Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/5RlRB_QiHS3bas99CwkFNTM_N2g.roa
File: 5RlRB_QiHS3bas99CwkFNTM_N2g.roa (raw, json)
Hash identifier: //R3Ds+r7if/qiDUTnqIGJvzjjixDqFMtMpJejV0mSg=
Subject key identifier: E5:19:51:07:F4:22:1D:2D:DB:6A:CF:7D:0B:09:05:35:33:3F:37:68
Certificate issuer: /CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Certificate serial: 01951D6488CC76E936D39D3B536EBA982A43
Authority key identifier: 12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/5RlRB_QiHS3bas99CwkFNTM_N2g.roa
Signing time: Wed 19 Feb 2025 08:48:02 +0000
ROA not before: Wed 19 Feb 2025 08:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 89.36.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Feb 2025 01:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1d:64:88:cc:76:e9:36:d3:9d:3b:53:6e:ba:98:2a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Validity
Not Before: Feb 19 08:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e5195107f4221d2ddb6acf7d0b090535333f3768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:12:3d:ee:43:2e:4d:f9:aa:da:03:10:f5:c6:
84:6e:fc:87:ec:93:f7:43:32:88:c5:07:05:c3:2f:
80:9b:d5:03:87:63:1c:8c:83:3a:f5:b1:8f:cc:f0:
d3:d6:b0:3b:6b:2d:fd:ef:90:7e:fe:b8:26:ae:9b:
8f:11:11:54:a8:58:87:99:f7:3d:e0:d3:58:40:e8:
67:1b:62:73:64:9f:cf:af:a3:3c:a3:90:7f:42:2f:
19:2e:94:e0:38:de:f0:ba:89:d7:09:f0:a1:2e:2c:
38:d1:b8:fe:39:4a:0d:19:07:5e:73:07:ae:a4:93:
50:f0:06:24:e4:56:c8:1d:d9:d3:28:85:6d:3e:bb:
13:2c:b8:75:eb:c6:c4:0e:63:e5:c7:60:5e:01:45:
1a:7d:49:af:a5:01:ed:e3:16:11:be:2c:c4:ab:23:
93:37:b7:44:74:1b:7b:5e:d7:d7:b0:2f:10:8a:92:
08:a8:82:8b:a3:16:c2:70:3a:a3:2d:4f:5c:e6:7d:
4a:c3:11:fa:cd:bd:64:87:e9:26:ae:e6:2e:13:fe:
70:c9:a7:6d:2b:ba:e3:a2:b1:bd:7f:44:a0:c3:7e:
1c:8d:e0:26:27:d4:ad:52:d9:15:cc:2f:df:9f:28:
e9:bd:e3:93:22:86:df:91:99:74:33:07:6e:48:3f:
af:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:19:51:07:F4:22:1D:2D:DB:6A:CF:7D:0B:09:05:35:33:3F:37:68
X509v3 Authority Key Identifier:
keyid:12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/5RlRB_QiHS3bas99CwkFNTM_N2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.35.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:cc:ac:6c:4b:8a:55:56:b2:0d:20:2c:59:0e:9f:70:d5:42:
41:f3:9b:af:88:11:34:55:92:b5:b7:7f:b6:c9:12:30:29:07:
3a:8f:1d:31:c8:fd:27:11:3d:5c:b7:33:b0:68:86:dd:e9:6f:
87:a7:e2:86:e1:cc:b8:ac:88:7c:cb:49:e7:ef:45:6f:8a:a6:
4b:16:c4:92:1f:4a:1f:10:8e:fd:32:b1:40:1b:a0:d3:cb:74:
ed:d6:51:6d:d1:67:1b:0e:fd:58:cf:59:e2:d1:3c:28:63:b2:
5b:70:3c:e5:f9:6e:82:73:98:f4:fe:2b:ce:89:57:78:ea:b3:
2c:1a:1c:03:26:a9:f0:e9:ae:ef:54:71:06:fd:61:0b:36:4f:
3f:0f:fa:e2:fe:e1:31:9a:16:0d:52:72:8a:05:14:ce:ef:02:
db:6a:8a:1a:0f:c3:19:ec:05:ba:ab:5a:58:17:8a:f1:37:36:
ef:14:56:8c:4b:97:3e:7f:f3:cd:16:4a:87:22:24:e6:c9:59:
ed:91:61:4b:9d:72:42:8f:44:1d:7c:aa:31:da:ae:cd:07:19:
ee:9c:c2:67:61:96:30:fe:07:24:9a:20:28:bc:a8:de:24:03:
83:a8:74:a5:0a:41:a0:9f:a7:6a:60:f2:29:18:24:d8:6d:0f:
f1:07:37:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:52:45 2025 by rpki-client