Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/aa7b33-deeb-4abd-b8d2-5697249f5124/1/pnIfQps80lTMzEF6tx1EFVUWfeU.roa
File: pnIfQps80lTMzEF6tx1EFVUWfeU.roa (raw, json)
Hash identifier: Hpt0FnryJKhxPB7gRpHYFTYQK4AmTgZgz1bxidVGcC0=
Subject key identifier: A6:72:1F:42:9B:3C:D2:54:CC:CC:41:7A:B7:1D:44:15:55:16:7D:E5
Certificate issuer: /CN=9bff15278f53f7761c2f3d33dd9be77a8a4fbd94
Certificate serial: 0197309F07310DE136074A7BA52E878573DD
Authority key identifier: 9B:FF:15:27:8F:53:F7:76:1C:2F:3D:33:DD:9B:E7:7A:8A:4F:BD:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m_8VJ49T93YcLz0z3ZvneopPvZQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/aa7b33-deeb-4abd-b8d2-5697249f5124/1/pnIfQps80lTMzEF6tx1EFVUWfeU.roa
Signing time: Mon 02 Jun 2025 12:30:17 +0000
ROA not before: Mon 02 Jun 2025 12:30:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2914
IP address blocks: 46.70.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Jun 2025 06:41:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:30:9f:07:31:0d:e1:36:07:4a:7b:a5:2e:87:85:73:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bff15278f53f7761c2f3d33dd9be77a8a4fbd94
Validity
Not Before: Jun 2 12:30:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6721f429b3cd254cccc417ab71d441555167de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:e8:81:5f:2e:82:0e:5e:c3:7c:4e:d5:55:de:
18:98:cf:01:ac:ce:ce:42:fd:00:33:9e:42:62:01:
88:78:a3:ca:30:7a:87:37:39:20:76:d4:fa:c9:a7:
b1:17:79:73:e1:42:2d:1e:c1:74:50:6b:1a:cd:fd:
4f:61:0a:82:b0:fb:1d:f8:0b:f2:fc:5a:67:e1:a8:
52:bf:ef:7e:90:29:9a:3f:c9:2e:94:1e:fd:c5:59:
7f:e2:76:ac:f4:54:19:64:bc:14:ba:87:77:7e:9e:
f9:70:57:1b:2a:3a:78:b9:c3:1d:56:c1:82:aa:be:
ae:c1:c4:ce:3b:eb:16:87:71:ca:d7:56:c0:b0:49:
58:f2:33:dc:c1:8c:74:e9:d6:a4:c0:63:8e:dd:e4:
65:b2:e9:d1:98:33:d4:97:d6:49:82:4f:ed:0a:7f:
e3:6d:70:ac:28:c2:89:08:1e:f7:87:ef:e5:48:f3:
66:97:00:53:d7:45:e4:18:18:ae:61:3e:c0:9f:b3:
90:25:14:11:f3:8c:b3:11:e8:c6:af:c7:16:4a:cf:
39:c8:f9:62:03:1c:23:f8:33:be:b4:7d:07:7a:3c:
f5:22:58:89:fc:90:39:03:82:45:eb:86:97:02:5f:
05:f8:28:fa:00:33:12:91:bc:dd:9b:a9:84:dc:d0:
e6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:72:1F:42:9B:3C:D2:54:CC:CC:41:7A:B7:1D:44:15:55:16:7D:E5
X509v3 Authority Key Identifier:
keyid:9B:FF:15:27:8F:53:F7:76:1C:2F:3D:33:DD:9B:E7:7A:8A:4F:BD:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m_8VJ49T93YcLz0z3ZvneopPvZQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/aa7b33-deeb-4abd-b8d2-5697249f5124/1/pnIfQps80lTMzEF6tx1EFVUWfeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/aa7b33-deeb-4abd-b8d2-5697249f5124/1/m_8VJ49T93YcLz0z3ZvneopPvZQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.70.192.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d2:66:5d:b0:08:b9:1f:0d:53:9d:0b:7a:b3:11:6f:bc:0b:
