Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/rBu9eY0HVJs4au9VQpJtcmE-7xI.roa
File: rBu9eY0HVJs4au9VQpJtcmE-7xI.roa (raw, json)
Hash identifier: IhkmJJTzgX+xrMT/z/JP4LxzfbO7WJ89TOKAG7CHSl0=
Subject key identifier: AC:1B:BD:79:8D:07:54:9B:38:6A:EF:55:42:92:6D:72:61:3E:EF:12
Certificate issuer: /CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Certificate serial: 0193C48D1C93733633399853D9B74FE13E99
Authority key identifier: D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/rBu9eY0HVJs4au9VQpJtcmE-7xI.roa
Signing time: Sat 14 Dec 2024 09:43:22 +0000
ROA not before: Sat 14 Dec 2024 09:43:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 185.103.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c4:8d:1c:93:73:36:33:39:98:53:d9:b7:4f:e1:3e:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7219ec7383fa0610480ddfa62c3f82c400cd56f
Validity
Not Before: Dec 14 09:43:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac1bbd798d07549b386aef5542926d72613eef12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6a:ad:be:8c:3d:d7:03:60:63:37:b2:d4:d2:
ff:70:7c:3f:98:38:84:dd:da:86:c7:b3:b1:8b:75:
9f:bd:bd:2c:f4:c7:fb:54:44:75:f5:5f:3e:ee:79:
36:54:f6:a3:d4:db:63:9a:8a:9c:e5:65:f3:21:0e:
10:0c:54:7b:2d:94:b8:ac:b7:a6:d6:a2:4f:5c:48:
e1:99:b9:57:b6:99:12:96:07:d6:ea:a5:46:81:2a:
cf:8a:7d:cd:64:b6:08:66:a6:ce:e6:ac:27:01:56:
a9:6a:4f:0f:21:cb:c5:16:57:54:46:51:64:9c:8c:
ff:dd:5c:15:73:fa:8d:3d:ba:af:3b:63:2d:72:6f:
fb:25:ed:95:bf:9e:dd:a8:de:d5:41:84:00:72:15:
4b:e0:05:76:42:64:9f:ff:47:84:fe:89:95:ed:a8:
f8:2e:b1:2f:1f:78:78:20:ab:87:56:2e:12:68:46:
ef:8b:15:c4:59:59:75:95:d6:a4:b3:2e:ec:6d:f3:
a3:29:71:db:b7:07:6d:ea:6d:56:af:44:70:6f:03:
ed:b1:65:80:83:c7:d4:aa:7e:ad:9d:9c:f6:3e:b1:
88:11:ac:16:8a:e3:46:de:ba:94:88:47:d3:6f:8a:
ba:26:73:8f:fa:d0:00:c0:99:7f:66:9b:e4:3c:bf:
b9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:1B:BD:79:8D:07:54:9B:38:6A:EF:55:42:92:6D:72:61:3E:EF:12
X509v3 Authority Key Identifier:
keyid:D7:21:9E:C7:38:3F:A0:61:04:80:DD:FA:62:C3:F8:2C:40:0C:D5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1yGexzg_oGEEgN36YsP4LEAM1W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/rBu9eY0HVJs4au9VQpJtcmE-7xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/fbffbc-ab82-4058-b8b7-d0c82a3cf4b6/1/1yGexzg_oGEEgN36YsP4LEAM1W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.4.0/24
Signature Algorithm: sha256WithRSAEncryption
54:4f:7f:59:0c:60:27:9d:ba:a8:9e:24:91:10:44:52:8c:f6:
