Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/abbb9f-4f10-4e44-aca3-04275a2919a7/1/w5PyGsWO8N_OUCTmQhya1BjM9-s.roa
File: w5PyGsWO8N_OUCTmQhya1BjM9-s.roa (raw, json)
Hash identifier: QB/H/HkYLCdWD31w3aklHrRPb48h8/5aRAy1B/vG9kg=
Subject key identifier: C3:93:F2:1A:C5:8E:F0:DF:CE:50:24:E6:42:1C:9A:D4:18:CC:F7:EB
Certificate issuer: /CN=10280ad741e72328085d5fa5797a8451f5fb0238
Certificate serial: 0193CF2336973ED267BDA13F3B2B501276A1
Authority key identifier: 10:28:0A:D7:41:E7:23:28:08:5D:5F:A5:79:7A:84:51:F5:FB:02:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ECgK10HnIygIXV-leXqEUfX7Ajg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/abbb9f-4f10-4e44-aca3-04275a2919a7/1/w5PyGsWO8N_OUCTmQhya1BjM9-s.roa
Signing time: Mon 16 Dec 2024 11:03:31 +0000
ROA not before: Mon 16 Dec 2024 11:03:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 271986
IP address blocks: 185.83.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:47:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:cf:23:36:97:3e:d2:67:bd:a1:3f:3b:2b:50:12:76:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10280ad741e72328085d5fa5797a8451f5fb0238
Validity
Not Before: Dec 16 11:03:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c393f21ac58ef0dfce5024e6421c9ad418ccf7eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b3:40:ab:e8:33:50:09:1e:8a:e1:b5:7b:fa:
78:33:ec:1e:45:f7:c6:18:42:ca:16:2f:b8:52:97:
de:28:82:ec:9e:85:9c:e7:40:f1:35:32:15:01:19:
1d:98:7c:ab:0a:6d:15:38:81:75:5e:06:09:74:c6:
17:2d:86:22:33:d4:51:3a:a3:35:4e:ca:1a:42:5e:
9a:da:de:1d:0b:2b:44:5f:7e:09:3c:10:b0:33:77:
d8:f3:8a:76:b7:6f:0d:88:f6:ed:b4:ab:b5:6b:e2:
41:03:55:11:da:a7:3b:6e:fd:b0:33:2b:b4:75:43:
2d:03:0a:58:e0:ce:cc:93:2f:2f:0d:cd:e6:6a:9f:
21:2b:c2:db:85:00:9f:04:d9:58:16:56:31:ca:1a:
c8:20:7a:da:4e:28:30:85:cb:4b:d1:e7:8b:a9:f9:
d7:08:93:d6:a2:87:9d:4a:fc:b4:85:d7:b6:fa:72:
45:c8:6e:68:3c:55:77:e7:2b:d8:15:22:ba:4b:bc:
57:4e:a7:84:56:8e:82:92:31:7c:b7:2d:4b:9e:6f:
d0:39:d2:d1:bb:a4:9c:32:c9:77:3f:ce:b0:6b:9a:
95:9c:79:10:e7:14:80:bd:02:28:2f:6d:dd:b6:62:
34:56:9d:48:88:48:5f:d0:f6:18:60:51:c8:ef:3d:
2d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:93:F2:1A:C5:8E:F0:DF:CE:50:24:E6:42:1C:9A:D4:18:CC:F7:EB
X509v3 Authority Key Identifier:
keyid:10:28:0A:D7:41:E7:23:28:08:5D:5F:A5:79:7A:84:51:F5:FB:02:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ECgK10HnIygIXV-leXqEUfX7Ajg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/abbb9f-4f10-4e44-aca3-04275a2919a7/1/w5PyGsWO8N_OUCTmQhya1BjM9-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/abbb9f-4f10-4e44-aca3-04275a2919a7/1/ECgK10HnIygIXV-leXqEUfX7Ajg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.160.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:4f:e9:b2:f7:41:b7:52:54:4f:e2:9c:5f:fe:fc:d7:c1:fd:
