Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4d9bad-d2ac-4179-8945-94bb83a20029/1/3sZIaqTw_tSFqLAxmDBy56EmMVk.roa
File: 3sZIaqTw_tSFqLAxmDBy56EmMVk.roa (raw, json)
Hash identifier: mTLRBtWUEF+m3LL15rrTg30/FbZsqdDKbMoPxWxoiS8=
Subject key identifier: DE:C6:48:6A:A4:F0:FE:D4:85:A8:B0:31:98:30:72:E7:A1:26:31:59
Certificate issuer: /CN=ab6f6a36ec2960d4d05f3d9dcb187b9b904ea59b
Certificate serial: 01940159075EB129E00A4D08B3E2FB0D1384
Authority key identifier: AB:6F:6A:36:EC:29:60:D4:D0:5F:3D:9D:CB:18:7B:9B:90:4E:A5:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q29qNuwpYNTQXz2dyxh7m5BOpZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4d9bad-d2ac-4179-8945-94bb83a20029/1/3sZIaqTw_tSFqLAxmDBy56EmMVk.roa
Signing time: Thu 26 Dec 2024 05:03:19 +0000
ROA not before: Thu 26 Dec 2024 05:03:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197882
IP address blocks: 31.25.136.0/24 maxlen: 24
31.25.137.0/24 maxlen: 24
31.25.138.0/24 maxlen: 24
31.25.139.0/24 maxlen: 24
31.25.140.0/24 maxlen: 24
31.25.141.0/24 maxlen: 24
130.255.92.0/24 maxlen: 24
130.255.93.0/24 maxlen: 24
130.255.94.0/24 maxlen: 24
130.255.95.0/24 maxlen: 24
159.255.160.0/22 maxlen: 22
159.255.160.0/24 maxlen: 24
159.255.161.0/24 maxlen: 24
159.255.162.0/24 maxlen: 24
159.255.163.0/24 maxlen: 24
159.255.164.0/24 maxlen: 24
185.14.248.0/23 maxlen: 23
185.14.250.0/24 maxlen: 24
185.101.236.0/24 maxlen: 24
185.101.237.0/24 maxlen: 24
185.101.238.0/24 maxlen: 24
185.101.239.0/24 maxlen: 24
185.184.198.0/24 maxlen: 24
185.184.199.0/24 maxlen: 24
185.212.33.0/24 maxlen: 24
2a03:bcc0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 27 Dec 2024 18:51:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:01:59:07:5e:b1:29:e0:0a:4d:08:b3:e2:fb:0d:13:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab6f6a36ec2960d4d05f3d9dcb187b9b904ea59b
Validity
Not Before: Dec 26 05:03:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dec6486aa4f0fed485a8b031983072e7a1263159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:85:ef:47:90:80:fe:1d:b9:b8:c7:3c:f9:d5:
75:7c:e5:1b:50:15:19:a4:68:92:25:dc:43:61:78:
00:61:63:26:b3:6f:3a:8e:55:bc:1b:7f:96:ef:94:
ea:64:12:2a:84:00:58:37:57:f7:8e:a8:29:03:15:
e1:ef:9d:3f:3f:52:d8:12:70:fd:8d:59:c0:ce:ec:
95:ce:cc:4f:a6:50:03:83:8a:04:8a:bf:18:b9:f1:
14:92:2b:17:de:67:7e:c9:e3:da:23:a6:58:68:6c:
28:50:29:e8:ea:69:20:02:51:bc:d1:f4:8b:11:52:
4a:96:1b:44:1d:60:7d:ab:17:71:c8:32:6d:87:7f:
62:d9:a5:54:c9:02:47:2a:b4:1a:a6:4c:61:8b:8a:
b2:bc:4e:c7:9b:39:5e:5f:2a:a4:8b:09:49:61:b8:
fc:a3:14:98:6e:4a:a5:53:82:43:70:e1:dc:49:2c:
7d:3c:c6:a8:27:fd:33:c1:81:9a:37:10:5a:96:59:
41:b1:6a:dc:0f:5d:a3:93:17:a2:ac:19:a5:2d:52:
f7:be:3e:72:6e:22:d7:11:6a:56:15:2f:51:6b:99:
f5:d1:88:37:4c:87:30:d6:34:3c:75:dd:d6:2f:b9:
71:80:9e:4d:68:49:cb:ac:81:9c:02:a1:36:ad:89:
7b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:C6:48:6A:A4:F0:FE:D4:85:A8:B0:31:98:30:72:E7:A1:26:31:59
X509v3 Authority Key Identifier:
