Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WrYQtfdlFRXDI3qokOGi5CqP-xs.roa
File: WrYQtfdlFRXDI3qokOGi5CqP-xs.roa (raw, json)
Hash identifier: rTrp88aAcMwpp9rUfE8VZGhrhYGIEHQIMQRzxTJeVoM=
Subject key identifier: 5A:B6:10:B5:F7:65:15:15:C3:23:7A:A8:90:E1:A2:E4:2A:8F:FB:1B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01939A1D47461F19DF437D0F6A7FB372ECCF
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WrYQtfdlFRXDI3qokOGi5CqP-xs.roa
Signing time: Fri 06 Dec 2024 03:57:10 +0000
ROA not before: Fri 06 Dec 2024 03:57:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214304
IP address blocks: 194.87.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:51:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9a:1d:47:46:1f:19:df:43:7d:0f:6a:7f:b3:72:ec:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 6 03:57:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5ab610b5f7651515c3237aa890e1a2e42a8ffb1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7b:1b:2a:ae:18:fc:63:9f:8e:6f:0b:3f:81:
9b:af:58:a0:b0:37:75:ba:6e:eb:e0:f0:af:67:c2:
55:78:f2:93:aa:9d:71:34:9b:8a:fe:ff:ac:c5:b9:
12:8e:bf:a0:ac:a5:6d:ac:92:22:ff:56:ce:43:ff:
13:d0:e2:6c:c2:90:ed:3c:0f:e3:77:1b:41:b1:6e:
b2:23:47:c2:6a:fc:8e:ed:d0:64:a5:c4:fd:fd:b8:
0a:44:11:57:b0:64:c9:15:22:ba:7f:7f:c0:18:6a:
22:8b:9b:30:ff:aa:27:3d:7d:5c:d2:df:6f:8f:98:
6f:36:44:d4:c5:82:26:ca:65:f2:2b:46:4f:ff:47:
dc:a0:69:a7:d9:ab:2a:ed:58:f7:f7:71:19:6b:54:
52:be:c5:8c:58:b7:9e:17:5b:01:fa:94:f6:aa:c3:
c0:d3:fc:8b:ad:f6:3d:98:2d:c8:b0:b1:67:1c:f7:
09:df:dc:74:19:79:24:41:88:6d:8a:ae:05:a3:2c:
0f:b8:c8:90:ba:0b:1b:2f:62:57:8b:70:e1:74:b0:
cc:7b:31:1c:8a:34:04:8d:ec:d4:ff:7a:5e:f9:65:
eb:cf:1c:4f:b1:25:6d:e8:ff:0e:99:e6:fc:86:69:
2d:04:44:96:2c:0a:e6:61:24:e2:02:2f:7e:fb:9d:
13:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B6:10:B5:F7:65:15:15:C3:23:7A:A8:90:E1:A2:E4:2A:8F:FB:1B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/WrYQtfdlFRXDI3qokOGi5CqP-xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.246.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:65:17:8b:30:6e:bf:ed:97:8e:aa:0e:a3:38:c9:24:1c:14:
a8:de:e2:47:dd:db:14:e3:d4:f5:78:05:25:ff:74:27:84:98:
15:c1:3d:2d:b0:60:b7:d3:0f:91:2e:56:88:cd:b6:38:1e:28:
73:74:c5:a8:4d:ac:16:80:93:15:bf:86:fc:4d:d3:49:62:3c:
8a:23:79:24:bf:99:88:50:fc:37:66:df:39:49:a7:2a:23:cc:
fb:89:20:dc:a6:7a:66:5f:05:f2:3e:f5:6b:a9:e6:c3:47:bf:
9e:6a:9f:44:e3:5c:1f:35:b7:d5:de:b9:f6:56:d2:f4:2d:8c:
a0:fa:49:e5:55:38:c6:e9:7a:cc:01:5e:32:21:2a:29:d4:4c:
d4:e5:fa:4f:04:e2:5a:c5:da:79:8d:b5:91:9c:3c:e7:99:d1:
90:4a:85:5e:cb:32:b2:c7:01:19:3e:91:b9:42:f8:bd:dc:25:
98:75:ca:33:ab:c6:5d:17:d6:a0:90:d2:65:7b:9f:b6:92:b7:
8b:82:29:8c:c8:c0:e8:ed:64:6c:31:a9:29:12:39:80:29:38:
7f:0d:3b:bb:12:98:89:23:7a:e1:c9:71:6d:c5:65:43:0e:f5:
79:84:36:de:ff:e2:e2:66:00:76:72:de:34:3e:c3:61:fd:72:
c4:f9:68:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOaHUdGHxnfQ30Pan+zcuzPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQxMjA2MDM1NzEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YWI2MTBiNWY3NjUxNTE1YzMyMzdhYTg5MGUxYTJlNDJhOGZmYjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnsbKq4Y/GOfjm8LP4Gbr1igsDd1
um7r4PCvZ8JVePKTqp1xNJuK/v+sxbkSjr+grKVtrJIi/1bOQ/8T0OJswpDtPA/j
dxtBsW6yI0fCavyO7dBkpcT9/bgKRBFXsGTJFSK6f3/AGGoii5sw/6onPX1c0t9v
j5hvNkTUxYImymXyK0ZP/0fcoGmn2asq7Vj393EZa1RSvsWMWLeeF1sB+pT2qsPA
0/yLrfY9mC3IsLFnHPcJ39x0GXkkQYhtiq4FoywPuMiQugsbL2JXi3DhdLDMezEc
ijQEjezU/3pe+WXrzxxPsSVt6P8Omeb8hmktBESWLArmYSTiAi9++50TlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFq2ELX3ZRUVwyN6qJDhouQqj/sbMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvV3JZUXRmZGxGUlhESTNxb2tPR2k1Q3FQLXhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwlf2MA0G
CSqGSIb3DQEBCwUAA4IBAQB/ZReLMG6/7ZeOqg6jOMkkHBSo3uJH3dsU49T1eAUl
/3QnhJgVwT0tsGC30w+RLlaIzbY4HihzdMWoTawWgJMVv4b8TdNJYjyKI3kkv5mI
UPw3Zt85SacqI8z7iSDcpnpmXwXyPvVrqebDR7+eap9E41wfNbfV3rn2VtL0LYyg
+knlVTjG6XrMAV4yISop1EzU5fpPBOJaxdp5jbWRnDznmdGQSoVeyzKyxwEZPpG5
Qvi93CWYdcozq8ZdF9agkNJle5+2kreLgimMyMDo7WRsMakpEjmAKTh/DTu7EpiJ
I3rhyXFtxWVDDvV5hDbe/+LiZgB2ct40PsNh/XLE+Whj
-----END CERTIFICATE-----
Generated at Sat Apr 19 18:00:12 2025 by rpki-client