Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/Jra--u9kBWAzqjHGC6rJ3_8IZ1U.roa
File: Jra--u9kBWAzqjHGC6rJ3_8IZ1U.roa (raw, json)
Hash identifier: e7u/Zc2uF3fPt3DWwKAfN2epK7aD8+AF9+oENNbWpdg=
Subject key identifier: 26:B6:BE:FA:EF:64:05:60:33:AA:31:C6:0B:AA:C9:DF:FF:08:67:55
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 0197608105E0F6E90BF8095F3D966FBB4690
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/Jra--u9kBWAzqjHGC6rJ3_8IZ1U.roa
Signing time: Wed 11 Jun 2025 19:39:17 +0000
ROA not before: Wed 11 Jun 2025 19:39:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 95.182.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Jun 2025 12:07:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:60:81:05:e0:f6:e9:0b:f8:09:5f:3d:96:6f:bb:46:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jun 11 19:39:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=26b6befaef64056033aa31c60baac9dfff086755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:01:94:3e:6d:fd:d4:08:a4:a1:0f:2b:fc:cc:
14:42:a2:16:02:12:c5:7a:05:07:19:6c:d7:ce:dc:
c0:99:4a:0f:8f:5e:fb:76:84:74:23:47:db:4d:99:
c6:d1:3f:cd:d2:01:f5:b8:ea:22:e1:03:23:ac:4b:
b2:99:51:35:90:a1:db:55:75:21:b9:bf:67:0e:bb:
4e:7d:b8:ad:50:74:e5:1d:17:c4:e2:db:9b:57:9d:
d5:c8:81:ac:9e:a6:d3:11:49:76:6a:5c:c1:7d:ce:
e7:2c:a7:a7:da:80:55:c6:d7:ad:05:4e:d3:ba:2b:
27:66:62:26:ed:d8:69:4d:c7:ef:fc:b9:b4:17:5c:
1f:4a:4f:4b:ad:b6:57:8e:24:dd:56:30:ed:01:c6:
ed:59:a2:8c:57:87:89:b3:dc:76:dc:e1:4f:da:08:
a5:7b:eb:39:33:ee:42:a7:d7:27:2d:5e:e6:c9:df:
90:99:26:4f:21:b7:e0:14:52:1e:85:6e:93:a8:25:
8d:75:23:ae:ae:54:ba:a3:7e:cb:3b:93:12:46:a2:
56:c8:1d:87:71:95:cd:5a:10:a2:18:13:e3:a0:17:
3b:5c:ad:1c:69:d9:bf:03:ce:03:c4:6b:37:52:f7:
71:66:90:2f:2f:ec:af:d2:e2:d4:41:5f:c4:6c:da:
06:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B6:BE:FA:EF:64:05:60:33:AA:31:C6:0B:AA:C9:DF:FF:08:67:55
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/Jra--u9kBWAzqjHGC6rJ3_8IZ1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.182.111.0/24
Signature Algorithm: sha256WithRSAEncryption
43:85:3c:9b:48:47:81:d9:74:8b:5d:80:5d:03:b7:f1:8c:68:
53:31:43:77:5a:f3:2b:3d:42:dd:04:60:6a:3c:89:c0:64:a2:
b0:7c:9c:1e:f6:04:15:4d:bc:c0:19:b1:9d:fc:6f:af:33:c0:
a9:e0:b2:52:1d:e5:84:8b:61:bb:80:10:84:47:13:2f:91:4a:
7f:ae:23:9d:06:b0:5a:ac:03:88:c0:73:e4:9a:4d:8b:54:01:
bf:00:d8:a4:9e:6b:b1:3a:f7:c8:78:d9:5a:10:39:c3:c8:07:
4c:98:bb:ad:49:25:1e:f4:05:86:79:11:df:77:ce:9a:c6:e5:
96:14:c9:af:c7:ba:8f:ad:eb:c4:e1:37:f4:98:22:87:e9:1d:
61:d9:59:34:0c:fe:c0:6a:38:39:d6:f8:7e:56:bd:80:13:0a:
2e:bf:90:b6:72:65:7b:07:e3:eb:2d:70:59:72:39:8c:f1:31:
40:32:46:ec:dc:93:f4:84:46:5a:16:02:b1:00:95:d1:be:e9:
32:14:eb:ef:0e:f3:7d:8e:9e:fa:98:70:93:1c:d9:12:50:d0:
4e:25:f3:2b:cf:cd:ec:80:66:ec:7e:09:b8:a5:4c:15:4c:d1:
8f:2d:0e:14:57:0a:b6:3d:e7:26:45:ba:f7:2e:ff:58:00:6c:
4d:18:3d:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZdggQXg9ukL+AlfPZZvu0aQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4NWI4NTc3MDZkYWM1NGUyMGNhMGQxMWJkNjQxNmNiNjM0
MjAzYjQwHhcNMjUwNjExMTkzOTE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNmI2YmVmYWVmNjQwNTYwMzNhYTMxYzYwYmFhYzlkZmZmMDg2NzU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwGUPm391AikoQ8r/MwUQqIWAhLF
egUHGWzXztzAmUoPj177doR0I0fbTZnG0T/N0gH1uOoi4QMjrEuymVE1kKHbVXUh
ub9nDrtOfbitUHTlHRfE4tubV53VyIGsnqbTEUl2alzBfc7nLKen2oBVxtetBU7T
uisnZmIm7dhpTcfv/Lm0F1wfSk9LrbZXjiTdVjDtAcbtWaKMV4eJs9x23OFP2gil
e+s5M+5Cp9cnLV7myd+QmSZPIbfgFFIehW6TqCWNdSOurlS6o37LO5MSRqJWyB2H
cZXNWhCiGBPjoBc7XK0cadm/A84DxGs3UvdxZpAvL+yv0uLUQV/EbNoGPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCa2vvrvZAVgM6oxxguqyd//CGdVMB8GA1UdIwQY
MBaAFIhbhXcG2sVOIMoNEb1kFstjQgO0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMt
MTY2OTljOTZkZDVlLzEvSnJhLS11OWtCV0F6cWpIR0M2ckozXzhJWjFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMtMTY2OTljOTZkZDVl
LzEvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX7ZvMA0G
CSqGSIb3DQEBCwUAA4IBAQBDhTybSEeB2XSLXYBdA7fxjGhTMUN3WvMrPULdBGBq
PInAZKKwfJwe9gQVTbzAGbGd/G+vM8Cp4LJSHeWEi2G7gBCERxMvkUp/riOdBrBa
rAOIwHPkmk2LVAG/ANiknmuxOvfIeNlaEDnDyAdMmLutSSUe9AWGeRHfd86axuWW
FMmvx7qPrevE4Tf0mCKH6R1h2Vk0DP7Aajg51vh+Vr2AEwouv5C2cmV7B+PrLXBZ
cjmM8TFAMkbs3JP0hEZaFgKxAJXRvukyFOvvDvN9jp76mHCTHNkSUNBOJfMrz83s
gGbsfgm4pUwVTNGPLQ4UVwq2PecmRbr3Lv9YAGxNGD3B
-----END CERTIFICATE-----
Generated at Mon Jun 16 07:59:26 2025 by rpki-client