Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/AtKzagNaEiHZ3DMIQDHzYnllF00.roa
File: AtKzagNaEiHZ3DMIQDHzYnllF00.roa (raw, json)
Hash identifier: y3pssppeN8wnNBHTgZeQ1XkrFv9FnxlX6RtyXo4QIWE=
Subject key identifier: 02:D2:B3:6A:03:5A:12:21:D9:DC:33:08:40:31:F3:62:79:65:17:4D
Certificate issuer: /CN=ffb2627672877d0f6de9bc4e7e186eedd1356110
Certificate serial: 0196D9862A12A16D27AF5AC1683897434EAC
Authority key identifier: FF:B2:62:76:72:87:7D:0F:6D:E9:BC:4E:7E:18:6E:ED:D1:35:61:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_7JidnKHfQ9t6bxOfhhu7dE1YRA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/AtKzagNaEiHZ3DMIQDHzYnllF00.roa
Signing time: Fri 16 May 2025 14:36:10 +0000
ROA not before: Fri 16 May 2025 14:36:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49505
IP address blocks: 185.147.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Jun 2025 18:16:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d9:86:2a:12:a1:6d:27:af:5a:c1:68:38:97:43:4e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffb2627672877d0f6de9bc4e7e186eedd1356110
Validity
Not Before: May 16 14:36:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=02d2b36a035a1221d9dc33084031f3627965174d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:21:f9:c9:90:9c:15:86:f5:e7:99:29:59:87:
70:ca:2e:30:4b:9b:78:38:91:7d:c5:40:a4:4b:3d:
89:04:a1:3f:6e:6a:e6:69:c8:fb:25:69:22:03:d4:
ee:4d:84:7f:4e:59:c7:95:85:cb:f0:b0:10:e7:72:
c7:19:24:b6:b7:37:8e:25:58:f3:92:49:7a:3c:b6:
a8:4c:a3:52:8b:5c:53:f4:1f:ed:32:cd:43:5a:a9:
b5:52:a7:23:56:7a:d6:68:59:ce:1e:3e:c5:68:fd:
7a:e4:07:5b:0c:90:22:37:dc:7b:9f:0b:67:a2:63:
78:60:2e:76:88:ed:01:1d:93:a6:49:7f:38:ca:8e:
71:71:01:80:3b:5a:50:16:3e:91:87:bd:e7:5c:1f:
49:38:69:0f:02:40:96:51:fd:aa:e8:52:59:7a:aa:
15:9d:0f:33:a8:2d:2e:d7:fc:a2:88:65:cc:4d:e7:
52:04:00:f2:2e:32:0f:d5:3b:43:bb:48:f6:d7:ea:
c3:42:51:90:6f:06:2a:8a:60:97:4c:83:1f:e0:3b:
da:f4:0e:44:77:a6:13:10:d0:c4:a2:08:b4:09:8d:
6a:3c:08:5f:2f:67:a3:c8:7f:cb:c2:40:db:fc:36:
a0:59:e4:2f:33:5c:26:21:64:7b:11:a5:70:0f:3a:
20:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D2:B3:6A:03:5A:12:21:D9:DC:33:08:40:31:F3:62:79:65:17:4D
X509v3 Authority Key Identifier:
keyid:FF:B2:62:76:72:87:7D:0F:6D:E9:BC:4E:7E:18:6E:ED:D1:35:61:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_7JidnKHfQ9t6bxOfhhu7dE1YRA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/AtKzagNaEiHZ3DMIQDHzYnllF00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/22c510-3480-4ce1-8dd8-19746947558d/1/_7JidnKHfQ9t6bxOfhhu7dE1YRA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.125.0/24
Signature Algorithm: sha256WithRSAEncryption
87:0a:dd:92:2e:22:7f:71:36:05:79:7b:ec:89:ae:d3:0a:74:
76:bb:41:05:54:81:2c:a0:b2:ed:0b:8a:ea:c3:3d:0e:fb:d4:
81:78:7e:c2:9e:c3:87:25:7f:25:35:43:49:00:fc:b1:9a:39:
90:4e:dc:6e:f5:7a:73:9f:14:55:5a:92:89:f1:8d:c6:0f:d2:
73:57:97:f5:f9:80:a0:6a:ba:af:04:e1:4c:8b:35:10:06:9b:
3f:68:b8:54:9c:df:b0:4d:56:b8:51:67:cb:f8:58:57:71:7f:
a5:cb:59:7e:d0:d5:f8:a0:2c:79:de:20:95:75:7a:a5:cf:ab:
3f:7b:10:0c:ff:50:60:66:c7:1d:29:8c:ca:c1:80:75:d9:2e:
f1:60:c9:d1:75:0e:a3:5f:ab:d3:01:96:99:62:67:b4:9d:d5:
a6:7b:f6:3a:f5:63:79:87:11:91:ae:ca:d9:f1:ea:de:21:f7:
c1:9e:21:40:b7:85:0f:ff:59:93:49:32:93:d2:c2:12:42:d3:
c4:61:25:03:16:5b:f3:01:a9:8d:52:f9:5e:2a:46:62:04:92:
1f:05:57:b9:34:b7:d3:fd:ae:cf:08:cd:9e:56:2f:91:f0:a2:
47:60:d7:7f:a5:54:83:c4:81:c5:54:a8:88:c7:96:76:b3:75:
62:3d:c3:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:37:35 2025 by rpki-client