4f:09:d1:d1:4a:51:cc:eb:bb:2d:88:8b:94:bf:cb:dd:32:9a:
ff:78:83:1c:19:72:1e:12:61:c4:27:49:28:17:09:46:de:09:
48:6f:3a:06:2a:61:51:9f:72:86:07:0d:81:ac:c3:98:63:6c:
d2:34:af:bc:f6:18:70:f2:09:e4:62:32:4e:ec:39:fd:a0:3e:
47:70:96:ea:ff:82:cf:60:53:80:24:3b:80:43:ab:8d:0d:ea:
6a:15:63:dd:87:8c:bb:91:68:57:0d:f1:b9:b7:9d:5c:db:70:
af:2c:cb:71:1d:ba:68:d2:f3:12:cc:2a:18:77:27:9d:0f:80:
db:86:f2:71:0c:7b:1b:66:4b:f0:e2:9b:f4:5c:ff:e4:32:f2:
18:6f:2a:6b:5d:7d:83:34:31:2f:61:88:e8:74:dc:90:06:36:
8c:06:9f:2b:f9:c5:76:c5:93:48:d3:27:ea:f8:d8:8f:56:d2:
44:87:3e:2b:31:ae:b4:50:04:d2:ee:3e:87:9a:61:e9:35:9e:
66:ec:a5:fe:61:f0:e0:25:fa:67:29:4c:8c:dd:25:ff:ff:ca:
82:7f:67:50:e2:fa:d8:d0:74:dc:8c:e9:45:ac:ed:30:41:5c:
41:8f:da:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZcwnwcxDeE2B0p7pS6HhXPdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliZmYxNTI3OGY1M2Y3NzYxYzJmM2QzM2RkOWJlNzdhOGE0
ZmJkOTQwHhcNMjUwNjAyMTIzMDE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjcyMWY0MjliM2NkMjU0Y2NjYzQxN2FiNzFkNDQxNTU1MTY3ZGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/OiBXy6CDl7DfE7VVd4YmM8BrM7O
Qv0AM55CYgGIeKPKMHqHNzkgdtT6yaexF3lz4UItHsF0UGsazf1PYQqCsPsd+Avy
/Fpn4ahSv+9+kCmaP8kulB79xVl/4nas9FQZZLwUuod3fp75cFcbKjp4ucMdVsGC
qr6uwcTOO+sWh3HK11bAsElY8jPcwYx06dakwGOO3eRlsunRmDPUl9ZJgk/tCn/j
bXCsKMKJCB73h+/lSPNmlwBT10XkGBiuYT7An7OQJRQR84yzEejGr8cWSs85yPli
Axwj+DO+tH0Hejz1IliJ/JA5A4JF64aXAl8F+Cj6ADMSkbzdm6mE3NDmdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKZyH0KbPNJUzMxBercdRBVVFn3lMB8GA1UdIwQY
MBaAFJv/FSePU/d2HC89M92b53qKT72UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbV84Vko0OVQ5M1ljTHowejNadm5lb3BQdlpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9hYTdiMzMtZGVlYi00YWJkLWI4ZDIt
NTY5NzI0OWY1MTI0LzEvcG5JZlFwczgwbFRNekVGNnR4MUVGVlVXZmVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9hYTdiMzMtZGVlYi00YWJkLWI4ZDItNTY5NzI0OWY1MTI0
LzEvbV84Vko0OVQ5M1ljTHowejNadm5lb3BQdlpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALkbAMA0G
CSqGSIb3DQEBCwUAA4IBAQAB0mZdsAi5Hw1TnQt6sxFvvAtPCdHRSlHM67stiIuU
v8vdMpr/eIMcGXIeEmHEJ0koFwlG3glIbzoGKmFRn3KGBw2BrMOYY2zSNK+89hhw
8gnkYjJO7Dn9oD5HcJbq/4LPYFOAJDuAQ6uNDepqFWPdh4y7kWhXDfG5t51c23Cv
LMtxHbpo0vMSzCoYdyedD4DbhvJxDHsbZkvw4pv0XP/kMvIYbyprXX2DNDEvYYjo
dNyQBjaMBp8r+cV2xZNI0yfq+NiPVtJEhz4rMa60UATS7j6HmmHpNZ5m7KX+YfDg
JfpnKUyM3SX//8qCf2dQ4vrY0HTcjOlFrO0wQVxBj9pF
-----END CERTIFICATE-----
Generated at Thu Jun 5 18:38:30 2025 by rpki-client