Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/CBH7F5PoSNR_heYrkAri-Ze5Nlk.roa
File: CBH7F5PoSNR_heYrkAri-Ze5Nlk.roa (raw, json)
Hash identifier: UlNCYbf1hETgMpoD/AhmKgDf2Eux887msLtjtGVob7g=
Subject key identifier: 08:11:FB:17:93:E8:48:D4:7F:85:E6:2B:90:0A:E2:F9:97:B9:36:59
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0195326A01EB82E073C522175A10868538FE
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/CBH7F5PoSNR_heYrkAri-Ze5Nlk.roa
Signing time: Sun 23 Feb 2025 10:46:02 +0000
ROA not before: Sun 23 Feb 2025 10:46:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20326
IP address blocks: 45.86.15.0/24 maxlen: 24
193.5.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Mar 2025 07:12:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:32:6a:01:eb:82:e0:73:c5:22:17:5a:10:86:85:38:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 23 10:46:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0811fb1793e848d47f85e62b900ae2f997b93659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:19:57:13:70:c8:5b:96:84:f4:50:76:49:e8:
1e:4f:05:2c:1f:26:0d:96:36:fe:c9:a0:51:aa:bf:
d7:83:6d:1e:ab:10:78:57:af:0c:8a:06:d2:e5:0a:
c1:23:9a:7f:a5:a6:8b:d9:ce:74:03:76:29:d5:fc:
d0:e7:2e:68:96:05:1a:67:6d:44:d2:c4:3e:f4:33:
20:5d:dc:e3:55:68:12:43:f7:6a:f6:6a:39:f6:70:
d3:96:07:3a:60:3e:4d:99:29:d2:26:38:b8:9b:6e:
55:5b:d6:3f:e3:36:8c:c6:10:24:5a:bc:c3:14:b0:
ff:9d:de:31:26:cb:02:a8:eb:0a:8b:50:5b:2e:64:
e0:a0:c2:e8:59:95:5c:b9:4d:36:fb:3f:53:4d:74:
e5:8d:43:81:d5:9c:85:03:b9:33:65:69:20:0f:a7:
7d:9b:e9:0c:c6:7b:8b:0b:78:d1:93:0e:c7:3f:2f:
b3:64:5b:78:3d:4b:68:c4:16:85:e8:cd:6c:a3:ee:
70:5b:98:46:54:45:db:27:d2:2a:61:42:0c:e7:f3:
49:d3:e5:01:e6:f7:49:61:0b:78:34:18:a9:50:25:
d9:d6:bf:70:a1:24:1e:e8:df:31:c8:2b:a2:74:31:
6d:46:1b:57:26:92:bc:99:d9:3f:5e:78:25:45:29:
70:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:11:FB:17:93:E8:48:D4:7F:85:E6:2B:90:0A:E2:F9:97:B9:36:59
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/CBH7F5PoSNR_heYrkAri-Ze5Nlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.15.0/24
193.5.251.0/24
Signature Algorithm: sha256WithRSAEncryption
27:f2:06:d5:a9:c7:5f:6e:ad:d5:f4:79:5c:90:3b:25:fa:20:
d7:c3:4f:4b:75:ef:a4:98:fb:bd:fd:f7:42:40:b5:88:04:e7:
65:c6:05:7f:cd:1c:28:e5:20:2b:02:87:88:eb:90:56:66:45:
e4:05:b0:ad:e9:3f:b3:3f:44:ad:0d:84:a1:1b:5e:4d:40:05:
8f:aa:6f:57:b6:35:a4:e3:59:d9:e5:80:3b:8b:e0:82:ae:fb:
81:0e:d4:70:43:3f:65:36:ec:b0:60:80:97:15:42:d0:bd:b0:
1b:d0:7e:b9:cf:69:61:4b:81:50:4d:87:fc:b3:6a:51:12:80:
30:36:cc:e7:5b:69:32:9b:66:6d:87:d7:a5:c2:fd:d7:19:c7:
64:00:fa:a3:e8:27:09:20:c6:98:99:d1:93:c7:1a:ab:dc:53:
c2:73:72:90:88:26:f9:a6:37:57:f8:35:31:7c:f0:38:a5:63:
cd:b1:2e:f9:1a:4e:95:7b:d1:f7:1b:45:5b:86:80:0c:66:50:
2c:87:bb:64:bd:0d:96:87:1b:24:22:0b:e8:35:54:70:e6:c7:
43:91:e4:dc:91:1a:b2:23:81:46:a8:12:07:70:72:d7:22:1d:
c9:31:0d:3a:ff:95:4c:f1:4d:28:4d:89:8b:14:62:51:bf:bf:
e8:dc:c4:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 11:32:35 2025 by rpki-client