Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/Ab_EMDOIu3nTXojdIg19icNjpwE.roa
File: Ab_EMDOIu3nTXojdIg19icNjpwE.roa (raw, json)
Hash identifier: l7SyrwC6Mvj0Yls7Lm4c7FPOPoyp+QrpQ7ds3PhBWLc=
Subject key identifier: 01:BF:C4:30:33:88:BB:79:D3:5E:88:DD:22:0D:7D:89:C3:63:A7:01
Certificate issuer: /CN=16055801b775e774306321455fd463fbd9273c4c
Certificate serial: 019585869C9F813AA7E2C010EFCE206B9DAF
Authority key identifier: 16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/Ab_EMDOIu3nTXojdIg19icNjpwE.roa
Signing time: Tue 11 Mar 2025 14:05:46 +0000
ROA not before: Tue 11 Mar 2025 14:05:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 144.56.0.0/24 maxlen: 24
144.56.8.0/24 maxlen: 24
144.56.11.0/24 maxlen: 24
144.56.13.0/24 maxlen: 24
144.56.20.0/24 maxlen: 24
144.56.21.0/24 maxlen: 24
144.56.22.0/24 maxlen: 24
144.56.23.0/24 maxlen: 24
144.56.24.0/24 maxlen: 24
144.56.25.0/24 maxlen: 24
144.56.27.0/24 maxlen: 24
144.56.28.0/24 maxlen: 24
144.56.29.0/24 maxlen: 24
144.56.31.0/24 maxlen: 24
144.56.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Mar 2025 16:05:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:85:86:9c:9f:81:3a:a7:e2:c0:10:ef:ce:20:6b:9d:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16055801b775e774306321455fd463fbd9273c4c
Validity
Not Before: Mar 11 14:05:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=01bfc4303388bb79d35e88dd220d7d89c363a701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3b:f6:b7:0c:85:d6:7b:b3:d8:ad:9d:a3:3f:
8c:18:41:ad:09:11:86:4b:e3:d3:90:7c:3d:5a:d5:
7c:61:d7:74:3e:23:e1:db:a8:00:07:5a:30:f8:61:
7e:36:a5:7e:c1:33:f8:2d:4d:ef:25:c3:c3:ac:08:
b3:f9:aa:e6:bd:01:3d:39:fa:f8:1b:8d:61:f2:0e:
ee:ef:e9:c6:e8:5c:a4:ea:6a:4d:0c:7b:02:f3:b3:
ca:fc:85:15:7f:87:a6:06:d8:da:2b:10:23:da:ca:
a2:42:1d:2c:66:6e:43:14:c3:58:8e:5c:bf:52:c1:
3f:3f:80:60:c2:b6:10:ba:7a:dd:dc:de:64:73:43:
fc:6e:3d:43:4f:d2:af:97:fc:c5:49:39:53:39:42:
19:aa:99:67:3d:0c:e9:e5:2c:3b:0e:f4:17:ea:8c:
9e:46:f7:c8:1f:04:00:ae:70:68:4b:61:7b:60:a8:
9b:d7:1e:62:7c:2f:12:12:e0:6c:de:8a:91:3b:da:
22:91:ca:d8:7e:f8:a4:60:ce:dd:42:0f:87:74:cd:
3e:6b:0a:96:93:ef:ef:d4:96:a6:97:a8:d2:9d:27:
6a:9d:9f:69:85:f4:6f:89:05:16:30:69:9f:bc:c6:
6b:2c:f4:cb:20:6b:4e:6f:b6:f8:d4:8f:1d:af:12:
fd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BF:C4:30:33:88:BB:79:D3:5E:88:DD:22:0D:7D:89:C3:63:A7:01
X509v3 Authority Key Identifier:
keyid:16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/Ab_EMDOIu3nTXojdIg19icNjpwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.56.0.0/24
