Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/P2IgEfX01GeH1P7xN95_IBB0fHA.roa
File: P2IgEfX01GeH1P7xN95_IBB0fHA.roa (raw, json)
Hash identifier: H/LTjV7+/LZUeXsvjMC4qIq8ex/bnmni9EGgXqGiPks=
Subject key identifier: 3F:62:20:11:F5:F4:D4:67:87:D4:FE:F1:37:DE:7F:20:10:74:7C:70
Certificate issuer: /CN=a76dd9dad75877f7d28d14e08dc55b1330bd13b7
Certificate serial: 0196CBCA8A26301AAB04237B5F475E1A7DB2
Authority key identifier: A7:6D:D9:DA:D7:58:77:F7:D2:8D:14:E0:8D:C5:5B:13:30:BD:13:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/P2IgEfX01GeH1P7xN95_IBB0fHA.roa
Signing time: Tue 13 May 2025 22:36:10 +0000
ROA not before: Tue 13 May 2025 22:36:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207459
IP address blocks: 46.31.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 May 2025 00:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:ca:8a:26:30:1a:ab:04:23:7b:5f:47:5e:1a:7d:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a76dd9dad75877f7d28d14e08dc55b1330bd13b7
Validity
Not Before: May 13 22:36:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f622011f5f4d46787d4fef137de7f2010747c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:68:28:13:63:19:36:99:4a:b4:9a:d4:5e:59:
56:b8:e7:8b:62:20:7e:e1:15:ce:ec:64:76:f0:60:
4f:42:f6:fb:45:12:a9:b1:57:3b:1d:89:01:b4:ca:
8b:7b:d4:d5:e3:3a:c3:5f:fb:55:21:9e:5f:f0:02:
30:08:ca:a1:3b:8d:27:fe:11:e3:86:b9:a8:2b:4b:
fa:11:c5:a2:2b:73:0d:ee:63:ff:1b:58:bd:e3:1e:
57:7d:9d:25:89:f8:f2:5a:b5:ef:19:b8:c3:e9:fd:
8d:56:a4:36:b9:1a:cd:92:cf:9e:8c:d3:a7:cf:df:
46:f4:fd:6e:dc:eb:c0:36:45:3a:9c:d5:c6:94:bf:
9f:0d:85:98:5d:57:a5:9f:86:84:ac:a5:fe:8b:6d:
79:74:f1:94:de:c6:9f:51:8c:66:14:46:3d:8e:68:
c3:94:99:16:90:d5:ab:a7:16:03:72:5d:a3:c0:53:
b8:ed:3d:17:0c:d7:e7:42:2b:0e:d3:67:ac:03:5a:
5a:79:94:09:95:82:44:2e:be:5e:3a:1e:dd:41:ba:
08:84:49:94:41:75:10:c2:1a:5e:88:c8:98:2d:c4:
76:f0:a0:45:4b:60:65:bc:9b:25:c8:7a:d8:5a:96:
53:a2:1b:dd:3d:df:88:c5:aa:45:b7:7b:e2:78:bc:
56:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:62:20:11:F5:F4:D4:67:87:D4:FE:F1:37:DE:7F:20:10:74:7C:70
X509v3 Authority Key Identifier:
keyid:A7:6D:D9:DA:D7:58:77:F7:D2:8D:14:E0:8D:C5:5B:13:30:BD:13:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/P2IgEfX01GeH1P7xN95_IBB0fHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/p23Z2tdYd_fSjRTgjcVbEzC9E7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.76.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:a3:00:a2:09:29:82:ed:74:48:09:65:bd:1d:fc:cd:0f:0f:
9e:c6:d4:7c:3d:bc:1b:1b:f0:af:ae:e8:59:26:30:d2:32:8a:
04:ce:55:7e:d4:22:99:9c:e4:4c:7a:79:a0:81:b9:e0:3e:60:
bc:1a:e3:bb:30:c5:ad:e5:cb:b6:aa:57:79:b8:1d:02:23:d9:
0c:47:df:02:f4:85:1c:72:98:e5:06:2d:51:2d:7f:56:56:7a:
42:89:2a:33:c6:a9:7f:b9:4f:f4:ad:6d:17:9a:8c:04:a8:35:
f7:35:d2:b1:6e:e3:22:c9:a6:18:f3:14:73:14:43:0d:1a:cc:
d3:38:8b:ae:09:d1:69:99:51:83:49:69:27:57:0a:91:7e:96:
e1:16:70:89:04:08:c1:31:ad:a4:ff:db:aa:42:7c:fc:b8:9d:
8a:49:41:9c:82:be:74:13:cc:f2:fa:c2:26:b9:93:69:51:48:
07:20:d6:af:31:23:aa:9e:2a:05:3d:5e:ed:82:3f:2e:85:a7:
94:21:60:54:4b:d7:7c:cd:b4:5b:39:59:2b:74:f6:50:c9:db:
d2:87:76:28:11:5c:85:a3:02:ba:04:2f:d9:06:d3:73:e7:15:
cb:0e:4c:63:4e:b1:eb:23:cd:72:ba:93:31:dd:74:f6:59:69:
48:18:c2:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:58:57 2025 by rpki-client