Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/ge8ebH6c3Nt1gC0fH4t3NTaPn5I.roa
File: ge8ebH6c3Nt1gC0fH4t3NTaPn5I.roa (raw, json)
Hash identifier: Hb9TuJd/L7RGoh2/egkBSlU9vkkUcWc6hzBaOJBaIDo=
Subject key identifier: 81:EF:1E:6C:7E:9C:DC:DB:75:80:2D:1F:1F:8B:77:35:36:8F:9F:92
Certificate issuer: /CN=421cba589920beebb19bc572ae6d501b8cf6bbf0
Certificate serial: 01942521430776B1DD0260D6C94A87B76A58
Authority key identifier: 42:1C:BA:58:99:20:BE:EB:B1:9B:C5:72:AE:6D:50:1B:8C:F6:BB:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/ge8ebH6c3Nt1gC0fH4t3NTaPn5I.roa
Signing time: Thu 02 Jan 2025 03:48:44 +0000
ROA not before: Thu 02 Jan 2025 03:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35277
IP address blocks: 185.37.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 19:37:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:43:07:76:b1:dd:02:60:d6:c9:4a:87:b7:6a:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=421cba589920beebb19bc572ae6d501b8cf6bbf0
Validity
Not Before: Jan 2 03:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=81ef1e6c7e9cdcdb75802d1f1f8b7735368f9f92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:08:af:40:94:aa:b7:23:6d:8a:da:07:ed:84:
17:df:97:3e:3b:e0:f4:1c:9f:12:5a:e6:df:a9:fd:
88:09:6b:19:10:8e:b7:51:e4:71:91:5b:4a:5f:71:
4c:db:53:7a:b2:24:bb:20:2b:4f:35:ee:9f:e4:2b:
04:23:9d:29:83:1a:c7:74:dc:4c:64:c5:c2:38:aa:
c8:ea:3e:bf:b8:2a:48:28:da:ec:be:b7:4f:88:98:
51:fe:00:48:72:e0:09:2b:94:cc:90:67:cf:84:92:
54:3d:b1:4c:87:b1:bc:da:cd:1f:c7:39:2e:fd:51:
0f:ee:3f:59:6a:6f:3d:97:51:83:89:ca:d2:dd:ea:
df:08:41:97:ec:88:be:0d:ff:a6:88:aa:02:35:1c:
84:65:61:9f:e3:86:11:74:a6:2e:82:01:4b:59:44:
1b:01:4b:d5:87:43:e7:1b:92:f8:91:bf:a2:cd:39:
15:da:1a:63:51:a1:7b:c7:40:e1:01:55:6f:46:91:
99:53:ae:65:7b:2b:bd:7d:17:58:f7:69:62:4b:28:
31:80:92:f2:2d:80:07:26:b3:06:b3:cc:71:41:cb:
82:61:3d:49:0e:c2:d9:da:36:d5:da:e1:b2:c7:f9:
a5:cc:42:5a:a5:9f:eb:b7:8e:e7:a3:b9:b3:03:43:
60:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EF:1E:6C:7E:9C:DC:DB:75:80:2D:1F:1F:8B:77:35:36:8F:9F:92
X509v3 Authority Key Identifier:
keyid:42:1C:BA:58:99:20:BE:EB:B1:9B:C5:72:AE:6D:50:1B:8C:F6:BB:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/ge8ebH6c3Nt1gC0fH4t3NTaPn5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1c49eb-4dda-44ef-bf04-ec00e1a27cc8/1/Qhy6WJkgvuuxm8Vyrm1QG4z2u_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.8.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:a8:cc:45:0b:7c:d1:9e:1f:4a:60:94:ae:b0:90:0c:e6:31:
