Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/DmqhPBxPfXPbj-tzbt1XgB7JR_Y.roa
File: DmqhPBxPfXPbj-tzbt1XgB7JR_Y.roa (raw, json)
Hash identifier: leu/xzgGcE+5/5RcrFxpKVFIYrzVC47juLaXvOXhvYU=
Subject key identifier: 0E:6A:A1:3C:1C:4F:7D:73:DB:8F:EB:73:6E:DD:57:80:1E:C9:47:F6
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 01964530D6AF511EE9F3E2F2B1B0283F7BD8
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/DmqhPBxPfXPbj-tzbt1XgB7JR_Y.roa
Signing time: Thu 17 Apr 2025 19:19:10 +0000
ROA not before: Thu 17 Apr 2025 19:19:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57523
IP address blocks: 185.42.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 May 2025 08:07:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:30:d6:af:51:1e:e9:f3:e2:f2:b1:b0:28:3f:7b:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Apr 17 19:19:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e6aa13c1c4f7d73db8feb736edd57801ec947f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fe:da:22:7e:63:41:6c:7d:da:3b:b7:2a:ca:
af:99:e0:e8:ed:f4:74:e3:6a:94:1b:31:bb:2f:a7:
77:3d:09:47:ed:85:67:19:db:b2:d1:0e:f0:51:45:
02:70:a9:dd:08:57:aa:65:93:c4:27:f4:da:68:81:
47:9b:e7:3d:da:ba:d0:28:d8:05:ec:6d:5e:ab:b7:
81:c5:aa:e3:90:4c:2b:90:66:6b:cf:9b:32:8c:67:
f5:c6:95:8d:42:fe:8d:4c:4e:4b:6c:a0:0d:f4:cf:
e7:8a:19:81:20:00:9c:3a:26:3d:48:df:4f:c6:ff:
9b:5b:8a:d5:a8:d3:cc:77:e1:9a:df:75:15:d8:71:
48:1f:c3:dc:19:92:dd:39:2d:2a:3b:47:47:bc:62:
17:3d:65:b5:de:8b:81:c9:43:78:7e:d6:8f:ce:d1:
8d:0e:e8:7b:62:a8:2a:3d:33:89:c3:c4:f8:bd:ac:
af:73:85:fe:48:d2:25:ff:c4:f6:b6:fc:1e:49:ef:
2d:ee:33:2f:a1:b5:81:89:d8:69:da:f7:46:7d:e3:
61:f4:bf:35:da:41:bc:5b:9a:d5:b3:b1:4f:5c:44:
f7:a1:3e:21:49:68:4e:e9:b6:5b:f3:bf:90:45:f3:
23:88:53:0b:3a:24:27:16:aa:6b:fc:44:51:43:20:
88:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6A:A1:3C:1C:4F:7D:73:DB:8F:EB:73:6E:DD:57:80:1E:C9:47:F6
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/DmqhPBxPfXPbj-tzbt1XgB7JR_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.12.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:c1:2f:48:d3:7c:ee:9f:0e:0d:56:c4:66:84:53:2d:a6:50:
fe:2b:20:18:f9:fd:dd:50:53:45:9f:a9:72:1b:d4:5b:86:27:
7b:d3:47:d7:a9:9e:62:49:85:3e:b7:83:e8:a1:33:f4:3c:06:
c1:18:bb:63:cd:99:d5:8f:60:8b:d7:48:ba:a7:ba:a1:2b:c2:
f2:de:00:d7:c9:6e:0e:a5:1f:68:0b:eb:c8:98:72:20:22:9a:
26:8f:f9:ac:3c:7e:ea:eb:65:81:41:2a:14:8e:81:52:5d:57:
e0:41:cb:a8:e7:24:2f:f6:5a:52:7b:40:99:95:e1:34:f8:d2:
6c:43:6c:f5:e2:15:5a:bd:2b:9d:a2:64:28:ac:b2:07:dc:99:
94:54:8a:a7:63:ed:a8:9d:e7:0a:b7:ac:9f:fa:bf:cc:48:4b:
6a:f1:7e:40:b7:c8:a7:99:d4:69:84:c1:fd:07:61:6b:e7:39:
49:ee:88:22:ed:32:c9:78:1f:37:f6:d3:4d:39:4c:27:61:84:
af:c8:46:4e:b3:33:6f:cd:9d:14:d0:ff:a7:d2:43:0f:de:9b:
3d:a8:12:2b:a7:d6:9e:8e:b0:d9:f1:ea:9c:6a:aa:c7:05:a7:
a7:29:90:70:a4:f6:da:ea:12:23:e6:d2:48:47:dc:f4:4e:45:
a8:db:f9:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 20:56:37 2025 by rpki-client