Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/1T-dPGtY0jF8meXodCMGe1T7Y80.roa
File: 1T-dPGtY0jF8meXodCMGe1T7Y80.roa (raw, json)
Hash identifier: tw6mbfR+CEIJ/UruGirPHU2w/lYHXoi+4eE4k+uFawU=
Subject key identifier: D5:3F:9D:3C:6B:58:D2:31:7C:99:E5:E8:74:23:06:7B:54:FB:63:CD
Certificate issuer: /CN=83bce35561f541bda97e777e6879a1d704e7b42f
Certificate serial: 0194266BB513C8BFBA49230F92C234F41E17
Authority key identifier: 83:BC:E3:55:61:F5:41:BD:A9:7E:77:7E:68:79:A1:D7:04:E7:B4:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g7zjVWH1Qb2pfnd-aHmh1wTntC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/1T-dPGtY0jF8meXodCMGe1T7Y80.roa
Signing time: Thu 02 Jan 2025 09:49:40 +0000
ROA not before: Thu 02 Jan 2025 09:49:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44527
IP address blocks: 31.44.214.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 16 Jan 2025 22:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:b5:13:c8:bf:ba:49:23:0f:92:c2:34:f4:1e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83bce35561f541bda97e777e6879a1d704e7b42f
Validity
Not Before: Jan 2 09:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d53f9d3c6b58d2317c99e5e87423067b54fb63cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:28:48:a0:88:2c:ae:12:7d:44:70:0b:cb:ae:
53:9f:28:21:d3:9a:ab:c6:f7:1c:0b:4a:07:92:88:
55:8b:29:d1:a9:3d:b7:ef:d3:a6:fe:29:6e:ca:bf:
b5:da:b0:30:a2:10:78:0d:a6:b1:19:83:a1:66:59:
3a:11:02:db:dd:58:cd:89:9b:65:37:5c:db:41:14:
6e:7b:62:96:bf:36:81:74:c0:c4:92:18:e0:f2:b3:
6d:0d:04:46:e7:55:13:83:91:bb:9d:85:8e:07:70:
0e:84:0c:7e:ee:01:11:96:a1:d3:ed:f9:fe:16:b6:
32:2b:f8:03:c4:42:40:d1:57:e4:20:ce:80:5a:c4:
22:7c:ec:8e:85:1a:70:7d:b7:c0:9e:ea:06:e2:48:
01:30:3a:e9:63:64:25:6f:43:8e:7e:b5:50:74:0f:
af:f5:d5:3b:ec:82:32:3e:c8:5f:ff:d4:10:dd:0b:
2f:ac:8f:83:3f:d6:fa:2d:2e:5a:a3:10:d8:2b:a1:
f8:7d:f4:6f:b4:f2:7f:21:14:f7:e8:ad:45:27:ab:
d5:59:42:28:08:11:8d:43:96:99:09:35:f2:8d:df:
54:6a:50:fe:b5:79:95:83:31:92:1a:d0:fa:40:e4:
17:49:70:7b:a4:50:13:ed:4b:77:35:95:d5:9f:7e:
2d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:3F:9D:3C:6B:58:D2:31:7C:99:E5:E8:74:23:06:7B:54:FB:63:CD
X509v3 Authority Key Identifier:
keyid:83:BC:E3:55:61:F5:41:BD:A9:7E:77:7E:68:79:A1:D7:04:E7:B4:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g7zjVWH1Qb2pfnd-aHmh1wTntC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/1T-dPGtY0jF8meXodCMGe1T7Y80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/35064b-7a5a-4c74-8743-fd8660c4fd6e/1/g7zjVWH1Qb2pfnd-aHmh1wTntC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.214.0/23
