Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/RvKMSpjiQjGCpbklLPZ1z3XJQGA.roa
File: RvKMSpjiQjGCpbklLPZ1z3XJQGA.roa (raw, json)
Hash identifier: 6HetnZSVW8xSdzShWpeMQBR8XxRvKpQT7E9PxGimNik=
Subject key identifier: 46:F2:8C:4A:98:E2:42:31:82:A5:B9:25:2C:F6:75:CF:75:C9:40:60
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01975EDBE2847FC533C12E85DABE0CFC83DA
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/RvKMSpjiQjGCpbklLPZ1z3XJQGA.roa
Signing time: Wed 11 Jun 2025 11:59:18 +0000
ROA not before: Wed 11 Jun 2025 11:59:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211854
IP address blocks: 31.56.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Jun 2025 16:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5e:db:e2:84:7f:c5:33:c1:2e:85:da:be:0c:fc:83:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 11 11:59:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=46f28c4a98e2423182a5b9252cf675cf75c94060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c3:0f:03:e9:dc:e0:c5:7d:fe:ec:39:41:47:
6f:da:fb:eb:90:71:b9:9f:7a:a5:76:60:99:99:89:
00:73:bb:80:28:20:a6:6e:d3:e4:fa:e8:bf:b2:cb:
1b:c8:de:e2:d6:d2:81:6e:0f:34:13:87:7d:cd:9f:
0b:55:37:4e:a2:83:c6:29:a5:05:e0:bc:20:ba:ff:
dd:f8:e5:ec:64:8c:3b:77:f3:03:77:36:26:76:3a:
ba:0e:a1:10:f4:fd:54:4a:12:d2:c0:90:19:81:0c:
d2:a1:21:bf:09:16:df:0b:79:12:e3:29:2e:34:de:
05:5c:63:f9:76:1e:63:5c:26:19:b0:0f:20:ed:d7:
46:85:14:97:bb:92:18:d1:43:02:ec:21:ea:b4:db:
b2:2f:cf:0a:fa:dc:8c:cd:bf:d1:60:59:83:e6:74:
b7:d3:2a:ad:f1:be:c9:3e:ba:1f:a1:a3:d3:da:76:
cd:e0:08:94:16:a9:93:d1:f2:ec:83:26:65:c3:72:
d5:9b:4f:f9:1c:98:ed:8f:a2:1b:34:e6:1a:da:61:
0b:bb:b0:19:6c:18:a9:ad:8d:5f:f8:54:da:c4:7d:
17:63:0e:8b:ae:de:f0:ea:f9:7a:86:29:7b:e6:92:
60:27:6e:e1:c7:44:82:d7:1a:a9:c9:88:9a:90:1b:
ec:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:F2:8C:4A:98:E2:42:31:82:A5:B9:25:2C:F6:75:CF:75:C9:40:60
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/RvKMSpjiQjGCpbklLPZ1z3XJQGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.67.0/24
Signature Algorithm: sha256WithRSAEncryption
43:2e:3a:4f:ec:97:de:70:ea:63:35:c9:90:db:4b:0f:2b:5d:
b0:2a:62:49:91:ef:28:c0:00:48:87:29:08:15:b7:cb:1f:3d:
62:ab:48:4f:fc:90:d1:a8:11:cc:27:6a:40:8a:19:b3:5b:6a:
76:f7:29:d1:36:2c:79:bb:37:53:8a:22:60:d8:cf:74:bd:12:
fd:3c:23:f9:b9:c8:ec:a8:48:ca:26:60:ef:aa:f5:4b:86:9d:
13:25:91:6b:4c:aa:58:52:0d:6a:02:2d:fc:5d:02:2c:15:19:
45:b6:87:f5:fb:fc:c2:a3:76:22:a2:da:54:af:c4:f1:6d:c9:
07:97:9b:90:1e:2b:8f:33:62:9e:76:35:d8:e1:a4:a6:ea:bc:
19:f3:67:ba:1e:7b:73:a5:0e:24:f1:60:e1:40:1c:39:2e:a2:
d0:62:bf:ba:f9:92:43:72:8a:8d:60:ea:de:44:5b:1d:30:67:
b3:31:06:ac:93:17:6c:f1:f9:83:53:38:f8:4d:54:0b:bc:4c:
57:0e:bc:ac:f1:3f:ac:79:98:0d:86:e9:48:f8:39:c6:de:6b:
dd:73:65:23:56:a6:63:bc:46:48:d9:65:85:75:81:90:06:00:
4f:6e:d4:0e:d4:87:06:94:6e:dc:f7:75:ca:36:d9:3d:9d:c9:
58:82:10:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:45:55 2025 by rpki-client