Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/vewYd-GIRjLnfgVHrFiO2A_NY80.roa
File: vewYd-GIRjLnfgVHrFiO2A_NY80.roa (raw, json)
Hash identifier: BYOQ/woJPh6+IDQDxx2K08LVnPlQDfTJ8gPMyx1Zw9A=
Subject key identifier: BD:EC:18:77:E1:88:46:32:E7:7E:05:47:AC:58:8E:D8:0F:CD:63:CD
Certificate issuer: /CN=051f29462e7a7da7eb5f45da7873f14e403fe3ab
Certificate serial: 01954CE6AB58A5ADA06338DC562640CA8F67
Authority key identifier: 05:1F:29:46:2E:7A:7D:A7:EB:5F:45:DA:78:73:F1:4E:40:3F:E3:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BR8pRi56fafrX0XaeHPxTkA_46s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/vewYd-GIRjLnfgVHrFiO2A_NY80.roa
Signing time: Fri 28 Feb 2025 14:12:20 +0000
ROA not before: Fri 28 Feb 2025 14:12:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 138156
IP address blocks: 188.209.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Mar 2025 13:28:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:4c:e6:ab:58:a5:ad:a0:63:38:dc:56:26:40:ca:8f:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=051f29462e7a7da7eb5f45da7873f14e403fe3ab
Validity
Not Before: Feb 28 14:12:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bdec1877e1884632e77e0547ac588ed80fcd63cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ee:ed:d2:c5:ce:d0:1b:4b:98:b1:85:21:c9:
5c:a3:e6:41:06:37:bc:01:7b:e2:d0:5c:77:96:fb:
b9:b3:a8:d4:d8:a0:78:a1:0c:67:1f:ef:3b:96:48:
6a:96:ce:45:bc:78:82:13:05:e4:0d:de:17:9e:4d:
e2:3e:4b:27:cf:8d:8a:aa:df:7f:01:03:14:3e:f1:
2d:8c:8d:10:37:e6:a2:2f:b7:f9:57:58:a7:57:fe:
c9:7b:10:24:89:7d:f9:79:3a:54:b9:5b:7c:a5:36:
75:23:4b:88:3c:9e:52:1a:07:b2:76:55:07:9a:f0:
7f:e2:d9:eb:40:a0:dd:05:83:6a:25:3e:6f:3c:9b:
d2:54:bd:b4:a3:b6:6a:08:46:f6:b5:c1:18:04:d2:
99:7e:6d:bd:40:cf:56:30:ce:a6:54:86:d8:5a:4c:
b8:45:c3:87:66:35:d2:fe:4c:5e:d7:32:60:57:55:
00:3c:d6:b0:20:86:e5:a7:b0:6b:2e:62:ae:7e:64:
9b:f1:68:47:c1:4e:5a:04:ad:92:07:94:21:95:2f:
aa:2b:2f:08:f5:d4:ae:86:63:b2:d6:63:a3:ab:a5:
3e:af:df:75:25:ae:66:50:30:d2:99:aa:b6:01:c0:
0e:8c:19:62:09:1a:47:99:5e:2c:06:6f:c1:3c:62:
b6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:EC:18:77:E1:88:46:32:E7:7E:05:47:AC:58:8E:D8:0F:CD:63:CD
X509v3 Authority Key Identifier:
keyid:05:1F:29:46:2E:7A:7D:A7:EB:5F:45:DA:78:73:F1:4E:40:3F:E3:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BR8pRi56fafrX0XaeHPxTkA_46s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/vewYd-GIRjLnfgVHrFiO2A_NY80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/395328-f461-44b7-b031-3f8b55da1ac4/1/BR8pRi56fafrX0XaeHPxTkA_46s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.130.0/24
Signature Algorithm: sha256WithRSAEncryption
86:b0:94:ec:59:f1:e8:68:98:ef:ae:49:17:65:e9:80:92:d8:
ba:06:6e:7e:0e:54:d5:79:ac:ad:55:7e:32:f6:4d:9c:cc:e8:
bf:cb:3b:4a:17:fd:a8:5e:97:77:13:03:5d:4a:1b:28:64:33:
40:ca:82:67:20:f4:5b:c8:72:6e:7e:e1:be:31:4c:fb:f8:06:
1c:7e:48:0b:ce:59:5f:76:9c:05:b6:a6:18:23:b4:53:5e:f7:
0b:aa:9c:00:34:3d:c5:5a:90:a5:67:c6:9c:63:01:9b:ac:62:
df:aa:bd:51:48:88:7a:1f:6c:b5:8c:58:f4:28:da:68:f5:ca:
1a:56:f0:59:8f:67:9e:50:31:6b:a1:45:25:e6:b4:ae:55:2a:
8e:4c:0b:c8:9c:c3:cf:60:5c:b3:3f:74:73:52:f9:88:36:c4:
ab:62:c5:aa:64:a4:11:e6:bd:86:ee:7f:f0:fc:c1:c8:ae:87:
8a:52:dc:8e:30:ec:67:01:7c:4d:56:d2:52:e3:76:dc:d6:06:
78:6c:8f:85:65:c3:80:6e:b1:05:a1:03:22:ce:75:4d:f3:0b:
6c:9e:3c:d2:4e:ea:e0:9e:df:5a:86:01:0a:bb:76:81:cb:67:
78:db:f4:eb:eb:4f:7e:94:ef:dc:07:23:5f:9b:a2:e7:58:8c:
61:18:f3:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:25:51 2025 by rpki-client