Signature Algorithm: sha256WithRSAEncryption
94:d4:b5:35:b0:c0:9e:f0:98:60:ec:74:88:1c:79:7b:a0:a4:
6d:17:92:08:b2:8a:83:7a:bd:10:17:21:65:9f:1f:ef:2e:d0:
86:9d:5d:9c:f2:73:a4:00:24:52:df:c3:42:21:d7:20:a0:e0:
b6:c5:47:6a:2d:e7:5c:28:e9:90:b6:f2:d0:39:b2:4e:7e:23:
1a:89:94:e7:f0:2e:b0:f5:2c:e8:ce:42:b3:93:92:9c:1b:15:
9c:c0:7a:99:c3:ed:aa:9a:55:27:b4:6d:af:3e:9c:5b:4b:18:
23:22:a9:fd:0f:d9:51:1b:49:cd:f0:15:90:56:bf:d2:8e:2a:
5b:7b:0d:97:8a:92:c6:20:07:21:91:3e:57:24:7a:46:92:e1:
5d:35:f1:44:7a:6b:77:e6:7e:2f:70:26:4b:3c:f0:74:aa:ed:
4b:bf:0c:ae:7a:cc:69:0e:5c:4c:15:d8:dc:c8:26:0f:22:7c:
0e:81:b8:84:26:83:a4:2e:5a:a7:af:c2:b0:69:68:48:fc:87:
14:e5:0a:c2:f4:99:5a:20:25:cd:83:2d:24:2d:5c:51:d9:48:
08:c8:2b:bf:d7:18:fc:62:a1:a0:de:88:98:b3:1b:42:50:9b:
ee:70:8f:6b:53:56:9a:42:e8:f0:c8:d5:77:27:7a:d6:17:ad:
83:ff:93:c7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQma7UTyL+6SSMPksI09B4XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzYmNlMzU1NjFmNTQxYmRhOTdlNzc3ZTY4NzlhMWQ3MDRl
N2I0MmYwHhcNMjUwMTAyMDk0OTQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTNmOWQzYzZiNThkMjMxN2M5OWU1ZTg3NDIzMDY3YjU0ZmI2M2NkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuihIoIgsrhJ9RHALy65Tnygh05qr
xvccC0oHkohViynRqT2379Om/iluyr+12rAwohB4DaaxGYOhZlk6EQLb3VjNiZtl
N1zbQRRue2KWvzaBdMDEkhjg8rNtDQRG51UTg5G7nYWOB3AOhAx+7gERlqHT7fn+
FrYyK/gDxEJA0VfkIM6AWsQifOyOhRpwfbfAnuoG4kgBMDrpY2Qlb0OOfrVQdA+v
9dU77IIyPshf/9QQ3QsvrI+DP9b6LS5aoxDYK6H4ffRvtPJ/IRT36K1FJ6vVWUIo
CBGNQ5aZCTXyjd9UalD+tXmVgzGSGtD6QOQXSXB7pFAT7Ut3NZXVn34tuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNU/nTxrWNIxfJnl6HQjBntU+2PNMB8GA1UdIwQY
MBaAFIO841Vh9UG9qX53fmh5odcE57QvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzd6alZXSDFRYjJwZm5kLWFIbWgxd1RudEM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zNTA2NGItN2E1YS00Yzc0LTg3NDMt
ZmQ4NjYwYzRmZDZlLzEvMVQtZFBHdFkwakY4bWVYb2RDTUdlMVQ3WTgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8zNTA2NGItN2E1YS00Yzc0LTg3NDMtZmQ4NjYwYzRmZDZl
LzEvZzd6alZXSDFRYjJwZm5kLWFIbWgxd1RudEM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBHyzWMA0G
CSqGSIb3DQEBCwUAA4IBAQCU1LU1sMCe8Jhg7HSIHHl7oKRtF5IIsoqDer0QFyFl
nx/vLtCGnV2c8nOkACRS38NCIdcgoOC2xUdqLedcKOmQtvLQObJOfiMaiZTn8C6w
9SzozkKzk5KcGxWcwHqZw+2qmlUntG2vPpxbSxgjIqn9D9lRG0nN8BWQVr/Sjipb
ew2XipLGIAchkT5XJHpGkuFdNfFEemt35n4vcCZLPPB0qu1LvwyuesxpDlxMFdjc
yCYPInwOgbiEJoOkLlqnr8KwaWhI/IcU5QrC9JlaICXNgy0kLVxR2UgIyCu/1xj8
YqGg3oiYsxtCUJvucI9rU1aaQujwyNV3J3rWF62D/5PH
-----END CERTIFICATE-----
Generated at Sat Apr 19 03:43:04 2025 by rpki-client