keyid:AB:6F:6A:36:EC:29:60:D4:D0:5F:3D:9D:CB:18:7B:9B:90:4E:A5:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q29qNuwpYNTQXz2dyxh7m5BOpZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4d9bad-d2ac-4179-8945-94bb83a20029/1/3sZIaqTw_tSFqLAxmDBy56EmMVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4d9bad-d2ac-4179-8945-94bb83a20029/1/q29qNuwpYNTQXz2dyxh7m5BOpZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.136.0-31.25.141.255
130.255.92.0/22
159.255.160.0-159.255.164.255
185.14.248.0-185.14.250.255
185.101.236.0/22
185.184.198.0/23
185.212.33.0/24
IPv6:
2a03:bcc0:1::/48
Signature Algorithm: sha256WithRSAEncryption
a5:8f:c9:65:16:6b:c6:ae:cf:3a:eb:91:ca:df:ad:5d:49:b3:
0c:c8:a6:de:07:0b:64:17:bf:2b:ff:47:96:c1:37:72:57:ad:
2e:dd:3a:89:b5:b2:be:e0:91:4c:16:35:89:2e:c7:f1:4e:f3:
76:d7:57:81:5a:35:b0:12:da:1c:3e:ad:d6:53:bc:51:07:de:
6d:48:3f:d7:51:2b:96:e2:9f:ba:91:c4:de:e5:56:d7:e5:d7:
2b:20:1f:32:7a:86:e5:74:97:7b:7b:5b:04:d2:33:a5:ec:f5:
e9:6c:65:a3:ca:5e:f0:10:78:26:b1:c3:31:97:9d:c4:f4:8a:
cc:be:d1:c1:1c:08:0c:3c:69:73:80:55:09:70:38:63:9a:d5:
07:b5:45:c4:20:0e:bb:6c:c2:87:5a:5a:c5:c3:8d:50:0b:05:
57:bd:2b:70:b6:23:04:fd:92:66:b2:ce:00:7f:02:0b:2f:30:
5d:9a:cb:71:f9:50:48:db:19:bd:a5:74:f8:5c:09:d1:82:4b:
ce:60:a4:f7:2b:71:36:4d:c2:75:7d:d9:87:38:de:64:82:a2:
3f:95:c0:b1:6e:56:7d:e5:ed:2f:1a:3e:d6:30:8b:f0:e5:b8:
75:83:b6:d7:63:9d:f4:3f:bd:c0:6f:1a:57:ae:da:7b:8f:a7:
29:83:24:68
-----BEGIN CERTIFICATE-----
MIIFSjCCBDKgAwIBAgISAZQBWQdesSngCk0Is+L7DROEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNmY2YTM2ZWMyOTYwZDRkMDVmM2Q5ZGNiMTg3YjliOTA0
ZWE1OWIwHhcNMjQxMjI2MDUwMzE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZWM2NDg2YWE0ZjBmZWQ0ODVhOGIwMzE5ODMwNzJlN2ExMjYzMTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2IXvR5CA/h25uMc8+dV1fOUbUBUZ
pGiSJdxDYXgAYWMms286jlW8G3+W75TqZBIqhABYN1f3jqgpAxXh750/P1LYEnD9
jVnAzuyVzsxPplADg4oEir8YufEUkisX3md+yePaI6ZYaGwoUCno6mkgAlG80fSL
EVJKlhtEHWB9qxdxyDJth39i2aVUyQJHKrQapkxhi4qyvE7HmzleXyqkiwlJYbj8
oxSYbkqlU4JDcOHcSSx9PMaoJ/0zwYGaNxBalllBsWrcD12jkxeirBmlLVL3vj5y
biLXEWpWFS9Ra5n10Yg3TIcw1jQ8dd3WL7lxgJ5NaEnLrIGcAqE2rYl7eQIDAQAB
o4ICVjCCAlIwHQYDVR0OBBYEFN7GSGqk8P7UhaiwMZgwcuehJjFZMB8GA1UdIwQY
MBaAFKtvajbsKWDU0F89ncsYe5uQTqWbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTI5cU51d3BZTlRRWHoyZHl4aDdtNUJPcFpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy80ZDliYWQtZDJhYy00MTc5LTg5NDUt
OTRiYjgzYTIwMDI5LzEvM3NaSWFxVHdfdFNGcUxBeG1EQnk1NkVtTVZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy80ZDliYWQtZDJhYy00MTc5LTg5NDUtOTRiYjgzYTIwMDI5
LzEvcTI5cU51d3BZTlRRWHoyZHl4aDdtNUJPcFpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGwGCCsGAQUFBwEHAQH/BF0wWzBIBAIAATBCMAwDBAMfGYgD
BAEfGYwDBAKC/1wwDAMEBZ//oAMEAJ//pDAMAwQDuQ74AwQAuQ76AwQCuWXsAwQB
ubjGAwQAudQhMA8EAgACMAkDBwAqA7zAAAEwDQYJKoZIhvcNAQELBQADggEBAKWP
yWUWa8auzzrrkcrfrV1JswzIpt4HC2QXvyv/R5bBN3JXrS7dOom1sr7gkUwWNYku
x/FO83bXV4FaNbAS2hw+rdZTvFEH3m1IP9dRK5bin7qRxN7lVtfl1ysgHzJ6huV0
l3t7WwTSM6Xs9elsZaPKXvAQeCaxwzGXncT0isy+0cEcCAw8aXOAVQlwOGOa1Qe1
RcQgDrtswodaWsXDjVALBVe9K3C2IwT9kmayzgB/AgsvMF2ay3H5UEjbGb2ldPhc
CdGCS85gpPcrcTZNwnV92Yc43mSCoj+VwLFuVn3l7S8aPtYwi/DluHWDttdjnfQ/
vcBvGleu2nuPpymDJGg=
-----END CERTIFICATE-----
Generated at Sun Apr 20 22:02:14 2025 by rpki-client