144.56.8.0/24
144.56.11.0/24
144.56.13.0/24
144.56.20.0-144.56.25.255
144.56.27.0-144.56.29.255
144.56.31.0-144.56.32.255
Signature Algorithm: sha256WithRSAEncryption
2b:47:d1:3e:ba:e1:ed:27:3f:17:52:d4:c8:d4:e2:33:a6:7e:
8e:86:73:77:cb:11:fa:3e:0a:fe:f1:ed:66:2a:43:6d:46:ba:
d9:0b:74:61:3c:0e:2e:50:63:94:0d:1b:18:d6:b8:4d:55:64:
e4:84:82:51:e7:59:35:f8:75:be:e6:f0:bc:20:96:01:fe:f3:
92:78:9c:38:5e:1b:9e:50:6c:5a:a8:0c:f5:97:e4:33:3d:dc:
87:c2:82:3e:72:42:6e:0d:50:ee:0b:03:ab:fc:3f:70:3d:4e:
6e:ea:c3:c1:b2:51:4d:3c:fc:20:83:b8:4a:8f:f5:0c:b5:ca:
89:f9:6f:37:28:6e:85:19:30:67:f0:d0:57:d2:8a:14:80:1a:
27:50:56:9b:a8:43:f8:53:cf:07:43:0e:d2:88:7f:61:fe:ca:
62:3c:ec:85:dc:c5:4d:0c:3e:80:40:33:e9:73:8c:7e:ef:96:
ca:1e:30:0a:de:4e:d4:92:66:10:4c:44:e9:c4:a2:d9:00:6b:
f1:e4:0c:e5:1e:e7:c8:9c:ad:ad:86:6e:08:ab:46:43:74:ff:
fb:30:c0:0a:69:15:2f:31:f4:05:c2:e1:f4:0c:50:b6:cf:d0:
06:06:b4:2b:3e:f6:d0:0d:f6:3e:52:01:55:80:bb:48:8a:e8:
fa:41:7f:12
-----BEGIN CERTIFICATE-----
MIIFOTCCBCGgAwIBAgISAZWFhpyfgTqn4sAQ784ga52vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2MDU1ODAxYjc3NWU3NzQzMDYzMjE0NTVmZDQ2M2ZiZDky
NzNjNGMwHhcNMjUwMzExMTQwNTQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMWJmYzQzMDMzODhiYjc5ZDM1ZTg4ZGQyMjBkN2Q4OWMzNjNhNzAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTv2twyF1nuz2K2doz+MGEGtCRGG
S+PTkHw9WtV8Ydd0PiPh26gAB1ow+GF+NqV+wTP4LU3vJcPDrAiz+armvQE9Ofr4
G41h8g7u7+nG6Fyk6mpNDHsC87PK/IUVf4emBtjaKxAj2sqiQh0sZm5DFMNYjly/
UsE/P4BgwrYQunrd3N5kc0P8bj1DT9Kvl/zFSTlTOUIZqplnPQzp5Sw7DvQX6oye
RvfIHwQArnBoS2F7YKib1x5ifC8SEuBs3oqRO9oikcrYfvikYM7dQg+HdM0+awqW
k+/v1Jaml6jSnSdqnZ9phfRviQUWMGmfvMZrLPTLIGtOb7b41I8drxL92QIDAQAB
o4ICRTCCAkEwHQYDVR0OBBYEFAG/xDAziLt5016I3SINfYnDY6cBMB8GA1UdIwQY
MBaAFBYFWAG3ded0MGMhRV/UY/vZJzxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgt
MTM1NzE3ZWYzODhhLzEvQWJfRU1ET0l1M25UWG9qZElnMTlpY05qcHdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgtMTM1NzE3ZWYzODhh
LzEvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQAkDgAAwQA
kDgIAwQAkDgLAwQAkDgNMAwDBAKQOBQDBAGQOBgwDAMEAJA4GwMEAZA4HDAMAwQA
kDgfAwQAkDggMA0GCSqGSIb3DQEBCwUAA4IBAQArR9E+uuHtJz8XUtTI1OIzpn6O
hnN3yxH6Pgr+8e1mKkNtRrrZC3RhPA4uUGOUDRsY1rhNVWTkhIJR51k1+HW+5vC8
IJYB/vOSeJw4XhueUGxaqAz1l+QzPdyHwoI+ckJuDVDuCwOr/D9wPU5u6sPBslFN
PPwgg7hKj/UMtcqJ+W83KG6FGTBn8NBX0ooUgBonUFabqEP4U88HQw7SiH9h/spi
POyF3MVNDD6AQDPpc4x+75bKHjAK3k7UkmYQTETpxKLZAGvx5AzlHufInK2thm4I
q0ZDdP/7MMAKaRUvMfQFwuH0DFC2z9AGBrQrPvbQDfY+UgFVgLtIiuj6QX8S
-----END CERTIFICATE-----
Generated at Thu Apr 17 18:19:24 2025 by rpki-client