Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/mFNQPsmmDo4PvY5yVxpbAhQzJiA.roa
File: mFNQPsmmDo4PvY5yVxpbAhQzJiA.roa (raw, json)
Hash identifier: 5ioBLDjoA2aAFX2Mu4Zn1gSQwolIVVsrzIJyQDSArXY=
Subject key identifier: 98:53:50:3E:C9:A6:0E:8E:0F:BD:8E:72:57:1A:5B:02:14:33:26:20
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFAB6EABBEA66C5672896AE600485E8
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/mFNQPsmmDo4PvY5yVxpbAhQzJiA.roa
Signing time: Wed 01 Jan 2025 03:48:32 +0000
ROA not before: Wed 01 Jan 2025 03:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215743
IP address blocks: 2a0c:b641:bc0::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 14 Jan 2025 10:05:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:b6:ea:bb:ea:66:c5:67:28:96:ae:60:04:85:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9853503ec9a60e8e0fbd8e72571a5b0214332620
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:57:f5:63:29:6f:8b:6d:b1:43:b9:aa:39:a9:
4a:84:99:ba:20:84:b9:f1:a0:24:79:29:cd:d7:bb:
c3:fc:e7:9b:bc:1e:27:a0:1d:aa:1b:f2:2a:8d:1a:
ee:1f:02:e6:d8:3e:5e:ab:94:b8:1d:ef:61:dd:d8:
ed:4d:27:8f:4f:10:82:eb:1e:18:b3:2d:bb:43:21:
34:6e:e0:15:78:14:b7:ea:98:f7:67:a7:6e:c5:6d:
1a:a0:38:10:88:b3:23:f6:50:a1:43:df:b8:73:d4:
b5:29:5f:1e:02:f5:ae:36:2b:1b:26:d0:9e:69:dd:
cf:4e:6b:12:18:b4:3e:5e:0d:10:fb:25:0e:2b:e6:
2b:11:bc:50:99:fd:27:6a:76:d0:75:11:2f:79:1a:
64:08:34:c4:f0:61:8e:c7:20:8a:0b:80:6d:2c:3c:
29:dd:c3:76:d6:d2:1d:b7:8d:02:5c:5c:f3:0b:fa:
94:22:e4:ab:bc:57:1e:e9:f7:cd:ad:c7:08:8c:cf:
6c:19:98:8f:bf:28:e5:84:dd:6e:ba:6d:fb:e1:65:
ef:38:d9:73:1a:84:ab:dd:08:8c:65:b8:8f:dd:19:
aa:99:9f:73:9f:20:1f:e0:8c:0b:a1:ca:c0:85:1d:
dc:53:02:d3:4e:9a:c9:29:08:2d:11:c5:db:62:ee:
c9:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:53:50:3E:C9:A6:0E:8E:0F:BD:8E:72:57:1A:5B:02:14:33:26:20
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/mFNQPsmmDo4PvY5yVxpbAhQzJiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:bc0::/44
Signature Algorithm: sha256WithRSAEncryption
6a:f5:79:ec:9c:01:b4:0c:fb:66:ce:88:15:8b:d6:1a:bd:41:
33:51:5e:fb:bd:cc:a4:48:f9:77:c6:ae:c9:fc:5e:dd:ca:93:
f8:95:a2:12:f1:f2:0f:d3:e5:cc:3d:05:41:f0:63:26:be:39:
ea:c6:6d:69:32:2b:d4:02:53:95:aa:8e:c8:fd:36:28:f9:71:
31:77:9f:44:30:c9:ab:ff:d9:73:c7:d1:27:82:66:ae:fd:45:
ea:00:c0:9b:46:32:c0:9d:9e:21:86:14:78:c6:94:55:49:5b:
a3:ed:af:6a:24:83:70:84:f1:4c:29:13:7e:0b:1a:58:b3:bb:
97:87:bd:47:15:5e:37:db:92:6f:69:ab:1f:31:bd:4c:8b:5b:
2b:6c:41:a0:6a:19:33:d2:a1:b1:6f:08:2b:1f:60:72:1a:50:
20:de:25:62:0c:bc:c0:0f:c4:17:85:2e:5f:b7:1e:d0:20:c1:
e2:61:68:f7:b1:36:d9:c5:41:0c:31:9f:60:8e:cb:89:70:d5:
0b:f0:ee:6b:11:17:02:e5:50:1b:a4:1c:c8:3a:6b:13:d0:9d:
22:ae:6c:9c:75:02:15:89:c9:96:c1:f4:eb:16:c3:92:c5:7d:
20:d0:7f:26:1a:cd:85:54:3c:21:3e:a0:89:6d:33:9f:9d:ff:
0f:72:6e:87
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQf+rbqu+pmxWcolq5gBIXoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjUwMTAxMDM0ODMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODUzNTAzZWM5YTYwZThlMGZiZDhlNzI1NzFhNWIwMjE0MzMyNjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjlf1Yylvi22xQ7mqOalKhJm6IIS5
8aAkeSnN17vD/OebvB4noB2qG/IqjRruHwLm2D5eq5S4He9h3djtTSePTxCC6x4Y
sy27QyE0buAVeBS36pj3Z6duxW0aoDgQiLMj9lChQ9+4c9S1KV8eAvWuNisbJtCe
ad3PTmsSGLQ+Xg0Q+yUOK+YrEbxQmf0nanbQdREveRpkCDTE8GGOxyCKC4BtLDwp
3cN21tIdt40CXFzzC/qUIuSrvFce6ffNrccIjM9sGZiPvyjlhN1uum374WXvONlz
GoSr3QiMZbiP3RmqmZ9znyAf4IwLocrAhR3cUwLTTprJKQgtEcXbYu7JHQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJhTUD7Jpg6OD72OclcaWwIUMyYgMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvbUZOUVBzbW1EbzRQdlk1eVZ4cGJBaFF6SmlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQvA
MA0GCSqGSIb3DQEBCwUAA4IBAQBq9XnsnAG0DPtmzogVi9YavUEzUV77vcykSPl3
xq7J/F7dypP4laIS8fIP0+XMPQVB8GMmvjnqxm1pMivUAlOVqo7I/TYo+XExd59E
MMmr/9lzx9Engmau/UXqAMCbRjLAnZ4hhhR4xpRVSVuj7a9qJINwhPFMKRN+CxpY
s7uXh71HFV4325JvaasfMb1Mi1srbEGgahkz0qGxbwgrH2ByGlAg3iViDLzAD8QX
hS5ftx7QIMHiYWj3sTbZxUEMMZ9gjsuJcNUL8O5rERcC5VAbpBzIOmsT0J0irmyc
dQIVicmWwfTrFsOSxX0g0H8mGs2FVDwhPqCJbTOfnf8Pcm6H
-----END CERTIFICATE-----
Generated at Sat Apr 12 21:05:56 2025 by rpki-client