Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/PlDLrD2HxU4ngMOV1269U4BBpMQ.roa
File: PlDLrD2HxU4ngMOV1269U4BBpMQ.roa (raw, json)
Hash identifier: FB1sdD6f/BeVXBYDWMeDZt7Dh9NmxsxK6w5pYLHn7Hk=
Subject key identifier: 3E:50:CB:AC:3D:87:C5:4E:27:80:C3:95:D7:6E:BD:53:80:41:A4:C4
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 019422200A1907AF8B963C50065B3A750735
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/PlDLrD2HxU4ngMOV1269U4BBpMQ.roa
Signing time: Wed 01 Jan 2025 13:48:32 +0000
ROA not before: Wed 01 Jan 2025 13:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5065
IP address blocks: 194.36.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Jan 2025 18:26:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:0a:19:07:af:8b:96:3c:50:06:5b:3a:75:07:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jan 1 13:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3e50cbac3d87c54e2780c395d76ebd538041a4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:29:06:31:f1:14:20:9e:56:a6:78:f7:9c:bc:
18:e8:66:8f:d6:d4:b3:cf:c9:8a:8a:f5:53:26:5f:
45:9a:b2:c5:5b:00:3a:39:95:31:c8:a9:95:37:5d:
ee:07:0b:1a:eb:ff:61:13:8f:36:a0:b2:50:03:a9:
ad:88:b7:84:b5:fd:cd:56:fe:8d:00:6e:1b:64:d1:
1e:0a:e2:a2:3f:cb:6d:21:e8:86:98:02:34:63:4a:
5b:1f:f5:f7:44:91:9a:76:51:9a:ae:0a:da:57:4b:
2c:65:1a:11:12:5b:20:66:e3:f6:3b:7a:8d:de:a0:
74:e3:13:23:35:3d:1e:24:e5:ab:71:46:b4:e4:28:
aa:a8:62:88:90:97:b5:4c:60:0a:01:e3:82:ba:7d:
72:eb:6c:70:3d:6e:ea:2d:a6:42:ff:e3:6f:b7:65:
01:c8:2d:85:55:0c:00:bd:8d:1d:8a:2d:40:7d:29:
94:cd:a5:17:44:cb:ae:76:09:1d:93:2e:4d:39:0c:
97:50:c0:1e:5a:26:0c:79:db:bd:94:5d:85:f7:07:
99:13:57:1c:e0:04:db:35:e1:da:67:31:cc:9d:b0:
45:d2:40:f3:29:86:5b:a5:a3:db:5c:30:6b:48:ba:
dd:db:b2:ba:27:32:22:08:c0:22:fd:3d:24:64:04:
c7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:50:CB:AC:3D:87:C5:4E:27:80:C3:95:D7:6E:BD:53:80:41:A4:C4
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/PlDLrD2HxU4ngMOV1269U4BBpMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.34.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:4c:2f:af:22:31:5b:9d:c9:80:17:06:22:f4:78:1d:48:b5:
56:e2:12:8b:0b:24:b8:9a:0d:4f:fd:27:54:89:b7:cd:16:ef:
34:ad:53:22:3b:c1:4c:c4:38:c0:ea:d8:d2:81:bb:77:21:12:
d7:49:16:b9:3f:02:20:a4:49:3b:ee:fb:9e:92:f1:c4:54:76:
61:00:8a:a9:8a:98:df:fc:27:cb:9b:9e:54:41:0c:bb:b4:a7:
a3:77:f2:82:aa:10:ff:20:b6:83:97:38:f9:e9:1b:15:1e:f0:
45:20:66:21:d3:39:4c:88:77:7c:d0:a2:ae:cc:15:11:8a:66:
10:50:93:12:15:b9:a6:6c:54:8f:d4:09:0d:55:61:39:b7:e9:
de:35:0f:e3:22:28:47:cc:39:91:ab:66:ff:64:f2:91:4c:7f:
8c:c7:80:6b:a2:0d:b9:50:bd:e3:59:30:0f:eb:0f:6e:86:13:
f5:d0:bc:9f:40:44:6a:88:af:2b:81:1e:60:0d:4f:b1:e0:56:
77:d7:db:cc:83:ba:60:51:2d:9b:e8:a6:f5:4c:cc:3c:d1:50:
35:ec:0e:59:20:b8:cc:b7:84:f0:65:9f:4a:2f:37:11:8e:d6:
ce:9c:9a:6a:93:76:c4:67:af:d8:70:8f:03:0b:79:f7:2a:0f:
77:14:f1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 05:23:53 2025 by rpki-client