Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/q5hV0y0iSJDiN_ZSupUJIz83YoA.roa
File: q5hV0y0iSJDiN_ZSupUJIz83YoA.roa (raw, json)
Hash identifier: Q7R1GBHAkX0If3bDSJNvozZQ2mhlz+JEX9kZqrqz8S0=
Subject key identifier: AB:98:55:D3:2D:22:48:90:E2:37:F6:52:BA:95:09:23:3F:37:62:80
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0196929881F33BFE8B7B8E81265FD814D7EC
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/q5hV0y0iSJDiN_ZSupUJIz83YoA.roa
Signing time: Fri 02 May 2025 20:03:10 +0000
ROA not before: Fri 02 May 2025 20:03:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207590
IP address blocks: 46.38.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 May 2025 07:39:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:92:98:81:f3:3b:fe:8b:7b:8e:81:26:5f:d8:14:d7:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: May 2 20:03:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ab9855d32d224890e237f652ba9509233f376280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f8:2e:83:b6:7f:c8:b2:ae:e1:96:ad:ac:32:
65:81:70:37:f8:b6:a3:39:d4:4f:23:8b:df:53:23:
ba:a9:98:cc:f1:70:4e:b0:38:9d:eb:86:c3:5f:6e:
49:90:c7:26:cc:e1:3c:eb:bf:2f:31:a9:4d:f2:7b:
7b:6e:2d:97:40:96:b4:ce:76:cb:d4:af:f8:f4:4b:
6f:e1:a5:eb:7e:82:22:21:46:ec:2b:42:24:1f:a5:
1c:64:8d:07:62:4f:d1:ac:90:92:d2:46:26:a9:ce:
28:7a:6f:8a:16:75:87:52:6a:9c:54:cf:9a:c9:77:
ed:db:51:7a:04:c2:97:bb:4f:7b:0f:9b:fa:1d:2f:
2a:7f:a7:70:2c:63:3e:22:fa:11:62:ce:5d:4f:d3:
f8:a9:3c:b8:4a:6c:a2:82:bb:c9:66:9d:98:b4:b1:
a1:9b:46:27:66:cc:f0:f9:a9:26:bf:87:db:05:ea:
7d:2c:6d:0b:9c:6b:c8:95:dd:47:94:4a:c0:a3:d2:
b2:cb:cb:db:29:68:e5:b9:d6:f9:2f:29:af:b7:4b:
20:2a:7f:70:7d:39:bc:9d:74:b2:99:81:42:9a:39:
bb:ad:ee:83:81:8f:52:33:5e:c4:78:46:6e:95:58:
19:d2:69:86:a4:72:e5:35:0b:95:c5:5d:d7:93:57:
00:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:98:55:D3:2D:22:48:90:E2:37:F6:52:BA:95:09:23:3F:37:62:80
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/q5hV0y0iSJDiN_ZSupUJIz83YoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.157.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:8c:2c:4e:17:01:82:17:8e:33:7a:82:0f:ba:a7:4b:b9:a5:
bf:a7:84:6d:47:42:c2:c1:e2:b2:8a:0e:63:b2:4a:08:c4:8e:
ba:99:c2:f2:43:18:e4:8c:59:04:f6:7a:9e:29:3a:ed:64:ef:
36:81:18:d6:b2:1d:48:cc:be:00:f3:53:44:d1:c6:86:59:88:
65:b2:03:fc:df:5f:79:87:13:88:49:5a:28:f2:10:4b:ac:14:
54:bb:d0:c2:54:8d:1f:30:5f:eb:9f:f3:80:81:7e:39:c2:83:
d9:ae:45:c8:0c:5a:ef:cd:6a:93:6a:c0:60:61:55:18:5a:37:
b3:5f:89:df:8b:db:1a:20:06:c0:f3:dd:f2:ba:77:22:90:88:
bb:bf:9b:79:74:57:d3:cf:18:1c:28:3d:70:ec:a7:7c:77:f1:
22:db:d7:b5:80:31:d0:9d:1a:8c:b8:33:d3:98:4f:10:52:57:
ad:b0:bd:a4:f5:4c:c7:07:c7:40:00:2f:d3:90:48:f9:db:c1:
14:7e:9f:11:8b:4a:e1:6a:1b:1f:70:d3:8a:ac:7d:81:90:33:
3e:44:77:3e:ac:17:b2:73:50:0e:b6:91:be:87:47:fc:a0:23:
2f:aa:07:a1:26:3c:6c:80:8d:6e:b5:32:c2:ed:6b:98:aa:68:
ad:ad:aa:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:30:44 2025 by rpki-client