Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5nET2G4L8Y8LztZ48Qgt13t4Mu0.roa
File: 5nET2G4L8Y8LztZ48Qgt13t4Mu0.roa (raw, json)
Hash identifier: lqczgT58hPZ7aJwyT4grzwmRLhbUu35Uxx0Q+55ZiKk=
Subject key identifier: E6:71:13:D8:6E:0B:F1:8F:0B:CE:D6:78:F1:08:2D:D7:7B:78:32:ED
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA29E447C012FA21ECBD1911BECC0FA6
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5nET2G4L8Y8LztZ48Qgt13t4Mu0.roa
Signing time: Tue 02 Jan 2024 12:33:12 +0000
ROA not before: Tue 02 Jan 2024 12:33:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25548
IP address blocks: 93.170.36.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Nov 2024 17:10:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:e4:47:c0:12:fa:21:ec:bd:19:11:be:cc:0f:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e67113d86e0bf18f0bced678f1082dd77b7832ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:1c:8d:25:72:e5:c1:ea:68:71:78:7f:30:31:
b9:1f:45:9b:c3:c8:52:a0:f0:7d:61:13:de:a0:d2:
02:6d:06:47:89:2b:0c:10:07:9a:04:71:4e:2e:5a:
9e:1c:d5:b7:65:6b:25:bb:07:ea:67:f6:b7:aa:5b:
0e:d7:7e:1b:70:8b:3f:b8:71:18:25:57:72:e2:c6:
62:ec:86:69:3f:53:a9:05:4d:5f:8c:69:35:46:60:
48:e2:60:c4:2b:50:b5:48:3b:8b:5d:73:8c:81:40:
82:66:39:19:ff:49:26:0f:37:12:7a:44:91:61:71:
4f:84:39:3f:f8:cc:6b:d6:ea:a2:60:d8:49:95:c8:
84:1c:d5:0e:c6:d5:97:dd:c7:1b:68:fe:f1:32:05:
64:13:e3:36:70:16:dc:e3:40:67:95:c8:4e:78:0d:
57:93:d0:99:90:4c:e2:32:d0:61:4d:10:f1:49:3f:
a2:71:ee:30:3c:5d:d2:f3:ba:c8:93:2f:de:c3:d8:
6b:f0:1b:b3:a1:a4:e4:12:27:c4:96:5c:93:29:4d:
18:92:b2:9c:2f:87:0e:d5:b1:5f:9b:85:f8:f0:a2:
e7:0a:84:7a:fd:20:87:89:66:45:59:d1:6d:09:79:
08:4d:a7:a0:ee:0b:03:76:7b:80:8d:af:c3:73:a0:
fa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:71:13:D8:6E:0B:F1:8F:0B:CE:D6:78:F1:08:2D:D7:7B:78:32:ED
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/5nET2G4L8Y8LztZ48Qgt13t4Mu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.36.0/22
Signature Algorithm: sha256WithRSAEncryption
06:f9:cb:c3:31:79:cb:e4:e2:e1:92:ba:4d:7d:a0:e8:7e:a9:
8d:93:0b:0f:71:08:44:a1:64:fd:34:ad:13:41:93:3f:36:74:
82:92:80:4f:15:96:64:37:08:c7:4b:96:8e:03:bd:87:e5:78:
af:f8:f2:c6:44:c7:e3:fc:b8:d9:04:21:1e:ce:bd:a3:ef:5b:
64:66:f4:7d:7f:b6:26:38:4c:0e:1a:82:53:0b:03:74:e6:10:
93:44:65:3b:87:3c:75:32:69:1f:a7:ce:bf:15:cd:97:80:36:
40:89:49:07:66:90:87:7d:a8:17:8f:8d:79:2c:8e:a5:5c:42:
85:0f:ed:b2:f4:96:38:f4:4c:d1:ae:46:c7:ae:93:3e:87:57:
72:8f:60:26:a7:11:76:f5:cf:b2:69:50:bf:6b:51:2f:f3:ea:
9f:7d:a4:7e:9d:58:54:55:65:e2:32:8d:04:2a:be:7d:e1:f9:
03:d8:97:a7:61:89:ec:81:86:9c:d9:c9:9f:e9:7b:78:b2:54:
c8:bf:bf:48:7b:c9:d2:ee:b5:48:af:ac:33:3a:1f:b1:5a:a3:
da:ed:57:38:9d:05:14:f9:b1:af:f6:a2:56:9b:3d:d8:21:86:
ae:1b:88:d9:69:a8:3d:ec:e1:0c:df:c1:d5:fa:9a:dd:84:d4:
3e:8e:10:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKeRHwBL6Iey9GRG+zA+mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjQwMTAyMTIzMzEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNjcxMTNkODZlMGJmMThmMGJjZWQ2NzhmMTA4MmRkNzdiNzgzMmVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgxyNJXLlwepocXh/MDG5H0Wbw8hS
oPB9YRPeoNICbQZHiSsMEAeaBHFOLlqeHNW3ZWsluwfqZ/a3qlsO134bcIs/uHEY
JVdy4sZi7IZpP1OpBU1fjGk1RmBI4mDEK1C1SDuLXXOMgUCCZjkZ/0kmDzcSekSR
YXFPhDk/+Mxr1uqiYNhJlciEHNUOxtWX3ccbaP7xMgVkE+M2cBbc40BnlchOeA1X
k9CZkEziMtBhTRDxST+ice4wPF3S87rIky/ew9hr8BuzoaTkEifEllyTKU0YkrKc
L4cO1bFfm4X48KLnCoR6/SCHiWZFWdFtCXkITaeg7gsDdnuAja/Dc6D6LQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOZxE9huC/GPC87WePEILdd7eDLtMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvNW5FVDJHNEw4WThMenRaNDhRZ3QxM3Q0TXUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXaokMA0G
CSqGSIb3DQEBCwUAA4IBAQAG+cvDMXnL5OLhkrpNfaDofqmNkwsPcQhEoWT9NK0T
QZM/NnSCkoBPFZZkNwjHS5aOA72H5Xiv+PLGRMfj/LjZBCEezr2j71tkZvR9f7Ym
OEwOGoJTCwN05hCTRGU7hzx1Mmkfp86/Fc2XgDZAiUkHZpCHfagXj415LI6lXEKF
D+2y9JY49EzRrkbHrpM+h1dyj2AmpxF29c+yaVC/a1Ev8+qffaR+nVhUVWXiMo0E
Kr594fkD2JenYYnsgYac2cmf6Xt4slTIv79Ie8nS7rVIr6wzOh+xWqPa7Vc4nQUU
+bGv9qJWmz3YIYauG4jZaag97OEM38HV+prdhNQ+jhAX
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:06:05 2025 by rpki-client