Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/7syh1gdLhu33x7PYP1Tv2JduVLE.roa
File: 7syh1gdLhu33x7PYP1Tv2JduVLE.roa (raw, json)
Hash identifier: Zi63YxQOz4UDJUVOV7EGD0fKDG01HD3bmU2DOfpBxvk=
Subject key identifier: EE:CC:A1:D6:07:4B:86:ED:F7:C7:B3:D8:3F:54:EF:D8:97:6E:54:B1
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01964206999CF0AEA780DAA3AF64BDF63563
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/7syh1gdLhu33x7PYP1Tv2JduVLE.roa
Signing time: Thu 17 Apr 2025 04:34:10 +0000
ROA not before: Thu 17 Apr 2025 04:34:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211301
IP address blocks: 5.175.249.0/24 maxlen: 24
77.90.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Apr 2025 04:10:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:42:06:99:9c:f0:ae:a7:80:da:a3:af:64:bd:f6:35:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 17 04:34:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eecca1d6074b86edf7c7b3d83f54efd8976e54b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6b:5d:f1:69:46:c8:d6:33:95:c9:df:fd:4b:
80:ba:09:88:51:96:cd:c8:c0:4a:47:f0:94:8b:83:
4a:10:32:e5:48:99:23:14:f3:ef:e7:82:91:78:12:
7a:d5:dc:d6:f9:71:85:6d:65:1d:8f:0c:67:41:13:
e1:c4:c9:56:3d:d4:72:9c:76:38:b6:d7:d3:8a:f7:
5a:d0:12:36:9a:39:f6:07:41:58:1e:75:8e:10:a2:
ab:ee:73:a2:8d:88:f1:a3:d4:32:c8:22:42:2c:b5:
94:b1:65:f8:0e:55:e4:89:97:35:ff:bb:12:a8:5a:
04:65:53:85:ce:19:b1:68:bf:9f:ec:1c:da:ae:84:
bb:19:9d:e7:af:f8:6e:00:6c:c0:5d:9d:94:08:87:
e3:ad:52:78:e1:be:52:1a:05:8c:7b:0e:b8:e2:1e:
80:05:b7:7c:65:5b:ac:9e:ab:a4:5e:40:4e:2e:eb:
4e:2d:50:9b:7a:18:0c:95:6c:7c:04:87:7f:ec:0e:
5b:a1:3a:21:8c:7e:69:f0:ff:8e:09:5d:dc:17:56:
b4:d1:e3:75:40:18:87:19:27:8e:f0:81:45:e7:b5:
3c:9d:5a:14:9a:4d:e1:38:75:11:5a:d5:01:24:a7:
17:ea:45:85:ac:ce:54:08:a4:91:7a:25:86:e7:ab:
2f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:CC:A1:D6:07:4B:86:ED:F7:C7:B3:D8:3F:54:EF:D8:97:6E:54:B1
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/7syh1gdLhu33x7PYP1Tv2JduVLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.249.0/24
77.90.57.0/24
Signature Algorithm: sha256WithRSAEncryption
12:ed:76:93:2d:ea:37:d3:1d:86:d3:94:41:bc:80:2a:d3:2f:
ed:b4:b5:a5:90:d7:20:83:4e:58:d7:9b:f8:7a:c2:ad:fa:42:
f4:59:18:f0:d8:64:90:5f:9f:98:03:89:99:cb:76:db:a5:37:
2a:27:19:24:f4:95:de:48:a8:0a:b3:34:bb:fe:df:41:71:8b:
15:5f:bb:e2:55:57:2d:2e:f2:9e:37:14:d9:76:1e:f1:c5:05:
16:66:17:d7:1a:ed:65:64:18:d6:55:12:4c:89:32:32:2a:50:
3f:c1:83:04:e1:02:2a:dc:a5:4e:af:b6:84:c5:b1:a7:76:5b:
b1:11:27:3f:1c:62:51:c2:5c:f8:97:88:ad:db:f5:89:fa:21:
56:1b:89:ca:97:9a:86:f6:42:63:fc:21:ee:c3:49:48:35:27:
f7:8d:75:48:63:1a:3f:11:80:38:b3:a7:e5:11:87:bc:d4:7d:
6d:ab:49:43:19:64:78:db:91:22:d9:79:fe:3f:a1:ec:83:36:
b7:9b:48:ee:cc:cb:61:94:12:93:53:20:c8:cb:b9:88:55:34:
f1:07:4f:64:3f:f9:ab:00:3e:bb:55:a0:71:0d:15:91:0e:88:
77:6c:91:7f:a1:a9:48:cf:b8:80:c1:3d:32:08:1e:62:cb:e1:
70:dc:cc:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 09:46:40 2025 by rpki-client