Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/r05GoPSvLy4wWdirAluZ35epATM.roa
File: r05GoPSvLy4wWdirAluZ35epATM.roa (raw, json)
Hash identifier: SA4Fu2QRC2G710acSfMdlVvK+8qdIn16Z0V+9LOKuqU=
Subject key identifier: AF:4E:46:A0:F4:AF:2F:2E:30:59:D8:AB:02:5B:99:DF:97:A9:01:33
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01968C03F0ADD6D7324555647979B145C8CB
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/r05GoPSvLy4wWdirAluZ35epATM.roa
Signing time: Thu 01 May 2025 13:23:10 +0000
ROA not before: Thu 01 May 2025 13:23:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214971
IP address blocks: 94.103.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 May 2025 13:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8c:03:f0:ad:d6:d7:32:45:55:64:79:79:b1:45:c8:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 1 13:23:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af4e46a0f4af2f2e3059d8ab025b99df97a90133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a3:ab:f7:49:38:8f:36:02:ed:bc:2b:fa:95:
26:99:07:cb:a8:bf:a7:cc:f6:5d:d5:6d:a9:66:6a:
45:5b:c5:0d:53:07:7d:e0:14:12:33:56:dd:1a:9f:
a1:28:c7:8f:e4:82:19:2b:7c:6e:60:d7:d6:3c:8c:
d4:9c:85:f0:af:44:de:cf:f2:a5:98:0e:06:b2:db:
66:57:ff:ed:3b:1e:72:4c:f7:8d:5b:a6:20:4e:e9:
44:a8:98:05:00:4c:49:41:53:29:2d:d0:b9:99:92:
5c:bf:14:d6:19:4c:53:4d:c1:e8:5d:cb:45:5c:a8:
16:12:dc:aa:59:4a:53:a8:87:a6:e3:94:a5:d9:e4:
f6:df:4a:91:02:ce:64:36:04:fc:9c:bd:b3:b7:9f:
62:fe:fe:1c:ec:81:27:25:2d:11:21:71:8b:cc:20:
72:07:2b:84:0d:02:47:e1:cc:9f:b3:d0:f0:f3:6c:
86:da:26:52:43:59:af:c7:82:7f:07:49:95:8c:bc:
81:8c:5c:b1:d5:ba:32:ca:d4:5e:c4:8e:e3:4a:b4:
d2:59:b0:5a:c2:e5:2d:9c:52:3a:a7:a1:dc:ca:7f:
71:54:7f:7e:60:c8:bc:25:5e:0d:6c:e0:a6:22:ac:
4e:90:1a:6f:89:49:70:a1:26:74:fd:01:12:3e:cb:
b8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4E:46:A0:F4:AF:2F:2E:30:59:D8:AB:02:5B:99:DF:97:A9:01:33
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/r05GoPSvLy4wWdirAluZ35epATM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.164.0/24
Signature Algorithm: sha256WithRSAEncryption
df:8a:7a:f4:bc:73:c5:17:8a:96:81:75:2b:ae:fb:fa:2c:25:
b3:b6:59:bb:36:ea:89:ea:d4:6a:d1:81:e3:af:2c:72:06:ec:
97:9c:53:00:91:3b:60:44:b1:74:02:71:db:80:e6:9d:0c:bf:
38:53:28:fe:ae:63:90:b0:2e:af:58:ee:a0:46:70:27:40:b5:
99:39:48:af:d6:77:5d:43:fa:30:9a:08:ee:de:b3:2b:73:8f:
9d:fb:c6:39:89:c9:7d:ef:f7:45:4c:c6:a2:48:99:be:04:ec:
3b:3b:83:83:ac:07:a1:8f:a4:ea:8d:06:87:a5:1f:73:45:79:
9b:6f:15:30:ac:be:ed:4b:75:6b:f8:66:de:fc:3c:15:af:b1:
7a:67:ea:d9:1e:d6:e2:4b:1e:43:8e:e2:3e:7e:66:22:ef:a9:
ac:63:63:78:3d:3f:15:2f:20:fc:84:d3:23:62:ed:1f:f3:e2:
af:47:bd:38:c7:48:98:50:81:47:af:51:2e:e4:30:fe:ab:d6:
d5:ff:ce:a2:a1:18:dd:e5:ab:13:b5:56:7c:f7:4b:48:08:10:
1e:33:6a:87:09:4b:62:dd:a4:67:de:41:3a:c3:29:38:d0:6f:
ed:53:ea:96:01:c5:06:f9:06:e2:12:fb:f2:57:0c:97:76:1c:
2e:77:7d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 06:16:14 2025 by rpki-client