Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/pxOdCp2xWJPEdaVktKnEABysuHY.roa
File: pxOdCp2xWJPEdaVktKnEABysuHY.roa (raw, json)
Hash identifier: 303ypfaZ4/DxwmP6YN9rA6RaiYL4TjPTiBmv1o2L4io=
Subject key identifier: A7:13:9D:0A:9D:B1:58:93:C4:75:A5:64:B4:A9:C4:00:1C:AC:B8:76
Certificate issuer: /CN=a76dd9dad75877f7d28d14e08dc55b1330bd13b7
Certificate serial: 019427B6643174DD96E3AFF886075087FFFC
Authority key identifier: A7:6D:D9:DA:D7:58:77:F7:D2:8D:14:E0:8D:C5:5B:13:30:BD:13:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/pxOdCp2xWJPEdaVktKnEABysuHY.roa
Signing time: Thu 02 Jan 2025 15:50:52 +0000
ROA not before: Thu 02 Jan 2025 15:50:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61135
IP address blocks: 185.165.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Jan 2025 21:23:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:64:31:74:dd:96:e3:af:f8:86:07:50:87:ff:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a76dd9dad75877f7d28d14e08dc55b1330bd13b7
Validity
Not Before: Jan 2 15:50:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a7139d0a9db15893c475a564b4a9c4001cacb876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:dd:b3:18:5d:f5:f3:f6:bf:13:98:21:6d:3c:
3f:86:f9:1f:a9:4b:32:45:72:e3:31:15:b7:69:32:
52:fc:0d:7c:f5:13:f0:80:e4:0f:5a:bb:68:dd:31:
57:99:dc:e6:33:74:63:63:aa:aa:27:55:22:ae:d4:
90:69:46:82:c9:70:8e:99:3b:32:89:c7:51:e6:7a:
e2:ce:d3:50:5f:36:63:9d:c7:d7:08:d8:f8:71:52:
be:f5:e2:fa:19:5e:90:7b:46:25:ce:42:90:cf:b7:
57:8c:be:2e:bb:a0:d5:2c:92:cc:66:f8:ae:35:2a:
b4:ec:9b:4e:81:b2:d5:04:9d:71:fc:9b:a0:5e:7a:
bb:67:cc:07:6c:05:e1:26:77:f4:a8:9f:33:7d:06:
67:aa:53:ea:f0:49:85:2b:53:65:eb:1c:38:61:99:
eb:a9:2b:fd:df:5f:28:f8:42:6b:26:4a:95:74:2e:
cb:be:1a:d2:6f:60:66:f6:9b:85:60:63:af:fe:b4:
e0:63:c6:fc:bd:ac:8f:6a:20:85:62:bd:0b:44:be:
bd:a1:26:fa:0f:d4:3c:78:a7:59:e1:f3:ac:f9:28:
2c:5d:4c:53:d0:88:ab:dc:0e:62:9e:a5:b7:9c:42:
11:4e:80:71:1a:6b:ec:f7:3c:9e:0e:53:a0:e9:42:
99:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:13:9D:0A:9D:B1:58:93:C4:75:A5:64:B4:A9:C4:00:1C:AC:B8:76
X509v3 Authority Key Identifier:
keyid:A7:6D:D9:DA:D7:58:77:F7:D2:8D:14:E0:8D:C5:5B:13:30:BD:13:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/pxOdCp2xWJPEdaVktKnEABysuHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/p23Z2tdYd_fSjRTgjcVbEzC9E7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.77.0/24
Signature Algorithm: sha256WithRSAEncryption
03:9c:96:80:93:38:35:f3:65:c0:30:37:99:82:22:a3:b7:82:
3b:fa:77:41:ff:99:e1:8e:75:08:77:d2:27:f4:7a:21:da:51:
aa:b7:fe:a1:17:11:16:e0:e5:31:19:17:46:94:ad:63:19:9f:
48:6f:ce:dd:d9:48:03:82:18:2d:6f:3c:73:e3:82:ae:d0:ed:
7f:a3:b2:17:e6:84:65:82:a3:55:52:b6:8d:3e:5f:52:d2:d2:
76:26:a9:79:0d:6b:4f:69:32:1c:6f:d1:79:2b:f1:f4:6a:57:
82:3a:4b:50:da:54:05:e6:21:33:8d:88:8e:f6:f6:c6:9e:50:
d2:80:5e:a1:17:f1:bd:43:ca:6f:72:93:dd:61:44:05:27:66:
35:fa:ca:d1:b4:85:49:cf:b7:4e:53:9e:46:5e:e0:8c:da:3d:
86:cf:6d:e8:d5:3e:09:f5:85:2c:77:5f:a4:69:91:90:73:93:
df:0a:f9:75:c0:85:af:57:10:ba:1c:63:34:9a:92:7e:0a:46:
dc:b8:a0:b9:fc:b0:43:85:42:ae:43:51:21:99:e5:8a:4f:0a:
ad:1f:0a:63:7e:9c:4c:14:d3:a7:4f:1e:96:b6:f0:0e:50:97:
fc:21:51:6b:e4:2a:18:0b:6c:b1:85:25:1a:7d:18:e2:8c:aa:
3c:3b:bb:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 19:59:45 2025 by rpki-client