Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/mU_VH9ejsHyJkr0UvAnZWjp67RE.roa
File: mU_VH9ejsHyJkr0UvAnZWjp67RE.roa (raw, json)
Hash identifier: XNEkZNePpnQCA/s5GhkpR4Xe2rCnjkk66sUhB9Puzjs=
Subject key identifier: 99:4F:D5:1F:D7:A3:B0:7C:89:92:BD:14:BC:09:D9:5A:3A:7A:ED:11
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 01968033F36E6304EA2350281FB388E807D0
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/mU_VH9ejsHyJkr0UvAnZWjp67RE.roa
Signing time: Tue 29 Apr 2025 06:20:10 +0000
ROA not before: Tue 29 Apr 2025 06:20:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21859
IP address blocks: 45.11.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Apr 2025 09:11:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:33:f3:6e:63:04:ea:23:50:28:1f:b3:88:e8:07:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Apr 29 06:20:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=994fd51fd7a3b07c8992bd14bc09d95a3a7aed11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0d:09:38:43:73:21:fa:0c:ef:14:04:c6:60:
6f:36:d1:34:ad:a4:0e:ce:a4:23:be:6d:24:77:d5:
9e:c2:ef:59:d6:2c:ab:33:b8:ea:ce:9e:1d:db:4b:
88:66:b5:73:84:ec:a2:c3:7a:05:d6:e1:e9:ff:85:
bd:c4:93:e3:e7:25:09:cd:ae:b2:71:2d:ce:54:8f:
4d:6e:69:03:83:00:b0:a2:8e:f7:5e:8f:c6:43:4e:
69:4c:f5:4b:d7:9b:dd:7e:7f:58:64:2a:9a:08:46:
06:e1:9d:b6:aa:a4:8d:95:06:65:47:d2:c8:5a:26:
01:f4:84:bd:fe:59:80:39:0a:fa:2d:41:0b:eb:b2:
9e:07:e6:8b:ad:90:c7:b7:e4:7e:28:f0:f3:8e:8e:
aa:d0:fd:b7:64:16:09:63:07:c5:35:94:f0:eb:16:
c9:40:b4:43:12:19:86:be:14:11:b7:a4:89:b9:01:
a6:da:c9:d5:5d:c0:5a:6c:c6:91:9a:6f:e9:ed:cd:
06:c0:03:6b:6d:d8:aa:73:60:ba:44:76:1f:36:dd:
c6:5f:52:e6:b3:8a:6a:99:4a:b0:57:7e:57:99:32:
c4:8f:93:3d:26:fe:da:df:bf:ec:18:5c:2f:ab:39:
16:56:e2:a4:31:5c:12:4a:ad:b6:09:2d:bf:53:d9:
91:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:4F:D5:1F:D7:A3:B0:7C:89:92:BD:14:BC:09:D9:5A:3A:7A:ED:11
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/mU_VH9ejsHyJkr0UvAnZWjp67RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.175.0/24
Signature Algorithm: sha256WithRSAEncryption
83:b6:c2:d5:48:be:aa:df:61:9b:a2:92:ef:62:5c:71:ba:d3:
7f:34:cd:8c:4c:90:60:af:bb:23:43:83:1d:76:10:44:c4:8d:
d0:a0:13:3a:14:b9:ef:76:e6:61:a2:c8:7f:e9:b1:47:d2:cb:
83:67:96:d2:c6:d8:64:9d:f0:b7:f9:c3:b0:5c:8d:dd:e0:82:
01:4a:5f:02:35:27:18:46:87:a7:f2:0f:9f:80:cd:3b:e4:3a:
97:ed:5e:57:6c:4a:c7:0a:d6:d0:d4:fb:83:9e:e8:d6:38:84:
94:c0:f8:89:4b:aa:a8:e7:38:69:f8:09:a4:41:ee:79:80:91:
12:a4:0e:43:48:18:5e:78:9a:09:aa:38:b8:ec:88:d9:08:ae:
ae:a3:ab:41:e9:be:0b:43:a8:5f:64:2b:19:fa:53:87:38:d6:
1d:58:7a:85:70:25:93:64:1f:81:58:f1:b8:3d:56:88:ce:ab:
c6:5a:64:6a:cb:d0:b5:3d:29:a0:0c:7a:68:50:e4:f6:d7:6a:
c7:c6:64:bb:69:54:9a:66:be:cd:22:ca:78:a4:f3:13:7a:03:
e1:1a:f2:63:b5:06:92:c3:c8:2a:29:35:ca:5a:1f:6f:b7:c1:
cb:e4:7a:52:59:ec:9e:9f:45:46:1b:82:84:c6:be:c6:28:ee:
11:96:1d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 06:15:04 2025 by rpki-client