75:79:17:23:bd:f8:36:a3:ff:b1:f4:1b:16:d9:17:2a:aa:73:
ad:f7:dc:c0:69:34:ad:20:1b:f6:10:a0:cd:0f:fc:b6:1f:68:
2e:57:ba:dd:c0:0f:3c:53:5d:e4:6a:b9:6c:7a:bd:5c:fc:c3:
00:e4:fa:c7:45:28:93:12:1d:43:51:e2:85:ea:58:c8:50:77:
a7:d7:43:43:ca:e8:8e:a5:6f:10:18:f5:51:b7:94:b8:37:4a:
80:4e:cb:dd:59:4d:6b:46:4e:d2:a7:b4:4c:b3:cd:a0:be:61:
2e:e4:ce:78:ec:68:12:13:68:ca:bd:4b:06:e1:f9:d8:f7:e7:
65:39:ab:32:77:92:f0:9b:39:25:69:d3:5a:4a:e3:11:be:f8:
b6:61:fa:ed:fa:a6:ec:af:91:f9:71:3b:b3:72:5d:bd:86:b7:
e7:78:63:96:22:fe:8c:96:84:17:fb:ef:cc:db:15:a0:75:22:
3d:91:9a:a5:17:16:71:f7:a0:23:6d:a0:55:bc:d2:6a:d4:df:
c0:62:55:25:ab:62:fd:a7:75:8a:74:bf:fa:ca:59:ac:32:8f:
a2:62:89:cd:96:a9:d7:7a:6f:d6:2d:4a:69:76:db:99:b4:f7:
6c:aa:cd:8e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIUMHdrHdAmDWyUqHt2pYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyMWNiYTU4OTkyMGJlZWJiMTliYzU3MmFlNmQ1MDFiOGNm
NmJiZjAwHhcNMjUwMTAyMDM0ODQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MWVmMWU2YzdlOWNkY2RiNzU4MDJkMWYxZjhiNzczNTM2OGY5ZjkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwivQJSqtyNtitoH7YQX35c+O+D0
HJ8SWubfqf2ICWsZEI63UeRxkVtKX3FM21N6siS7ICtPNe6f5CsEI50pgxrHdNxM
ZMXCOKrI6j6/uCpIKNrsvrdPiJhR/gBIcuAJK5TMkGfPhJJUPbFMh7G82s0fxzku
/VEP7j9Zam89l1GDicrS3erfCEGX7Ii+Df+miKoCNRyEZWGf44YRdKYuggFLWUQb
AUvVh0PnG5L4kb+izTkV2hpjUaF7x0DhAVVvRpGZU65leyu9fRdY92liSygxgJLy
LYAHJrMGs8xxQcuCYT1JDsLZ2jbV2uGyx/mlzEJapZ/rt47no7mzA0NgRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIHvHmx+nNzbdYAtHx+LdzU2j5+SMB8GA1UdIwQY
MBaAFEIculiZIL7rsZvFcq5tUBuM9rvwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUWh5NldKa2d2dXV4bThWeXJtMVFHNHoydV9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8xYzQ5ZWItNGRkYS00NGVmLWJmMDQt
ZWMwMGUxYTI3Y2M4LzEvZ2U4ZWJINmMzTnQxZ0MwZkg0dDNOVGFQbjVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8xYzQ5ZWItNGRkYS00NGVmLWJmMDQtZWMwMGUxYTI3Y2M4
LzEvUWh5NldKa2d2dXV4bThWeXJtMVFHNHoydV9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSUIMA0G
CSqGSIb3DQEBCwUAA4IBAQAuqMxFC3zRnh9KYJSusJAM5jF1eRcjvfg2o/+x9BsW
2RcqqnOt99zAaTStIBv2EKDND/y2H2guV7rdwA88U13karlser1c/MMA5PrHRSiT
Eh1DUeKF6ljIUHen10NDyuiOpW8QGPVRt5S4N0qATsvdWU1rRk7Sp7RMs82gvmEu
5M547GgSE2jKvUsG4fnY9+dlOasyd5LwmzkladNaSuMRvvi2Yfrt+qbsr5H5cTuz
cl29hrfneGOWIv6MloQX++/M2xWgdSI9kZqlFxZx96AjbaBVvNJq1N/AYlUlq2L9
p3WKdL/6ylmsMo+iYonNlqnXem/WLUppdtuZtPdsqs2O
-----END CERTIFICATE-----
Generated at Sat Apr 12 01:31:15 2025 by rpki-client