Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/4d5e4a-8a16-4537-be1f-1b1362b9b6a2/1/pSVSb0iF-j-JTIuNO8ebVzz9DJE.roa
File: pSVSb0iF-j-JTIuNO8ebVzz9DJE.roa (raw, json)
Hash identifier: l+sax8Ct4osWi9fYuh1HzY1DnCi4Q+FEFmA1zM0sT0U=
Subject key identifier: A5:25:52:6F:48:85:FA:3F:89:4C:8B:8D:3B:C7:9B:57:3C:FD:0C:91
Certificate issuer: /CN=fe54ab2d481cf1622a2c52183ab4f5a930a4ae41
Certificate serial: 018DFA1136778015E835453DAA841DB1B16B
Authority key identifier: FE:54:AB:2D:48:1C:F1:62:2A:2C:52:18:3A:B4:F5:A9:30:A4:AE:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lSrLUgc8WIqLFIYOrT1qTCkrkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/4d5e4a-8a16-4537-be1f-1b1362b9b6a2/1/pSVSb0iF-j-JTIuNO8ebVzz9DJE.roa
Signing time: Fri 01 Mar 2024 12:50:48 +0000
ROA not before: Fri 01 Mar 2024 12:50:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25717
IP address blocks: 193.221.16.0/24 maxlen: 24
193.221.17.0/24 maxlen: 24
193.221.18.0/24 maxlen: 24
193.221.19.0/24 maxlen: 24
193.221.20.0/24 maxlen: 24
193.221.21.0/24 maxlen: 24
193.221.22.0/24 maxlen: 24
193.221.23.0/24 maxlen: 24
193.221.54.0/23 maxlen: 23
193.221.56.0/24 maxlen: 24
193.221.57.0/24 maxlen: 24
193.221.68.0/24 maxlen: 24
193.221.69.0/24 maxlen: 24
193.221.70.0/23 maxlen: 23
193.221.72.0/24 maxlen: 24
193.221.74.0/24 maxlen: 24
193.221.75.0/24 maxlen: 24
193.221.76.0/24 maxlen: 24
193.221.77.0/24 maxlen: 24
193.221.78.0/24 maxlen: 24
193.221.79.0/24 maxlen: 24
193.221.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 15:43:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:fa:11:36:77:80:15:e8:35:45:3d:aa:84:1d:b1:b1:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe54ab2d481cf1622a2c52183ab4f5a930a4ae41
Validity
Not Before: Mar 1 12:50:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a525526f4885fa3f894c8b8d3bc79b573cfd0c91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a3:54:2b:03:56:39:c5:48:08:69:e9:65:c0:
c8:e1:ca:f1:03:83:dd:cb:ee:07:40:c5:5f:01:7f:
72:bc:8d:e7:ad:fd:fd:c3:07:a7:65:ad:71:48:bb:
ab:05:6a:60:71:35:93:1b:e5:a1:06:25:17:ee:6b:
4f:b9:f2:0e:a1:7a:59:b4:8d:ef:a9:6e:2c:82:02:
15:ca:39:62:d4:81:5b:42:8b:5a:ed:f1:0b:7e:35:
2e:73:29:3a:f0:21:d9:7e:6a:a7:89:44:1c:90:ff:
2c:fa:44:e9:7f:3f:65:dd:da:1d:99:98:88:58:a6:
69:2f:a6:87:bb:e0:ca:6d:99:15:10:8a:91:92:30:
82:3a:d8:c8:8e:65:d9:87:91:f2:5e:c4:b7:b6:4a:
43:f2:27:f4:4e:1e:85:48:d6:7d:a4:93:65:e5:97:
fd:09:ee:e0:c1:ef:52:d8:48:3a:0b:18:fc:53:15:
6e:d9:89:58:74:85:bf:d5:96:9c:5f:30:77:d5:dc:
a7:69:2c:84:48:bd:2e:6d:86:b5:66:35:14:3a:44:
51:23:84:71:2e:4d:36:67:5c:05:8f:2b:0e:9b:d1:
65:01:12:93:ae:d8:87:44:ec:26:18:b6:73:21:97:
0c:a4:b4:2e:f3:60:9f:7d:5e:52:46:88:6c:79:7a:
56:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:25:52:6F:48:85:FA:3F:89:4C:8B:8D:3B:C7:9B:57:3C:FD:0C:91
X509v3 Authority Key Identifier:
