Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/CeNacKkMZtkF8IgOaOKrL0VwsWg.roa
File: CeNacKkMZtkF8IgOaOKrL0VwsWg.roa (raw, json)
Hash identifier: L2zyfAgVUjz6rOH+R0e3ORvwwlKGgXLHcXBlIaVCl/w=
Subject key identifier: 09:E3:5A:70:A9:0C:66:D9:05:F0:88:0E:68:E2:AB:2F:45:70:B1:68
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0196D57D727D59D7B21ECB2141F4D4DB3079
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/CeNacKkMZtkF8IgOaOKrL0VwsWg.roa
Signing time: Thu 15 May 2025 19:48:10 +0000
ROA not before: Thu 15 May 2025 19:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200436
IP address blocks: 212.80.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 May 2025 06:15:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d5:7d:72:7d:59:d7:b2:1e:cb:21:41:f4:d4:db:30:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: May 15 19:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=09e35a70a90c66d905f0880e68e2ab2f4570b168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ee:bd:7b:ec:5d:47:7f:1a:d2:ed:44:2b:e4:
59:88:16:87:6b:10:33:6a:1a:6a:aa:64:25:ff:f6:
5a:ef:59:89:a9:53:6a:65:47:fe:90:a2:c7:6f:c4:
b4:52:b9:7a:48:0f:4d:1d:fb:a8:55:30:08:d9:6c:
ca:6c:12:82:53:9b:59:ab:04:02:2c:d7:24:55:31:
b5:66:04:27:73:58:9b:94:df:34:4a:8d:a0:a9:58:
66:23:72:a8:40:ae:78:dc:cc:49:95:93:62:23:7f:
1b:16:3f:ee:a2:1e:11:0e:c3:51:26:45:ff:a5:56:
ed:f6:1f:0f:f7:86:1c:f0:26:bd:78:af:f9:99:9b:
1a:7b:9e:d9:49:4f:de:0c:6c:6c:2f:1a:83:71:a7:
14:37:c0:ae:74:7f:61:0b:f0:d2:b7:e2:79:5d:00:
b1:c7:6b:67:f7:ca:4d:90:51:6b:06:6d:71:ab:0c:
4a:0b:e9:62:85:f2:5f:9a:ab:40:82:e2:d0:57:5f:
e8:4c:40:c8:2d:13:f8:b8:07:be:cc:b9:ac:b6:c4:
3c:77:b5:d6:7d:db:d0:ba:bb:c1:55:89:e3:41:09:
be:2e:c6:36:d5:91:b4:a8:df:10:38:71:e5:d1:cc:
cf:8b:c4:fc:87:ba:47:a1:f4:12:ce:03:99:53:37:
d8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E3:5A:70:A9:0C:66:D9:05:F0:88:0E:68:E2:AB:2F:45:70:B1:68
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/CeNacKkMZtkF8IgOaOKrL0VwsWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.80.31.0/24
Signature Algorithm: sha256WithRSAEncryption
23:0f:5f:7e:e7:9a:1e:ce:64:8e:13:df:cb:04:bc:33:2a:76:
9b:2b:fa:48:9f:7d:34:cf:6e:7e:94:0c:ed:39:6c:5f:6e:86:
f6:c2:bb:c5:d3:3a:0b:8d:b1:bf:a4:d5:7f:ab:1c:08:0a:24:
68:8a:e4:1e:97:6b:cf:e3:41:47:04:b4:85:d2:3e:f8:90:ef:
ce:55:2c:f0:0a:ff:e9:b1:51:a6:6b:17:df:ce:ff:62:67:e6:
f8:9a:5a:90:9b:57:b7:f9:31:a1:2c:48:02:d3:fd:7e:31:7e:
8b:f7:c3:84:11:b2:c4:96:8e:a7:67:98:69:7c:dd:1d:8f:37:
6d:2f:dc:df:f3:e2:55:16:35:4b:ba:76:9a:c7:cb:84:c3:9f:
d1:e9:91:6b:25:07:ea:46:81:ab:c8:3f:9b:b6:96:df:52:3f:
31:d9:05:20:0c:e7:53:59:ed:f2:c7:e4:f5:b0:4d:15:ca:1f:
98:36:0b:aa:01:da:6c:b2:be:3d:af:02:77:6f:5c:5e:c9:86:
26:d3:14:eb:2a:d7:ae:e5:d8:18:de:ff:e1:fa:b1:de:3f:1c:
82:49:0f:ea:55:8e:13:e4:5e:cc:46:df:2a:a6:17:16:a2:78:
d5:d2:ff:c1:ea:56:f9:f7:20:5a:ae:d0:97:15:c1:05:b0:10:
26:74:b3:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 01:26:29 2025 by rpki-client