Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/VQ9kMOy_zO39Fhych0WP86XlmhU.roa
File: VQ9kMOy_zO39Fhych0WP86XlmhU.roa (raw, json)
Hash identifier: u8DsG3ym0T177AcBhBiwSGZcqZP8bfIwhOiwMsSsfPM=
Subject key identifier: 55:0F:64:30:EC:BF:CC:ED:FD:16:1C:9C:87:45:8F:F3:A5:E5:9A:15
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 018CC348D70FEAC592D0B4A55166B2E3D620
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/VQ9kMOy_zO39Fhych0WP86XlmhU.roa
Signing time: Mon 01 Jan 2024 04:29:39 +0000
ROA not before: Mon 01 Jan 2024 04:29:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30862
IP address blocks: 194.6.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:d7:0f:ea:c5:92:d0:b4:a5:51:66:b2:e3:d6:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 04:29:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=550f6430ecbfccedfd161c9c87458ff3a5e59a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e1:4f:04:12:dc:1f:76:71:43:f6:f1:db:66:
03:7b:e7:8e:7a:95:8f:f8:c4:cc:92:36:b2:64:70:
02:15:27:18:75:1d:48:e7:3b:6e:b5:bf:fe:ae:7c:
a3:c9:1d:d1:3e:d0:62:8d:e2:b3:3c:8b:7a:d6:eb:
c3:9b:48:01:98:a1:3c:d6:6a:0d:2d:4d:7a:d5:c4:
5b:33:89:c8:07:7e:9a:a2:ef:e9:37:dd:ee:77:7d:
ec:86:29:de:79:7d:7e:96:48:3b:af:3d:2e:8e:4d:
8a:9e:ec:71:1c:c1:6e:2e:82:6a:c0:ed:8c:76:c3:
94:4b:73:e8:89:77:6d:3a:e0:19:3a:87:54:c3:38:
a1:1f:e2:ee:cd:19:23:86:d1:71:fd:58:d4:18:ec:
85:7c:b4:48:63:55:78:3c:78:9c:da:46:d2:2a:b1:
75:9f:0e:1c:a2:45:84:a5:8a:6f:21:01:0a:94:cb:
c9:ca:82:bb:ea:33:52:cc:ab:98:3c:fc:f6:73:a9:
3f:f4:90:3f:32:30:0d:37:44:f7:0f:35:b1:fd:db:
8c:6a:64:dc:20:53:3a:fe:5f:5e:75:ce:72:90:4e:
3f:9c:c4:fa:25:0a:ff:3a:cd:ba:3d:c7:fc:35:c7:
63:7a:52:34:93:b4:e4:e5:9c:cd:34:81:ce:88:24:
60:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0F:64:30:EC:BF:CC:ED:FD:16:1C:9C:87:45:8F:F3:A5:E5:9A:15
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/VQ9kMOy_zO39Fhych0WP86XlmhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.6.178.0/24
Signature Algorithm: sha256WithRSAEncryption
09:2d:65:e9:10:c6:db:31:e6:21:3a:6b:6d:1b:8d:8f:4e:65:
c4:bf:78:10:77:4a:00:f5:00:72:20:8b:7f:28:a3:52:ab:47:
28:86:27:71:61:b8:53:30:fa:02:c6:b5:44:57:56:aa:83:fc:
af:87:21:53:ce:c0:33:26:8b:17:eb:f5:8d:2e:13:08:f2:1e:
a3:3a:dd:5a:45:b6:dc:d3:3d:d3:0e:55:20:02:8c:82:7c:58:
ab:65:20:e0:aa:81:ca:f8:e2:0f:0a:76:cc:39:61:75:ce:92:
06:36:eb:e7:d2:9c:6e:df:3a:5a:41:35:60:e1:ed:fb:7b:90:
35:9b:4e:2b:bd:a4:84:f5:8b:ef:51:4c:5e:8d:75:4e:7f:b6:
27:f6:20:6a:93:0e:f0:2c:4b:31:80:c0:45:f4:28:97:68:17:
62:44:56:d6:61:05:bd:d5:a2:90:e9:a2:17:40:da:e1:31:84:
c1:5e:42:82:30:b4:19:9d:1a:e3:8f:57:e5:ba:37:d9:55:70:
23:94:e8:28:9b:00:81:03:02:b0:27:f3:6b:50:9d:24:8b:0a:
cf:d6:06:38:e9:6c:ff:a4:4b:08:b9:59:7e:b2:a5:2e:44:bb:
2d:44:c7:07:79:22:80:a6:3b:86:6a:e5:de:9a:7c:1b:58:a0:
73:ab:25:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDSNcP6sWS0LSlUWay49YgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2NjNmM2RiMTUyZTA1NWFjMTQ1YmRiYjQyOWUwMTg2NTQy
MDRjOGQwHhcNMjQwMTAxMDQyOTM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTBmNjQzMGVjYmZjY2VkZmQxNjFjOWM4NzQ1OGZmM2E1ZTU5YTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeFPBBLcH3ZxQ/bx22YDe+eOepWP
+MTMkjayZHACFScYdR1I5ztutb/+rnyjyR3RPtBijeKzPIt61uvDm0gBmKE81moN
LU161cRbM4nIB36aou/pN93ud33shineeX1+lkg7rz0ujk2KnuxxHMFuLoJqwO2M
dsOUS3PoiXdtOuAZOodUwzihH+LuzRkjhtFx/VjUGOyFfLRIY1V4PHic2kbSKrF1
nw4cokWEpYpvIQEKlMvJyoK76jNSzKuYPPz2c6k/9JA/MjANN0T3DzWx/duMamTc
IFM6/l9edc5ykE4/nMT6JQr/Os26Pcf8NcdjelI0k7Tk5ZzNNIHOiCRgXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFUPZDDsv8zt/RYcnIdFj/Ol5ZoVMB8GA1UdIwQY
MBaAFCZj89sVLgVawUW9u0KeAYZUIEyNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUt
YmQxOTI2NzZjOWJiLzEvVlE5a01PeV96TzM5Rmh5Y2gwV1A4NlhsbWhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9jOGM2ZjYtNTk1Yy00NWIxLWE3NmUtYmQxOTI2NzZjOWJi
LzEvSm1QejJ4VXVCVnJCUmIyN1FwNEJobFFnVEkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgayMA0G
CSqGSIb3DQEBCwUAA4IBAQAJLWXpEMbbMeYhOmttG42PTmXEv3gQd0oA9QByIIt/
KKNSq0cohidxYbhTMPoCxrVEV1aqg/yvhyFTzsAzJosX6/WNLhMI8h6jOt1aRbbc
0z3TDlUgAoyCfFirZSDgqoHK+OIPCnbMOWF1zpIGNuvn0pxu3zpaQTVg4e37e5A1
m04rvaSE9YvvUUxejXVOf7Yn9iBqkw7wLEsxgMBF9CiXaBdiRFbWYQW91aKQ6aIX
QNrhMYTBXkKCMLQZnRrjj1flujfZVXAjlOgomwCBAwKwJ/NrUJ0kiwrP1gY46Wz/
pEsIuVl+sqUuRLstRMcHeSKApjuGauXemnwbWKBzqyXq
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:55:37 2025 by rpki-client