Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/sLbBpG_y2gdNawvs0xaxcCCrsfM.roa
File: sLbBpG_y2gdNawvs0xaxcCCrsfM.roa (raw, json)
Hash identifier: r1BH54slllEPPF6OqiSv4lahzcCv0TkVfsNCiLoPKzs=
Subject key identifier: B0:B6:C1:A4:6F:F2:DA:07:4D:6B:0B:EC:D3:16:B1:70:20:AB:B1:F3
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01961AA438FEBEC53B580F242E9EB476C5FB
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/sLbBpG_y2gdNawvs0xaxcCCrsfM.roa
Signing time: Wed 09 Apr 2025 13:01:32 +0000
ROA not before: Wed 09 Apr 2025 13:01:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211780
IP address blocks: 5.231.26.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Apr 2025 04:12:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1a:a4:38:fe:be:c5:3b:58:0f:24:2e:9e:b4:76:c5:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 9 13:01:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b0b6c1a46ff2da074d6b0becd316b17020abb1f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:35:ee:f3:80:a8:26:03:c1:20:32:34:0f:85:
b5:47:cd:27:c8:4b:5d:60:3c:08:06:de:b1:cd:5f:
8f:22:2f:21:65:5d:35:d1:85:ad:b7:68:6a:d3:a7:
7b:2c:7d:1a:65:80:2b:4f:a7:c6:41:cc:8c:ab:4d:
ec:eb:8b:e7:0f:8e:2b:39:45:f5:55:23:4c:39:dc:
1f:01:75:e2:5c:3b:2e:5b:af:ad:3d:04:91:92:8d:
ea:4b:72:d6:c4:6c:a7:cd:fd:a2:5b:8a:d4:95:bf:
87:a5:1a:a7:ab:06:47:15:24:99:3b:91:f8:4f:ab:
cd:70:47:8d:0e:34:9c:74:b3:8a:2c:f5:ab:34:3b:
ec:4c:8b:45:d9:87:23:7e:f6:6f:66:c2:c1:3e:93:
8d:31:c9:12:91:2a:c6:55:b2:d3:1c:ba:a4:91:cd:
a0:8c:4c:6b:0f:f9:26:cc:03:9a:a7:db:15:a3:77:
a5:93:33:57:b3:c6:05:9a:13:af:4d:2f:75:1a:d9:
a0:1d:51:4b:68:b1:50:ff:00:a7:34:1b:e1:37:30:
bb:55:70:83:d5:4d:df:6c:2d:bb:67:3d:33:d0:e8:
36:e2:29:1a:fd:38:04:d4:b2:cc:94:fc:f2:fe:61:
15:e5:d0:7b:a9:93:d1:a9:d1:f1:b9:df:53:59:af:
30:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B6:C1:A4:6F:F2:DA:07:4D:6B:0B:EC:D3:16:B1:70:20:AB:B1:F3
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/sLbBpG_y2gdNawvs0xaxcCCrsfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.26.0/24
85.93.1.0/24
Signature Algorithm: sha256WithRSAEncryption
e4:9e:fe:83:2d:b9:59:64:81:e3:b9:fc:1b:95:80:18:57:21:
0b:7b:b8:46:b6:e2:dd:1c:12:ad:57:db:84:37:ec:1d:46:b0:
75:14:2b:c2:8a:9d:ba:bd:b7:2b:d6:c9:0d:51:69:74:33:92:
1a:68:0f:ee:15:cf:81:3e:a7:3e:9b:9b:f5:08:ec:8f:96:c3:
9e:4e:1b:f1:df:89:ea:9f:9c:f5:6c:9e:0e:af:d9:75:a0:33:
db:a7:dc:f8:9c:01:50:3a:a5:28:ab:53:7a:e6:ae:f2:47:26:
e0:2d:ef:68:4d:75:05:ac:87:1a:78:b4:80:de:11:ac:d2:c4:
94:ab:79:d2:ac:d1:16:54:54:f4:c7:2c:9d:0f:4c:89:6b:83:
49:06:bc:24:ac:b7:eb:33:69:29:bd:3c:93:39:af:2d:66:fa:
77:b8:be:fb:14:6e:b3:68:37:8c:b1:c3:45:74:d3:b9:10:c2:
1a:d7:14:48:b8:14:55:cc:ff:c5:ac:38:0d:4a:d4:71:b2:23:
cb:1e:79:01:67:e1:d6:e0:04:f8:75:6b:16:54:1c:f2:55:a4:
5d:70:cc:75:40:44:e1:94:57:b1:88:f7:b9:c2:17:a9:50:1c:
10:4a:74:d2:3d:93:50:0d:5d:27:99:e0:93:73:3b:b0:4d:c3:
ab:f5:ba:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 09:59:43 2025 by rpki-client