Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ZNk0kFaDNNfYPRpHemg3w0E3hQ8.roa
File: ZNk0kFaDNNfYPRpHemg3w0E3hQ8.roa (raw, json)
Hash identifier: GStmDrTb6ii20kEgAt3GnIec9b5K+yc+/5va0kU1V7g=
Subject key identifier: 64:D9:34:90:56:83:34:D7:D8:3D:1A:47:7A:68:37:C3:41:37:85:0F
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0192B50946DEB9BAFD3C14320156C72F84B2
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ZNk0kFaDNNfYPRpHemg3w0E3hQ8.roa
Signing time: Tue 22 Oct 2024 16:22:16 +0000
ROA not before: Tue 22 Oct 2024 16:22:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42708
IP address blocks: 92.51.248.0/24 maxlen: 24
198.55.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 16:49:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b5:09:46:de:b9:ba:fd:3c:14:32:01:56:c7:2f:84:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Oct 22 16:22:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=64d93490568334d7d83d1a477a6837c34137850f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:62:f9:90:6d:84:ce:24:e8:3c:76:ac:dd:6a:
44:c0:15:56:64:56:4a:b5:2b:e8:97:82:92:28:44:
23:22:30:14:4f:5f:30:34:28:60:fb:a0:86:6c:c2:
f0:ed:1f:3b:a7:b4:ab:50:2b:a0:4a:bb:d6:06:7b:
18:f6:d8:bb:df:3b:e4:1c:ef:34:35:a2:9a:56:73:
ff:e5:25:c5:5f:64:28:e8:8b:09:6e:8e:24:25:bb:
20:a7:70:07:f6:53:09:8f:02:c2:0f:0d:fb:83:78:
ff:91:fd:d8:58:18:1a:8b:b1:61:f0:c2:5f:26:e6:
c0:76:25:9d:be:74:42:6b:ca:b4:f5:80:9b:9d:e3:
3f:de:20:53:2a:c4:34:02:e9:81:b5:35:21:5f:00:
3c:3a:14:54:41:cd:ca:d9:1e:66:9f:e7:96:44:52:
5a:87:8e:d9:06:4f:f6:ca:10:0d:dc:a7:e4:2d:8f:
6d:a0:66:f4:f4:76:4a:dc:83:4f:38:bc:c1:01:51:
7b:0e:da:bb:f3:82:fa:64:ed:e7:29:04:ec:3c:bd:
f2:40:8e:a2:b0:72:b2:b1:50:ea:d9:cc:00:ff:1b:
15:60:1d:97:19:f1:0a:ae:c7:29:2a:30:ba:41:21:
89:ae:f1:d2:d3:3a:01:41:07:39:41:f4:dc:ca:9e:
a9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D9:34:90:56:83:34:D7:D8:3D:1A:47:7A:68:37:C3:41:37:85:0F
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/ZNk0kFaDNNfYPRpHemg3w0E3hQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.51.248.0/24
198.55.30.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:19:b3:f5:93:2d:a3:39:3c:a0:40:61:a8:08:fe:38:38:dc:
5e:66:eb:45:d9:41:f4:17:0c:ef:63:92:d2:0c:37:9e:a6:3c:
3b:83:6c:69:79:b5:80:db:6c:38:68:20:e9:5f:ee:d6:fe:6c:
b3:f1:71:12:b5:ed:87:4e:a0:3f:96:92:0e:bd:fc:93:e6:f5:
96:a6:8d:cc:fa:23:75:d6:d2:3e:4d:ec:71:22:26:f9:5c:e0:
81:0c:2c:f6:bc:45:dc:8b:59:97:a0:79:a4:24:bf:3a:65:42:
5d:67:50:9d:77:2b:36:53:53:d3:07:54:23:be:f6:db:ed:d8:
fb:e3:7f:ca:04:8e:c1:f6:4c:a0:29:f3:b5:e1:72:89:cd:dc:
09:30:20:d7:fd:c6:d3:76:d5:79:bd:dc:d1:c0:25:e5:a0:3e:
0b:a3:31:6f:0d:6b:83:eb:30:2a:72:ef:b4:be:c5:86:30:e1:
1b:73:e6:49:48:89:04:59:76:6a:a4:7f:79:8b:1a:d1:30:70:
4c:df:82:5f:b5:02:a7:3c:39:b5:5a:25:c5:08:01:b0:42:bb:
b7:c3:e8:f1:ee:62:c8:26:ec:2d:08:04:42:3a:cb:2f:40:c2:
8d:bf:b9:5a:b5:02:b4:2d:61:f8:c0:e3:16:6e:3d:c0:f5:1b:
29:50:17:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 09:33:14 2025 by rpki-client