Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ZpfwdJBfQ2-I4NJWnw9iLzTthdY.roa
File: ZpfwdJBfQ2-I4NJWnw9iLzTthdY.roa (raw, json)
Hash identifier: JGcvS47m0cZB4euh2z+OJdl0qraNpnhwSxnGGnQ6wMI=
Subject key identifier: 66:97:F0:74:90:5F:43:6F:88:E0:D2:56:9F:0F:62:2F:34:ED:85:D6
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194606975B1151735A14FC46FA900422D6C
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ZpfwdJBfQ2-I4NJWnw9iLzTthdY.roa
Signing time: Mon 13 Jan 2025 16:05:11 +0000
ROA not before: Mon 13 Jan 2025 16:05:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31025
IP address blocks: 5.231.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Feb 2025 11:57:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:60:69:75:b1:15:17:35:a1:4f:c4:6f:a9:00:42:2d:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 13 16:05:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6697f074905f436f88e0d2569f0f622f34ed85d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:6b:b0:8f:0d:85:59:44:de:3b:2e:0a:9d:94:
e7:70:0d:65:df:31:ea:41:c9:87:e7:1b:85:88:19:
6d:90:04:57:1a:6c:1d:93:ab:18:f8:86:65:68:f8:
8f:9b:2b:4a:4d:e0:ae:c4:58:d0:2c:4f:6a:bf:8a:
f4:c3:88:87:68:9b:a3:be:ee:6e:28:76:06:fe:ac:
17:d2:50:75:b5:a9:f5:ac:ae:76:55:41:3f:4d:f5:
2e:ff:99:be:96:d8:a2:e6:9d:c1:ae:0f:d2:45:cf:
de:e5:06:d9:d5:ad:81:8e:8a:be:0b:1c:42:a7:76:
c8:fc:bd:ac:e8:54:4f:5e:fd:83:c8:ba:4c:f7:1a:
9a:ed:f4:89:fa:98:0f:3e:d4:b7:43:2c:c3:85:34:
a2:9d:69:d9:16:59:87:07:97:96:ad:cd:fb:10:d1:
47:69:c0:8a:c2:cd:7f:38:59:0f:e4:06:3e:e5:74:
6e:86:a3:ad:e9:6d:72:bc:af:59:0c:b7:8a:57:0a:
16:96:bd:30:1f:e9:85:f0:ff:66:a8:1d:f1:51:5b:
06:dc:e3:d7:da:ae:9d:fe:de:5a:7b:ff:06:45:d0:
c5:26:df:2f:0d:81:5f:2c:e5:12:8c:73:ba:e4:e8:
e2:6f:7a:f1:fe:6d:f4:85:b4:8d:d1:15:d5:7b:34:
9e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:97:F0:74:90:5F:43:6F:88:E0:D2:56:9F:0F:62:2F:34:ED:85:D6
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/ZpfwdJBfQ2-I4NJWnw9iLzTthdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.254.0/24
Signature Algorithm: sha256WithRSAEncryption
55:0f:3e:0e:29:b3:41:7d:76:4a:bd:cb:5c:f6:06:5b:e7:4f:
f9:da:48:73:18:d5:b2:78:b7:34:e1:5c:88:78:3a:6d:e6:9b:
72:6b:cd:f7:8b:5e:70:df:74:3e:22:30:5e:3e:18:a5:a8:a6:
ee:a4:1a:32:ae:97:1f:87:67:41:62:8b:71:50:eb:a0:9f:c7:
35:8d:ee:60:88:b0:5c:91:04:bc:71:86:ff:2f:fd:43:cd:b9:
ef:fc:5c:de:0c:86:5f:88:cb:36:97:0a:7e:d9:39:80:89:9c:
90:26:bd:67:32:30:dc:48:3e:a3:25:4b:1b:57:d9:30:24:d5:
6e:a1:6c:62:8f:63:0b:d6:ac:39:5a:d3:58:2f:ce:c5:7e:d8:
01:06:d4:16:70:73:22:07:6a:a1:8e:38:45:31:3c:75:69:9d:
33:38:08:45:20:40:0a:41:af:78:ea:6d:f4:2d:d2:62:20:40:
72:37:29:ff:70:9a:f8:39:f4:f1:17:ed:b6:ee:9d:c3:34:e3:
19:e3:cc:bd:bf:c1:6d:47:65:c5:37:2d:39:45:a6:ef:97:2e:
3c:63:cb:6c:e3:c2:56:65:a2:b9:8b:4e:c6:84:b4:cc:fe:6f:
cb:7f:e9:21:19:fe:0f:bd:7c:1b:0b:2c:1a:56:23:98:ad:55:
8d:f8:7a:a4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZRgaXWxFRc1oU/Eb6kAQi1sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwMTEzMTYwNTExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Njk3ZjA3NDkwNWY0MzZmODhlMGQyNTY5ZjBmNjIyZjM0ZWQ4NWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGuwjw2FWUTeOy4KnZTncA1l3zHq
QcmH5xuFiBltkARXGmwdk6sY+IZlaPiPmytKTeCuxFjQLE9qv4r0w4iHaJujvu5u
KHYG/qwX0lB1tan1rK52VUE/TfUu/5m+ltii5p3Brg/SRc/e5QbZ1a2Bjoq+CxxC
p3bI/L2s6FRPXv2DyLpM9xqa7fSJ+pgPPtS3QyzDhTSinWnZFlmHB5eWrc37ENFH
acCKws1/OFkP5AY+5XRuhqOt6W1yvK9ZDLeKVwoWlr0wH+mF8P9mqB3xUVsG3OPX
2q6d/t5ae/8GRdDFJt8vDYFfLOUSjHO65Ojib3rx/m30hbSN0RXVezSeLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGaX8HSQX0NviODSVp8PYi807YXWMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvWnBmd2RKQmZRMi1JNE5KV253OWlMelR0aGRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABef+MA0G
CSqGSIb3DQEBCwUAA4IBAQBVDz4OKbNBfXZKvctc9gZb50/52khzGNWyeLc04VyI
eDpt5ptya833i15w33Q+IjBePhilqKbupBoyrpcfh2dBYotxUOugn8c1je5giLBc
kQS8cYb/L/1Dzbnv/FzeDIZfiMs2lwp+2TmAiZyQJr1nMjDcSD6jJUsbV9kwJNVu
oWxij2ML1qw5WtNYL87FftgBBtQWcHMiB2qhjjhFMTx1aZ0zOAhFIEAKQa946m30
LdJiIEByNyn/cJr4OfTxF+227p3DNOMZ48y9v8FtR2XFNy05Rabvly48Y8ts48JW
ZaK5i07GhLTM/m/Lf+khGf4PvXwbCywaViOYrVWN+Hqk
-----END CERTIFICATE-----
Generated at Sat Apr 12 02:32:19 2025 by rpki-client