Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/9GoXz5swEtP9x6UGdHPD_pYRFLU.roa
File: 9GoXz5swEtP9x6UGdHPD_pYRFLU.roa (raw, json)
Hash identifier: QP6FvTdz9osvLDZ14iQm7EPbOUKTMK6/lCjehbW0Mis=
Subject key identifier: F4:6A:17:CF:9B:30:12:D3:FD:C7:A5:06:74:73:C3:FE:96:11:14:B5
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196F3420D0E16C5493FF68B14CA52EFB615
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/9GoXz5swEtP9x6UGdHPD_pYRFLU.roa
Signing time: Wed 21 May 2025 14:31:54 +0000
ROA not before: Wed 21 May 2025 14:31:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20326
IP address blocks: 89.144.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 May 2025 08:46:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f3:42:0d:0e:16:c5:49:3f:f6:8b:14:ca:52:ef:b6:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 21 14:31:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f46a17cf9b3012d3fdc7a5067473c3fe961114b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:dd:7d:9b:81:80:6f:98:b4:a7:eb:a3:0c:fe:
7d:0b:9e:79:28:00:0d:68:c0:c5:7a:91:c0:d7:ce:
05:f6:47:ec:fa:f6:31:5d:b7:94:a4:bc:15:b8:c7:
6d:c9:93:1f:3d:b0:d9:05:bb:9f:b0:29:1e:59:df:
09:3d:fa:69:56:86:0d:80:65:10:9a:2d:59:9f:4d:
77:95:db:4a:f2:ad:f4:69:a7:9a:7a:1d:0a:b7:1c:
14:9e:35:2f:e4:c7:87:bc:91:fc:1c:8c:eb:e8:2f:
b0:ec:cf:92:8c:8f:ca:b7:e6:a3:93:15:66:96:1f:
00:ab:7f:37:b0:97:32:eb:3c:82:57:6c:89:9f:9c:
6d:97:fe:25:a1:75:e4:7b:36:25:1b:a8:b6:6b:9f:
64:33:2f:a9:5c:9a:0f:01:91:a9:02:d1:02:ac:21:
f7:78:1c:5b:80:be:2b:1f:6c:8f:de:b1:26:0e:e0:
3f:0e:8f:7a:c1:90:a1:76:05:e2:94:c0:c7:2f:17:
ef:ed:66:3f:ca:8d:a7:42:ef:bf:ad:60:16:cb:15:
6c:6e:14:ba:b0:46:63:2b:7f:c9:b9:73:5c:a6:27:
9d:ad:69:a7:d7:ce:f6:52:8c:f2:fd:5d:16:6c:2f:
ee:5b:b0:ea:37:f8:dc:d9:43:94:22:21:e1:ac:4e:
56:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:6A:17:CF:9B:30:12:D3:FD:C7:A5:06:74:73:C3:FE:96:11:14:B5
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/9GoXz5swEtP9x6UGdHPD_pYRFLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.144.47.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:d1:21:18:35:eb:6d:57:36:92:05:c7:79:67:53:0a:6a:bf:
45:fd:55:0b:fe:33:97:9d:e0:ce:7b:c8:4b:b9:8c:b5:19:ea:
e7:50:5e:eb:63:ef:48:d0:a4:8e:73:75:ec:d2:3d:17:75:c2:
a6:96:3f:41:52:45:52:d9:fb:26:ad:87:77:9c:58:fa:a8:6c:
b7:0f:3d:68:26:d8:b1:b3:be:1c:77:ae:2a:5d:bb:3e:f2:50:
af:2c:94:63:bc:00:44:34:5e:63:ca:81:9b:a8:95:2b:7d:6d:
fb:ee:3e:8c:9d:f8:52:e0:2e:5a:d8:3c:52:d4:36:9b:f8:e0:
8d:2c:76:06:f6:a3:23:fb:12:23:9c:d8:dc:a3:fd:4e:87:ed:
a8:29:54:d0:d2:9a:a3:a3:b9:30:08:ae:25:24:20:15:88:80:
80:98:3b:0a:5f:b3:d6:40:81:6e:1f:4c:1f:37:3a:5d:4d:4f:
be:c6:25:0c:cd:dc:c6:25:07:92:f2:5e:cb:d6:eb:f7:57:4d:
c8:20:83:c1:1d:a9:14:8d:bb:1b:3b:8b:c0:f5:54:75:50:c0:
e2:57:b9:a7:36:1a:9d:12:2e:64:c5:29:04:54:05:a0:ed:2b:
5f:23:70:a2:d9:60:c5:b7:13:bf:8c:33:71:3f:e2:8b:e6:35:
e5:aa:f1:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:32:53 2025 by rpki-client