Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/71aNEGmcNuoMAi6ukr6FLzLpr58.roa
File: 71aNEGmcNuoMAi6ukr6FLzLpr58.roa (raw, json)
Hash identifier: jY6lCzj6oVyGToZjacTG39p0poUsAaPY6jDWkLAWMm8=
Subject key identifier: EF:56:8D:10:69:9C:36:EA:0C:02:2E:AE:92:BE:85:2F:32:E9:AF:9F
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 01942826438813A2A3657DC07EA649965DD2
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/71aNEGmcNuoMAi6ukr6FLzLpr58.roa
Signing time: Thu 02 Jan 2025 17:53:03 +0000
ROA not before: Thu 02 Jan 2025 17:53:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60223
IP address blocks: 195.96.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 22:41:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:43:88:13:a2:a3:65:7d:c0:7e:a6:49:96:5d:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Jan 2 17:53:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef568d10699c36ea0c022eae92be852f32e9af9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a3:b3:3c:82:b3:ea:37:8b:7c:65:24:b0:48:
0a:44:32:a1:4a:55:03:6f:b2:22:82:09:83:72:3c:
fd:87:1b:0f:be:34:8d:90:8d:a4:45:3f:c8:52:04:
29:14:15:1b:20:70:14:c3:6b:0a:7a:99:ca:c5:18:
71:83:1c:ab:9a:bb:c8:70:f7:2c:bd:15:3b:fa:4e:
f2:d5:4d:be:c8:16:55:e3:25:af:5d:28:b7:80:d4:
ec:9c:65:08:e9:ce:86:9f:60:44:28:bd:9e:4e:c9:
4c:9a:84:32:6e:1c:71:b5:01:93:92:ad:b9:16:35:
c3:bf:1d:80:8b:69:c7:a8:04:4d:0f:8d:34:9a:e5:
ce:71:fc:0a:90:d9:a0:20:6f:83:b6:7c:be:4f:71:
61:7e:4b:d0:3b:4a:4d:80:8d:91:e6:86:ef:0b:3f:
15:95:75:0d:24:c6:40:eb:74:cc:cf:c5:58:9c:51:
dd:e3:e4:ba:2c:de:16:a9:53:05:5c:47:43:f0:da:
80:47:65:8c:b5:3d:af:69:d7:ee:6f:aa:db:e8:4b:
db:03:a7:3f:b1:45:d2:76:07:c0:0e:89:a8:2d:5d:
a6:5d:33:f6:1d:2a:01:20:96:c9:cb:08:06:53:fe:
70:00:0f:e5:bf:6a:e3:5c:0d:fd:75:5d:b2:1b:43:
7e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:56:8D:10:69:9C:36:EA:0C:02:2E:AE:92:BE:85:2F:32:E9:AF:9F
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/71aNEGmcNuoMAi6ukr6FLzLpr58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.129.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:92:2c:bd:fe:bc:fe:e6:dd:34:c6:6a:d1:61:ac:67:07:91:
9d:36:61:69:6b:cb:a9:9f:4a:29:a3:e3:be:06:c9:51:28:26:
32:ca:9c:45:59:40:aa:12:f3:3b:ea:41:5f:8b:de:2b:f6:cf:
02:68:3c:46:48:95:47:40:cd:c2:ea:6c:9f:4a:e4:a2:3b:b8:
94:33:6c:2f:c5:7c:de:51:d9:3a:c6:04:73:8e:03:0c:1a:11:
b0:9b:da:44:c5:f8:a1:17:c4:78:b1:76:3b:4e:75:40:17:f5:
96:e2:b2:03:97:44:3e:92:7c:bb:e5:14:0e:e1:5f:58:f9:92:
ea:08:ce:13:9a:1f:d6:1a:38:c4:05:9d:61:76:65:cf:f0:65:
1d:ee:52:53:cb:f0:09:b7:40:d0:1b:8d:40:cf:39:74:97:cd:
d3:e6:67:d7:87:39:cb:73:9d:61:91:53:22:dd:56:87:3e:07:
79:0d:47:06:d0:41:d2:be:61:a4:62:70:b8:ae:ab:60:ab:a6:
a2:31:5e:7c:1e:70:0b:fa:ee:80:07:26:97:1b:c4:47:d4:15:
b4:1f:74:99:29:da:76:cd:d8:38:ad:54:f1:0b:65:7e:b8:db:
c9:92:c3:85:fa:93:de:60:dd:8a:8e:9a:8a:c4:d0:ec:58:ca:
0c:c9:4f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:30:10 2025 by rpki-client