Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/gJztbQ24OO83NHHcAZyq7dPeDVQ.roa
File: gJztbQ24OO83NHHcAZyq7dPeDVQ.roa (raw, json)
Hash identifier: 3MaeWjSTd8TGV3Vh+PwH0mDPvo393ld44OPZtfkeTPQ=
Subject key identifier: 80:9C:ED:6D:0D:B8:38:EF:37:34:71:DC:01:9C:AA:ED:D3:DE:0D:54
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 019424B3CE83098054E6355CAB596BEF9813
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/gJztbQ24OO83NHHcAZyq7dPeDVQ.roa
Signing time: Thu 02 Jan 2025 01:49:11 +0000
ROA not before: Thu 02 Jan 2025 01:49:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 5.134.80.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 07 Jan 2025 06:21:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ce:83:09:80:54:e6:35:5c:ab:59:6b:ef:98:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 2 01:49:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=809ced6d0db838ef373471dc019caaedd3de0d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:08:d1:08:2a:f6:cc:db:ff:72:0f:b3:96:6b:
0a:77:09:71:fb:88:a3:f1:1e:3b:36:1a:b2:f5:d8:
89:a0:99:ce:8e:f1:55:a0:5b:38:f0:d7:65:18:e6:
f7:7c:16:d6:13:a7:30:cc:31:4c:f7:62:5c:52:01:
33:d3:2d:47:2b:b9:dd:8b:f2:4d:b8:94:18:50:63:
7f:31:18:9b:d0:1e:a9:c0:4e:52:a0:f5:66:5a:52:
f1:46:7f:2b:cf:c9:ef:ee:a3:21:73:7e:d8:3c:bc:
4c:d3:a0:b6:b7:80:22:d9:9a:a2:c7:43:9b:13:f1:
8a:d1:9a:8d:82:e5:fa:fa:06:56:f1:4a:fe:27:e9:
d4:47:fc:67:b8:02:c2:15:81:ae:17:82:fe:a2:15:
7e:f0:69:98:0b:48:d8:34:ff:29:bc:2e:51:40:5c:
6f:d6:5c:24:48:b7:69:ff:e1:09:db:80:e4:38:03:
48:ce:03:4d:bb:8d:7b:af:a1:54:b8:3f:b1:77:74:
20:53:6c:b6:83:93:8b:ca:5b:c1:85:5c:b8:50:49:
0f:3d:12:70:cb:9d:c6:3f:f8:2f:4e:3b:80:e0:aa:
4c:78:65:ca:7e:60:4b:5d:8a:f2:7f:f0:a8:6f:85:
89:34:6e:56:c1:2d:fb:6c:10:31:07:10:3c:4d:88:
7f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9C:ED:6D:0D:B8:38:EF:37:34:71:DC:01:9C:AA:ED:D3:DE:0D:54
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/gJztbQ24OO83NHHcAZyq7dPeDVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.80.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:81:12:dd:ac:39:98:28:e5:79:f7:3c:87:08:7f:ad:15:b4:
43:5b:aa:ae:9e:79:27:71:dc:4a:61:62:73:fd:60:72:3f:39:
52:8b:f8:d8:ae:1d:38:2e:c1:db:5d:3b:a7:84:8d:8a:1e:0d:
94:fd:8e:ac:f2:5d:5d:1e:56:25:11:5b:e4:c2:a3:77:b6:c9:
25:e4:b1:73:5d:06:05:37:b5:d2:6f:69:7b:5c:31:43:d9:4e:
bd:36:47:cc:c2:f4:75:e0:d2:fe:9b:f4:cf:42:72:13:f7:7d:
c1:ab:67:58:de:23:bd:46:4f:06:14:64:2a:dc:b9:72:15:01:
14:88:cc:67:10:ae:eb:6a:0c:a2:e3:4a:84:9b:6b:19:33:4d:
f2:3f:04:88:2c:e0:ea:c5:4f:e7:fa:a7:6a:cf:85:74:e3:fa:
78:0f:3d:ec:72:ac:3c:7c:2a:b2:f4:76:eb:21:fa:41:76:41:
84:f9:5e:7b:2c:99:96:ef:56:ec:54:e6:c8:a0:d1:5d:ca:b5:
b3:d0:08:a8:5c:63:a3:42:08:fd:01:54:32:0f:79:9a:4b:f3:
30:4a:04:db:21:ee:58:79:30:b5:69:db:2c:f4:2e:e9:58:6f:
5f:28:66:4b:b7:ee:76:ed:87:76:67:c9:a7:6e:92:70:cc:82:
90:9d:c8:1e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQks86DCYBU5jVcq1lr75gTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZThmNGVkNWRkMDYzMDFjNDIzOTg4ZTc4NmRhYmY1MWM1
ZjU2NzQwHhcNMjUwMTAyMDE0OTExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDljZWQ2ZDBkYjgzOGVmMzczNDcxZGMwMTljYWFlZGQzZGUwZDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAjRCCr2zNv/cg+zlmsKdwlx+4ij
8R47Nhqy9diJoJnOjvFVoFs48NdlGOb3fBbWE6cwzDFM92JcUgEz0y1HK7ndi/JN
uJQYUGN/MRib0B6pwE5SoPVmWlLxRn8rz8nv7qMhc37YPLxM06C2t4Ai2Zqix0Ob
E/GK0ZqNguX6+gZW8Ur+J+nUR/xnuALCFYGuF4L+ohV+8GmYC0jYNP8pvC5RQFxv
1lwkSLdp/+EJ24DkOANIzgNNu417r6FUuD+xd3QgU2y2g5OLylvBhVy4UEkPPRJw
y53GP/gvTjuA4KpMeGXKfmBLXYryf/Cob4WJNG5WwS37bBAxBxA8TYh/pwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFICc7W0NuDjvNzRx3AGcqu3T3g1UMB8GA1UdIwQY
MBaAFJPo9O1d0GMBxCOYjnhtq/UcX1Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQt
MWZjMTllYTczYTJhLzEvZ0p6dGJRMjRPTzgzTkhIY0FaeXE3ZFBlRFZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQtMWZjMTllYTczYTJh
LzEvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBYZQMA0G
CSqGSIb3DQEBCwUAA4IBAQCygRLdrDmYKOV59zyHCH+tFbRDW6qunnkncdxKYWJz
/WByPzlSi/jYrh04LsHbXTunhI2KHg2U/Y6s8l1dHlYlEVvkwqN3tskl5LFzXQYF
N7XSb2l7XDFD2U69NkfMwvR14NL+m/TPQnIT933Bq2dY3iO9Rk8GFGQq3LlyFQEU
iMxnEK7ragyi40qEm2sZM03yPwSILODqxU/n+qdqz4V04/p4Dz3scqw8fCqy9Hbr
IfpBdkGE+V57LJmW71bsVObIoNFdyrWz0AioXGOjQgj9AVQyD3maS/MwSgTbIe5Y
eTC1adss9C7pWG9fKGZLt+527Yd2Z8mnbpJwzIKQncge
-----END CERTIFICATE-----
Generated at Thu Apr 17 07:38:36 2025 by rpki-client