keyid:FE:54:AB:2D:48:1C:F1:62:2A:2C:52:18:3A:B4:F5:A9:30:A4:AE:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lSrLUgc8WIqLFIYOrT1qTCkrkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/4d5e4a-8a16-4537-be1f-1b1362b9b6a2/1/pSVSb0iF-j-JTIuNO8ebVzz9DJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/4d5e4a-8a16-4537-be1f-1b1362b9b6a2/1/_lSrLUgc8WIqLFIYOrT1qTCkrkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.16.0/21
193.221.54.0-193.221.57.255
193.221.68.0-193.221.72.255
193.221.74.0-193.221.80.255
Signature Algorithm: sha256WithRSAEncryption
3b:33:7d:49:92:44:92:8e:5d:7f:9c:6b:dc:cb:b1:36:1a:4c:
18:4b:95:ea:50:88:6a:25:bf:6a:5b:35:7f:ba:b1:c7:0b:14:
2b:06:2f:c6:79:53:dd:52:a1:c0:fe:53:42:77:89:e2:25:a7:
96:fb:fd:db:a3:3c:ef:20:36:15:42:df:6a:10:72:d4:b6:f4:
c6:85:c5:d2:38:4d:d8:b6:9c:1b:9d:07:f3:ff:cf:09:c0:e3:
50:10:f5:e8:02:99:3d:12:ee:c8:ed:d0:42:4c:cb:11:fd:8a:
16:56:1c:a3:23:70:3f:d5:5e:46:6e:8e:61:4b:98:1c:f4:96:
11:9a:a3:f9:8b:d9:b2:78:55:05:6f:ab:f2:82:27:f5:ea:b4:
0d:bc:d2:2e:c7:00:e1:79:83:cd:f4:83:3a:54:87:83:34:e6:
48:51:ac:d8:03:22:d9:49:56:bf:7f:9c:31:ce:e8:6d:e4:0d:
c1:f9:8b:a4:70:26:1d:09:c5:67:e3:12:5e:58:04:fb:75:7e:
85:14:99:6e:fb:79:0a:6c:f2:eb:75:1e:86:5b:95:d2:5e:eb:
1b:b7:4a:b9:de:ca:73:39:85:d2:ef:35:98:22:c8:e7:d6:6c:
46:d4:aa:dd:8f:ef:03:d3:5b:81:8a:a3:61:2e:82:be:0b:b2:
2c:78:5a:4b
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAY36ETZ3gBXoNUU9qoQdsbFrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNTRhYjJkNDgxY2YxNjIyYTJjNTIxODNhYjRmNWE5MzBh
NGFlNDEwHhcNMjQwMzAxMTI1MDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTI1NTI2ZjQ4ODVmYTNmODk0YzhiOGQzYmM3OWI1NzNjZmQwYzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjaNUKwNWOcVICGnpZcDI4crxA4Pd
y+4HQMVfAX9yvI3nrf39wwenZa1xSLurBWpgcTWTG+WhBiUX7mtPufIOoXpZtI3v
qW4sggIVyjli1IFbQota7fELfjUucyk68CHZfmqniUQckP8s+kTpfz9l3dodmZiI
WKZpL6aHu+DKbZkVEIqRkjCCOtjIjmXZh5HyXsS3tkpD8if0Th6FSNZ9pJNl5Zf9
Ce7gwe9S2Eg6Cxj8UxVu2YlYdIW/1ZacXzB31dynaSyESL0ubYa1ZjUUOkRRI4Rx
Lk02Z1wFjysOm9FlARKTrtiHROwmGLZzIZcMpLQu82CffV5SRohseXpWcQIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFKUlUm9Ihfo/iUyLjTvHm1c8/QyRMB8GA1UdIwQY
MBaAFP5Uqy1IHPFiKixSGDq09akwpK5BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2xTckxVZ2M4V0lxTEZJWU9yVDFxVENrcmtFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC80ZDVlNGEtOGExNi00NTM3LWJlMWYt
MWIxMzYyYjliNmEyLzEvcFNWU2IwaUYtai1KVEl1Tk84ZWJWeno5REpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC80ZDVlNGEtOGExNi00NTM3LWJlMWYtMWIxMzYyYjliNmEy
LzEvX2xTckxVZ2M4V0lxTEZJWU9yVDFxVENrcmtFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQDwd0QMAwD
BAHB3TYDBAHB3TgwDAMEAsHdRAMEAMHdSDAMAwQBwd1KAwQAwd1QMA0GCSqGSIb3
DQEBCwUAA4IBAQA7M31JkkSSjl1/nGvcy7E2GkwYS5XqUIhqJb9qWzV/urHHCxQr
Bi/GeVPdUqHA/lNCd4niJaeW+/3bozzvIDYVQt9qEHLUtvTGhcXSOE3YtpwbnQfz
/88JwONQEPXoApk9Eu7I7dBCTMsR/YoWVhyjI3A/1V5Gbo5hS5gc9JYRmqP5i9my
eFUFb6vygif16rQNvNIuxwDheYPN9IM6VIeDNOZIUazYAyLZSVa/f5wxzuht5A3B
+YukcCYdCcVn4xJeWAT7dX6FFJlu+3kKbPLrdR6GW5XSXusbt0q53spzOYXS7zWY
Isjn1mxG1Krdj+8D01uBiqNhLoK+C7IseFpL
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:53 2025 by rpki-client