f3:43:eb:72:fe:bd:69:c6:ce:57:0a:10:42:60:0f:6b:f3:12:
77:19:60:20:28:23:fc:a8:ba:88:77:d4:53:61:d0:63:64:a9:
eb:89:08:c9:8b:9a:44:80:9d:63:7d:77:d3:47:44:85:1d:dd:
e1:fb:23:7b:12:84:2f:b8:8c:01:cf:2b:9f:e0:14:e1:a1:e8:
e4:53:28:0e:e6:dd:8c:46:51:27:c0:22:1a:08:5a:9c:5a:ae:
23:25:fe:8e:cc:2e:85:7c:6c:de:d5:85:ce:17:d2:4a:d8:17:
a6:4f:74:b5:8e:af:6e:b9:1d:c6:65:23:37:cf:00:76:a8:88:
50:59:7a:e3:12:fb:a6:19:cc:13:aa:30:33:88:9a:86:2e:93:
c5:b4:bf:c4:62:04:ce:c6:f3:0c:a4:1c:a8:cd:5c:ae:97:71:
86:1c:c0:91:f8:4d:bb:a2:c6:c8:1e:0c:b1:a8:98:d6:4b:83:
a1:dc:5d:a7:00:f8:66:09:06:96:23:26:b4:cd:91:25:ae:33:
69:0a:c2:f0:ef:cb:a9:89:45:84:a4:af:3d:15:0a:dd:63:01:
28:39:cc:f8:ca:02:b7:82:d9:53:20:62:6a:b1:0b:0e:70:14:
c6:dc:b0:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZPEjRyTczYzOZhT2bdP4T6ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3MjE5ZWM3MzgzZmEwNjEwNDgwZGRmYTYyYzNmODJjNDAw
Y2Q1NmYwHhcNMjQxMjE0MDk0MzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzFiYmQ3OThkMDc1NDliMzg2YWVmNTU0MjkyNmQ3MjYxM2VlZjEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmqtvow91wNgYzey1NL/cHw/mDiE
3dqGx7Oxi3Wfvb0s9Mf7VER19V8+7nk2VPaj1Ntjmoqc5WXzIQ4QDFR7LZS4rLem
1qJPXEjhmblXtpkSlgfW6qVGgSrPin3NZLYIZqbO5qwnAVapak8PIcvFFldURlFk
nIz/3VwVc/qNPbqvO2Mtcm/7Je2Vv57dqN7VQYQAchVL4AV2QmSf/0eE/omV7aj4
LrEvH3h4IKuHVi4SaEbvixXEWVl1ldaksy7sbfOjKXHbtwdt6m1Wr0RwbwPtsWWA
g8fUqn6tnZz2PrGIEawWiuNG3rqUiEfTb4q6JnOP+tAAwJl/ZpvkPL+5yQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKwbvXmNB1SbOGrvVUKSbXJhPu8SMB8GA1UdIwQY
MBaAFNchnsc4P6BhBIDd+mLD+CxADNVvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXlHZXh6Z19vR0VFZ04zNllzUDRMRUFNMVc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9mYmZmYmMtYWI4Mi00MDU4LWI4Yjct
ZDBjODJhM2NmNGI2LzEvckJ1OWVZMEhWSnM0YXU5VlFwSnRjbUUtN3hJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9mYmZmYmMtYWI4Mi00MDU4LWI4YjctZDBjODJhM2NmNGI2
LzEvMXlHZXh6Z19vR0VFZ04zNllzUDRMRUFNMVc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWcEMA0G
CSqGSIb3DQEBCwUAA4IBAQBUT39ZDGAnnbqoniSREERSjPbzQ+ty/r1pxs5XChBC
YA9r8xJ3GWAgKCP8qLqId9RTYdBjZKnriQjJi5pEgJ1jfXfTR0SFHd3h+yN7EoQv
uIwBzyuf4BThoejkUygO5t2MRlEnwCIaCFqcWq4jJf6OzC6FfGze1YXOF9JK2Bem
T3S1jq9uuR3GZSM3zwB2qIhQWXrjEvumGcwTqjAziJqGLpPFtL/EYgTOxvMMpByo
zVyul3GGHMCR+E27osbIHgyxqJjWS4Oh3F2nAPhmCQaWIya0zZElrjNpCsLw78up
iUWEpK89FQrdYwEoOcz4ygK3gtlTIGJqsQsOcBTG3LBB
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:13:44 2025 by rpki-client