54:9e:83:f2:e3:a7:8c:ab:be:78:54:12:a9:fc:26:7a:f3:45:
10:75:53:8a:af:14:09:c7:05:ae:e7:b5:bd:ee:68:e9:d2:09:
fd:7f:bb:e0:a3:87:04:c3:10:22:5e:97:28:36:ef:1f:7b:e2:
43:18:8c:01:ab:12:13:01:ef:d5:63:fc:0e:c1:84:56:bd:1a:
90:19:42:dc:0b:89:76:a9:18:ea:cd:5c:ad:fe:a7:d1:4d:5e:
ac:ef:a4:e8:f5:99:ce:22:ef:bc:cb:06:05:a5:b2:4e:59:b3:
8e:96:3a:ad:98:5c:1f:04:ee:4b:fb:41:1f:42:5a:c7:68:ef:
0d:91:7d:2b:0a:e4:dc:f4:c9:d9:dd:09:6e:cd:43:3e:54:df:
69:7e:49:9b:b3:c4:4d:fc:3d:dc:32:95:42:d6:6a:cf:ab:28:
e5:0c:6b:d9:4e:a6:26:77:42:ea:84:03:6a:0b:51:1d:21:d1:
b8:c5:c9:f9:87:0a:ea:b2:a3:d8:58:f1:21:d2:0f:ba:ff:a9:
9c:cd:fa:1e:ab:a7:96:27:08:e6:f0:38:50:9b:77:fa:c3:6e:
07:8d:e8:53:0d:c5:bf:6e:17:7f:b3:85:5a:38:5d:a4:eb:7b:
f1:d3:7f:5f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZPPIzaXPtJnvaE/OytQEnahMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwMjgwYWQ3NDFlNzIzMjgwODVkNWZhNTc5N2E4NDUxZjVm
YjAyMzgwHhcNMjQxMjE2MTEwMzMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzkzZjIxYWM1OGVmMGRmY2U1MDI0ZTY0MjFjOWFkNDE4Y2NmN2ViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0LNAq+gzUAkeiuG1e/p4M+weRffG
GELKFi+4UpfeKILsnoWc50DxNTIVARkdmHyrCm0VOIF1XgYJdMYXLYYiM9RROqM1
TsoaQl6a2t4dCytEX34JPBCwM3fY84p2t28NiPbttKu1a+JBA1UR2qc7bv2wMyu0
dUMtAwpY4M7Mky8vDc3map8hK8LbhQCfBNlYFlYxyhrIIHraTigwhctL0eeLqfnX
CJPWooedSvy0hde2+nJFyG5oPFV35yvYFSK6S7xXTqeEVo6CkjF8ty1Lnm/QOdLR
u6ScMsl3P86wa5qVnHkQ5xSAvQIoL23dtmI0Vp1IiEhf0PYYYFHI7z0t5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMOT8hrFjvDfzlAk5kIcmtQYzPfrMB8GA1UdIwQY
MBaAFBAoCtdB5yMoCF1fpXl6hFH1+wI4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUNnSzEwSG5JeWdJWFYtbGVYcUVVZlg3QWpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9hYmJiOWYtNGYxMC00ZTQ0LWFjYTMt
MDQyNzVhMjkxOWE3LzEvdzVQeUdzV084Tl9PVUNUbVFoeWExQmpNOS1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC9hYmJiOWYtNGYxMC00ZTQ0LWFjYTMtMDQyNzVhMjkxOWE3
LzEvRUNnSzEwSG5JeWdJWFYtbGVYcUVVZlg3QWpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVOgMA0G
CSqGSIb3DQEBCwUAA4IBAQAOT+my90G3UlRP4pxf/vzXwf1UnoPy46eMq754VBKp
/CZ680UQdVOKrxQJxwWu57W97mjp0gn9f7vgo4cEwxAiXpcoNu8fe+JDGIwBqxIT
Ae/VY/wOwYRWvRqQGULcC4l2qRjqzVyt/qfRTV6s76To9ZnOIu+8ywYFpbJOWbOO
ljqtmFwfBO5L+0EfQlrHaO8NkX0rCuTc9MnZ3QluzUM+VN9pfkmbs8RN/D3cMpVC
1mrPqyjlDGvZTqYmd0LqhANqC1EdIdG4xcn5hwrqsqPYWPEh0g+6/6mczfoeq6eW
Jwjm8DhQm3f6w24HjehTDcW/bhd/s4VaOF2k63vx039f
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:06:53 2025 by rpki-client