Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jn2PFbvKjzFt-Gwz39mgXi5vUU0.roa
File: jn2PFbvKjzFt-Gwz39mgXi5vUU0.roa (raw, json)
Hash identifier: FPp1Pz6xpve5pZZASIn7n+mHo9VZDcA6qzOP5t/Ana4=
Subject key identifier: 8E:7D:8F:15:BB:CA:8F:31:6D:F8:6C:33:DF:D9:A0:5E:2E:6F:51:4D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196175F70722851F8980D7E052A38FCFDDE
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jn2PFbvKjzFt-Gwz39mgXi5vUU0.roa
Signing time: Tue 08 Apr 2025 21:47:32 +0000
ROA not before: Tue 08 Apr 2025 21:47:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395839
IP address blocks: 178.18.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Apr 2025 22:17:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:17:5f:70:72:28:51:f8:98:0d:7e:05:2a:38:fc:fd:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 8 21:47:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8e7d8f15bbca8f316df86c33dfd9a05e2e6f514d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:89:c6:f6:bc:8a:e8:c5:a5:33:ea:04:f7:57:
c6:b1:70:cb:80:a1:0a:78:2f:f0:48:73:d2:b8:69:
5c:53:af:a8:a0:39:cd:6b:11:e4:66:73:d1:0b:af:
35:0f:3e:5c:14:83:89:78:90:c0:e9:cf:85:e8:6a:
82:fb:8c:fe:c4:29:0e:63:fe:fa:a0:dc:75:78:45:
06:d9:7a:94:0a:8b:a5:70:d1:3d:44:6b:21:8c:26:
b9:67:bd:b7:61:31:07:26:00:6e:98:77:04:89:6a:
c6:96:18:2d:31:32:1b:20:90:3f:80:d2:5f:4b:d0:
d6:f4:8e:75:6c:d7:d2:2e:13:82:93:e7:21:a7:33:
45:95:2c:b3:e5:fe:fa:f4:09:30:82:e4:b9:62:90:
3c:f3:85:1d:15:34:f5:bc:c9:58:e1:40:4d:eb:10:
07:d3:00:eb:2e:aa:9c:47:f2:2c:01:91:1d:1c:1f:
fb:6d:b9:c5:fc:c2:ad:1c:47:53:6c:53:12:28:a5:
ea:00:61:05:97:d5:c4:b9:b9:4a:41:66:0f:ce:15:
37:3d:9f:bb:3a:88:42:a6:c7:4f:23:25:8e:45:76:
9e:41:59:7f:9c:c8:72:a8:39:de:58:83:fd:90:8f:
1a:31:b0:9e:e2:63:31:d6:95:c2:79:da:3d:d9:b9:
e4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:7D:8F:15:BB:CA:8F:31:6D:F8:6C:33:DF:D9:A0:5E:2E:6F:51:4D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jn2PFbvKjzFt-Gwz39mgXi5vUU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.147.0/24
Signature Algorithm: sha256WithRSAEncryption
58:29:12:27:f4:de:b0:fb:8c:51:0a:94:06:a7:e4:1a:e7:c2:
49:df:c3:85:d2:de:46:28:e5:c9:09:c6:89:39:75:41:a9:2e:
96:cc:07:fa:16:f0:c0:8e:fc:b0:17:9b:97:9b:e1:c2:e4:1d:
82:41:f3:95:fd:7f:23:19:23:ad:47:35:bc:83:cc:e5:4c:df:
db:b4:0a:82:eb:2c:a6:cd:05:f3:87:c0:aa:c5:ae:3d:94:11:
e9:f9:ca:fe:19:77:bc:23:38:de:87:d6:5c:13:4c:1b:41:ad:
13:d3:d7:90:ef:8e:65:c7:5a:cc:d0:d0:f4:8d:0f:41:ce:54:
03:4d:7e:b3:f4:01:af:ce:e8:42:19:b4:26:4f:6d:d2:08:47:
6e:3e:06:f3:05:77:3a:b3:86:3b:9b:22:a2:99:b9:9c:8f:ae:
1c:d7:32:18:45:ef:41:96:76:0a:82:ad:a8:8d:c7:f1:d3:f8:
d3:a9:8f:4c:0f:12:30:45:ce:dd:92:22:b5:26:91:38:01:4d:
48:2e:5c:bf:24:30:03:53:e2:85:fa:0a:0d:cd:8c:13:a2:63:
b9:58:66:83:a8:b3:95:83:2f:3b:11:ab:bb:0e:f0:d0:2c:9f:
c6:4b:a3:8b:3b:93:f7:47:15:3b:b2:35:5d:a1:91:59:8f:f5:
ab:2d:81:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 22:22:01 2025 by rpki-client