Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/ZJhPmrvvmpotYE0JiJpnkpXOKeA.roa
File: ZJhPmrvvmpotYE0JiJpnkpXOKeA.roa (raw, json)
Hash identifier: 1OIMGKqM6Ux3FEdFZXHyEPxqnaVMgHqolDmcSc5E3xI=
Subject key identifier: 64:98:4F:9A:BB:EF:9A:9A:2D:60:4D:09:88:9A:67:92:95:CE:29:E0
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 019814C0A514C61CC1F2CF950FEB7C404D71
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/ZJhPmrvvmpotYE0JiJpnkpXOKeA.roa
Signing time: Wed 16 Jul 2025 19:40:26 +0000
ROA not before: Wed 16 Jul 2025 19:40:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64432
IP address blocks: 185.161.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Jul 2025 08:57:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:14:c0:a5:14:c6:1c:c1:f2:cf:95:0f:eb:7c:40:4d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Jul 16 19:40:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=64984f9abbef9a9a2d604d09889a679295ce29e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f6:a1:29:58:04:48:16:8f:0c:b5:41:5e:0f:
99:1a:bd:71:18:13:c9:2c:9b:ce:92:31:e1:cf:77:
36:35:04:16:63:11:42:1f:d1:18:e2:88:85:2a:6c:
33:0a:f0:10:90:ac:37:ec:16:2a:03:80:06:15:84:
d0:a1:91:76:40:04:1c:28:cb:7e:63:28:f3:c5:ad:
c4:8a:c9:c6:20:87:92:be:bb:03:be:a6:70:42:51:
25:60:df:b7:49:16:e0:f4:f9:95:54:2f:a1:42:6e:
9f:88:fb:2a:18:9b:d9:fc:96:ba:79:c7:2f:fa:4d:
92:90:c4:eb:79:f2:45:ba:0f:8f:b9:ef:7a:3a:fe:
5d:e2:20:5f:08:b0:33:8e:e5:f5:5b:3b:de:19:56:
6a:93:ad:fe:4f:b8:a1:a0:d0:57:30:f3:6c:85:d1:
d8:be:b9:46:de:b7:82:fb:4a:c1:b0:a4:3f:3d:2f:
86:2a:8a:1a:b4:c6:c3:4a:be:7e:14:14:db:c3:2d:
b4:4e:44:74:f9:93:8f:d8:9c:61:14:c1:99:52:80:
76:45:78:45:71:34:2b:b5:7a:d7:21:e0:39:fe:e7:
86:9b:72:9c:f2:90:5a:f7:d3:46:0c:a3:46:e6:69:
ba:34:bf:13:c3:49:90:35:66:36:9b:5a:36:9d:ee:
66:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:98:4F:9A:BB:EF:9A:9A:2D:60:4D:09:88:9A:67:92:95:CE:29:E0
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/ZJhPmrvvmpotYE0JiJpnkpXOKeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.79.0/24
Signature Algorithm: sha256WithRSAEncryption
81:ce:56:54:65:ee:00:fa:b2:94:32:47:d7:c1:7b:b1:7f:b5:
3a:1a:b9:a1:84:57:8c:47:77:24:30:29:77:f3:45:57:62:c6:
2c:b5:96:7e:93:3a:b0:84:63:01:0b:aa:db:87:a0:db:30:10:
f3:8e:b2:66:7b:5f:38:2c:4d:76:dd:a6:ed:71:f6:b7:b8:b7:
7c:53:62:e2:a1:d2:ed:89:b5:30:95:02:a8:70:9e:7d:ee:87:
9d:39:c1:13:7e:4b:21:9f:75:c1:7b:1e:06:5f:08:8b:ff:48:
67:b8:28:d0:56:05:dd:42:4e:4b:bc:d7:68:46:f2:56:4c:d0:
90:c3:42:7b:b0:5e:96:a1:58:32:a8:b4:07:1c:5c:00:a8:17:
1c:38:1c:58:96:74:96:29:9f:b4:dc:e4:9d:0d:c2:56:79:32:
96:81:10:7e:1b:47:ce:74:61:a7:e5:c4:c1:8b:bf:4f:a2:dc:
18:2c:fa:6d:b5:2a:bc:0c:ff:5a:85:9c:cc:ba:ad:d7:3f:e0:
46:3a:af:68:e3:c5:96:4c:fe:66:ff:09:ff:e4:14:7e:22:a2:
f1:25:c9:f6:b7:ec:f5:e2:f9:fe:9a:32:50:41:d5:e8:32:22:
e8:fe:f9:4c:38:41:02:9b:2b:10:c7:40:f7:3b:ec:19:cd:29:
00:32:5b:f1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZgUwKUUxhzB8s+VD+t8QE1xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjUwNzE2MTk0MDI2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDk4NGY5YWJiZWY5YTlhMmQ2MDRkMDk4ODlhNjc5Mjk1Y2UyOWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPahKVgESBaPDLVBXg+ZGr1xGBPJ
LJvOkjHhz3c2NQQWYxFCH9EY4oiFKmwzCvAQkKw37BYqA4AGFYTQoZF2QAQcKMt+
Yyjzxa3EisnGIIeSvrsDvqZwQlElYN+3SRbg9PmVVC+hQm6fiPsqGJvZ/Ja6eccv
+k2SkMTrefJFug+Pue96Ov5d4iBfCLAzjuX1WzveGVZqk63+T7ihoNBXMPNshdHY
vrlG3reC+0rBsKQ/PS+GKooatMbDSr5+FBTbwy20TkR0+ZOP2JxhFMGZUoB2RXhF
cTQrtXrXIeA5/ueGm3Kc8pBa99NGDKNG5mm6NL8Tw0mQNWY2m1o2ne5m+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGSYT5q775qaLWBNCYiaZ5KVzingMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvWkpoUG1ydnZtcG90WUUwSmlKcG5rcFhPS2VBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaFPMA0G
CSqGSIb3DQEBCwUAA4IBAQCBzlZUZe4A+rKUMkfXwXuxf7U6GrmhhFeMR3ckMCl3
80VXYsYstZZ+kzqwhGMBC6rbh6DbMBDzjrJme184LE123abtcfa3uLd8U2LiodLt
ibUwlQKocJ597oedOcETfkshn3XBex4GXwiL/0hnuCjQVgXdQk5LvNdoRvJWTNCQ
w0J7sF6WoVgyqLQHHFwAqBccOBxYlnSWKZ+03OSdDcJWeTKWgRB+G0fOdGGn5cTB
i79PotwYLPpttSq8DP9ahZzMuq3XP+BGOq9o48WWTP5m/wn/5BR+IqLxJcn2t+z1
4vn+mjJQQdXoMiLo/vlMOEECmysQx0D3O+wZzSkAMlvx
-----END CERTIFICATE-----
Generated at Sun Jul 27 15:01:32 2025 by rpki-client