Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/e62f95-abbd-430d-8160-04ac17881aa9/1/BEl1lI6fxB6AbPevsHOZ3WWIWWc.roa
File: BEl1lI6fxB6AbPevsHOZ3WWIWWc.roa (raw, json)
Hash identifier: WVALbvx5sDeVdPr7fZa0TeivZIXiORjtw7c1mcGBv2M=
Subject key identifier: 04:49:75:94:8E:9F:C4:1E:80:6C:F7:AF:B0:73:99:DD:65:88:59:67
Certificate issuer: /CN=844969780141824cd0acbfa5a784611eeb0a7ddb
Certificate serial: 019420680C982D4E6730CFDF5F93264B01FF
Authority key identifier: 84:49:69:78:01:41:82:4C:D0:AC:BF:A5:A7:84:61:1E:EB:0A:7D:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hElpeAFBgkzQrL-lp4RhHusKfds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/e62f95-abbd-430d-8160-04ac17881aa9/1/BEl1lI6fxB6AbPevsHOZ3WWIWWc.roa
Signing time: Wed 01 Jan 2025 05:47:57 +0000
ROA not before: Wed 01 Jan 2025 05:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216192
IP address blocks: 194.177.14.0/24 maxlen: 24
2a13:f6c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 07 Jan 2025 10:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:0c:98:2d:4e:67:30:cf:df:5f:93:26:4b:01:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844969780141824cd0acbfa5a784611eeb0a7ddb
Validity
Not Before: Jan 1 05:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=044975948e9fc41e806cf7afb07399dd65885967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:0c:7e:37:bb:9e:84:81:d5:b5:2f:89:ce:fa:
ca:18:30:e7:80:d1:3e:80:20:17:00:5e:04:dd:d5:
f8:34:7c:73:d5:7b:d7:8f:3e:35:e2:0a:fd:d6:46:
b0:d1:f3:5b:ff:a5:cd:87:4f:86:c4:d1:8c:8d:c5:
de:de:c1:45:60:b7:45:69:55:28:c4:d9:6a:9e:1a:
b2:50:52:49:8d:0c:3b:32:68:af:7c:9f:09:8b:11:
0d:5b:33:d6:ea:82:7b:2e:1a:37:b6:f1:1f:e7:77:
1b:68:00:ee:cb:92:62:e8:d0:54:e9:19:31:b7:30:
34:11:b0:cb:2d:24:36:d8:6a:f5:12:09:a1:13:44:
a0:e5:f6:ec:9b:41:1b:db:df:73:93:db:1e:c7:62:
34:ae:15:a0:14:8e:c7:c1:43:26:28:b0:e8:3f:22:
0d:69:7b:6c:9d:89:66:38:18:1a:9c:bc:a5:7d:11:
b7:1c:e5:6e:ca:0d:5e:b4:c2:03:73:75:05:bf:96:
29:dc:78:9b:35:3f:3b:f3:42:bc:3d:01:ac:87:7a:
91:3f:39:7b:72:27:70:a1:d2:11:34:38:36:7d:d8:
ef:86:fb:41:ae:b7:a3:4c:1f:d5:5d:90:d9:68:62:
27:69:f8:23:ca:7f:5c:12:da:d5:55:e4:d9:f9:02:
02:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:49:75:94:8E:9F:C4:1E:80:6C:F7:AF:B0:73:99:DD:65:88:59:67
X509v3 Authority Key Identifier:
keyid:84:49:69:78:01:41:82:4C:D0:AC:BF:A5:A7:84:61:1E:EB:0A:7D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hElpeAFBgkzQrL-lp4RhHusKfds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e62f95-abbd-430d-8160-04ac17881aa9/1/BEl1lI6fxB6AbPevsHOZ3WWIWWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e62f95-abbd-430d-8160-04ac17881aa9/1/hElpeAFBgkzQrL-lp4RhHusKfds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.177.14.0/24
IPv6:
2a13:f6c0::/29
Signature Algorithm: sha256WithRSAEncryption
30:82:1b:d0:82:d6:12:dc:65:af:61:7d:25:48:6c:ed:4c:db:
a8:23:26:0f:d3:63:2d:d9:b0:46:54:9e:c3:74:86:e1:80:d0:
48:9e:c4:73:58:17:be:95:ba:37:73:82:ba:ee:46:7a:79:28:
2e:19:7b:ed:d5:37:76:8d:7c:e9:8d:bd:90:59:1c:05:36:b2:
c3:70:58:8d:25:60:d7:16:a5:79:9b:6d:f5:94:53:a5:62:d8:
1b:13:7d:7a:22:13:35:82:b1:63:06:30:79:b7:fc:f5:2b:ac:
d2:99:cd:94:08:40:0b:57:f5:77:ef:f9:16:03:4e:50:99:5e:
9f:57:f6:d8:04:77:12:a3:76:7d:e5:8b:85:c0:1b:59:d2:01:
07:c7:7e:1e:4f:f1:c2:cf:9f:1c:88:03:59:33:f6:d7:5b:40:
61:88:90:29:d3:c3:bc:7b:c4:9b:4a:6d:fe:2d:3a:63:26:d0:
a3:9a:d3:b5:43:5e:7c:dc:63:e1:2f:83:a4:56:f5:70:a6:c4:
b6:29:c9:37:7a:bd:4b:80:8d:5e:c0:84:5b:b0:f1:02:56:f4:
f2:5d:81:fb:97:cc:b9:2b:3d:de:8d:c7:1b:19:5a:10:0f:cf:
43:db:b1:14:b3:0f:a4:c7:6e:48:5f:2f:3b:f8:91:66:4e:65:
a0:17:39:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:51:22 2025 by rpki-client