:99:B9:3F:84:E1:C5:E4:7D:9A:F6:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJG76s9bDFiembk_hOHF5H2a9gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/5oX983X3LD2X23idiZ_Or5lKbek.roa
Signing time: Mon 01 Jan 2024 12:29:25 +0000
ROA not before: Mon 01 Jan 2024 12:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35186
IP address blocks: 195.80.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:49:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:11:a3:aa:6e:78:2a:ec:43:39:9f:9d:59:e8:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8491bbeacf5b0c589e99b93f84e1c5e47d9af604
Validity
Not Before: Jan 1 12:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e685fdf375f72c3d97db789d899fceaf994a6de9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7c:a9:b7:6f:0b:83:a1:8c:be:dc:88:7c:dc:
ef:a1:f2:95:db:33:e8:32:26:27:0d:b8:da:e2:92:
0e:c3:45:e3:a7:e3:66:c6:18:02:25:b7:e3:da:91:
ca:26:da:5d:61:c7:56:a9:1e:b7:e3:8d:ed:02:b9:
08:04:cf:6e:1d:35:6d:e2:7c:b3:df:61:3a:c4:c4:
30:24:03:b0:da:e0:9a:a4:97:92:a9:f6:2d:01:96:
67:c0:a9:e1:8a:38:8f:2b:60:f1:a6:e2:af:cc:f9:
c7:3a:a5:67:6b:2d:ba:0e:89:44:95:f5:17:3a:9f:
8f:a8:4e:a4:c2:82:1b:27:45:a4:88:d6:d1:9a:e6:
6d:ed:d8:f3:ea:3d:21:00:a2:61:f9:0b:ea:b8:08:
ad:41:c5:45:99:0c:32:5d:86:12:72:f4:b8:a6:31:
33:63:cc:0f:0b:07:30:6b:0f:7d:22:cb:01:d5:87:
51:dd:0a:31:09:75:a6:3b:12:33:5f:e1:34:34:55:
4b:b1:27:ac:84:1e:4f:8b:26:04:64:9b:1f:48:d6:
24:0f:80:41:c2:71:f5:97:42:e5:96:61:a1:84:04:
f1:36:a1:c4:bb:c5:d3:d1:94:3d:66:b7:d5:95:2d:
b5:32:de:87:b8:e8:ab:ae:38:77:fe:ef:7a:0c:d0:
4b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:85:FD:F3:75:F7:2C:3D:97:DB:78:9D:89:9F:CE:AF:99:4A:6D:E9
X509v3 Authority Key Identifier:
keyid:84:91:BB:EA:CF:5B:0C:58:9E:99:B9:3F:84:E1:C5:E4:7D:9A:F6:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJG76s9bDFiembk_hOHF5H2a9gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/5oX983X3LD2X23idiZ_Or5lKbek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/adf984-7959-4bbd-8a8e-2cbecddd0d64/1/hJG76s9bDFiembk_hOHF5H2a9gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.80.225.0/24
Signature Algorithm: sha256WithRSAEncryption
94:7a:42:7d:15:9f:1c:b5:77:06:30:88:4d:1b:9a:04:27:e7:
01:7a:9c:e7:1e:37:b9:b1:e1:a8:77:80:11:9b:8a:c6:1e:de:
41:39:d4:96:5d:1c:c3:57:21:8c:85:c0:33:22:c0:d5:7b:75:
f8:61:75:ce:ec:ee:b0:75:3c:34:ed:6d:3d:ad:15:77:11:37:
3a:57:da:85:96:68:55:c5:83:ed:2a:85:f1:be:46:c2:a8:44:
8a:70:d9:b0:b9:f7:75:19:a0:0d:8a:fc:d7:bc:d4:d5:0a:e9:
f9:96:82:67:f7:91:00:33:bd:41:f0:dd:81:53:01:58:8d:4a:
24:24:c0:fc:51:18:cb:4c:9f:75:21:d3:f1:e5:f1:05:a0:b0:
a8:31:79:e6:21:33:5f:8d:34:78:70:1e:e8:47:29:39:60:80:
71:ff:3c:55:9e:7d:30:17:77:05:ba:3d:b9:6d:4a:8e:95:54:
67:76:b3:ce:97:6b:b1:a5:0a:a1:be:1c:a6:a9:23:db:b2:c0:
82:a7:95:5a:3b:7d:80:17:85:32:f0:a2:de:4a:54:cf:28:0e:
2b:12:28:cc:ea:9a:5a:db:fd:ef:8c:50:75:93:54:e3:71:15:
16:63:17:c1:cd:d5:c4:36:dd:98:b7:15:bb:cd:2b:fa:22:13:
12:50:2e:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:36:35 2025 by rpki-client