Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/vg5pcpYVOYeiJXko1DrGkVzLXWo.roa
File: vg5pcpYVOYeiJXko1DrGkVzLXWo.roa (raw, json)
Hash identifier: MyROdgl6oN6m0qyqFdgvxMBspMLc3POE3FRc0r2t/0A=
Subject key identifier: BE:0E:69:72:96:15:39:87:A2:25:79:28:D4:3A:C6:91:5C:CB:5D:6A
Certificate issuer: /CN=16055801b775e774306321455fd463fbd9273c4c
Certificate serial: 01976B268E19AAD9399D9BB0611BA17B6283
Authority key identifier: 16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/vg5pcpYVOYeiJXko1DrGkVzLXWo.roa
Signing time: Fri 13 Jun 2025 21:16:18 +0000
ROA not before: Fri 13 Jun 2025 21:16:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214143
IP address blocks: 144.56.52.0/24 maxlen: 24
144.56.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 14 Jun 2025 07:43:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:26:8e:19:aa:d9:39:9d:9b:b0:61:1b:a1:7b:62:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16055801b775e774306321455fd463fbd9273c4c
Validity
Not Before: Jun 13 21:16:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be0e697296153987a2257928d43ac6915ccb5d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:df:85:0a:44:ca:33:8c:d9:9a:b5:4c:f9:75:
26:97:f9:dd:af:03:48:12:9f:d8:ff:17:65:3a:41:
78:ae:09:22:45:38:28:be:7d:fc:56:48:b7:7e:82:
87:5a:8a:ff:92:05:46:63:f8:0d:b2:46:0a:fc:4f:
a4:09:f8:4c:b4:9a:4c:48:5b:a7:ba:0f:61:c8:f4:
c1:ab:40:76:1c:c0:70:1d:c6:b4:2e:51:1c:4e:b0:
5f:92:13:51:d1:9e:ed:bc:8a:f4:9a:df:75:78:91:
9a:7a:e0:22:25:32:78:68:49:b9:99:61:5a:6f:c8:
98:1e:9f:00:be:74:d1:5d:72:93:27:4b:75:43:45:
db:8f:15:95:1f:bc:62:03:fe:fe:00:71:6b:48:3b:
b6:5a:7f:7d:ab:be:a4:80:7f:a7:61:be:c4:94:37:
46:78:5f:cd:ac:91:93:18:66:92:8b:e3:72:93:cd:
ac:fb:13:ba:57:9e:71:3d:6d:42:f2:c7:12:5b:2e:
e9:0e:79:79:f5:74:cd:77:bb:92:49:1b:13:fa:26:
41:68:10:d6:70:2f:a3:a5:70:45:a5:6c:0d:97:09:
b3:f7:de:11:4a:a4:ea:72:e7:7b:cf:62:b7:53:84:
bd:90:0d:c9:14:df:58:2a:c2:fc:49:ee:62:34:85:
5f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:0E:69:72:96:15:39:87:A2:25:79:28:D4:3A:C6:91:5C:CB:5D:6A
X509v3 Authority Key Identifier:
keyid:16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/vg5pcpYVOYeiJXko1DrGkVzLXWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.56.52.0/23
Signature Algorithm: sha256WithRSAEncryption
d4:9f:c0:9d:6d:0f:90:10:e9:c0:01:01:5c:50:07:2d:78:e0:
dd:cd:57:0f:7b:4f:89:5e:b0:1c:ed:e3:b5:59:07:91:34:62:
33:99:d2:38:9d:ca:0b:53:fa:01:02:3d:3f:ba:6e:98:72:5b:
25:1c:32:97:c6:8c:a0:00:62:a4:d7:1b:2d:26:ed:f8:ba:76:
49:8d:ba:d6:db:c3:71:b2:ad:7c:65:d7:d3:6f:41:9d:df:ec:
77:4a:1b:db:be:b2:86:74:4f:50:f0:67:62:f0:c6:ad:30:36:
06:a6:b0:84:93:42:cb:c2:cd:4d:43:5a:1d:83:27:51:00:7f:
ff:ba:fd:b6:24:b0:d5:63:2a:8f:f7:43:7f:9d:5f:68:5d:34:
cf:df:3a:e2:72:b8:7e:c5:d9:ea:a4:5a:1f:de:3d:1e:d0:58:
f8:b1:76:ea:72:3b:fd:c0:14:45:0b:ce:fa:59:bb:57:6d:19:
a0:c7:e2:62:d7:ed:ad:b0:a5:23:a2:ff:b3:3b:89:bb:66:3b:
f1:36:d5:a1:ab:c6:e0:04:88:88:18:b4:4e:1a:5f:bf:79:c2:
35:e4:f6:8b:12:18:0e:80:5a:04:08:49:2d:6c:e9:b1:4a:ae:
da:77:fa:02:93:43:95:23:05:77:c7:d7:90:17:ea:3c:6c:22:
bb:02:c7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 04:55:37 2025 by rpki-client