Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/GbfdAhcUKsvhbdqijEjj-isX2WU.roa
File: GbfdAhcUKsvhbdqijEjj-isX2WU.roa (raw, json)
Hash identifier: JLy3ZtRrhzN90NTeNSPvdwwXi9APHzZICaOZmkqJipY=
Subject key identifier: 19:B7:DD:02:17:14:2A:CB:E1:6D:DA:A2:8C:48:E3:FA:2B:17:D9:65
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 019537579999FBEABD8F7AA7A6C4A806BC6C
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/GbfdAhcUKsvhbdqijEjj-isX2WU.roa
Signing time: Mon 24 Feb 2025 09:44:02 +0000
ROA not before: Mon 24 Feb 2025 09:44:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 185.227.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Feb 2025 15:15:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:37:57:99:99:fb:ea:bd:8f:7a:a7:a6:c4:a8:06:bc:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Feb 24 09:44:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=19b7dd0217142acbe16ddaa28c48e3fa2b17d965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b6:2f:98:f2:e2:56:96:b0:47:c0:2e:75:35:
22:3c:84:20:be:af:d5:c5:49:d1:a3:48:00:2f:76:
6a:df:50:a1:69:17:ac:a5:0c:84:42:e3:78:7f:c9:
c8:3a:9f:ba:c8:b6:bf:13:34:63:60:b8:fc:01:c3:
17:7e:aa:c3:ee:37:cc:68:20:5b:c0:f8:ee:3e:1b:
db:d6:a0:40:bc:2b:2b:15:69:20:27:f3:80:ac:09:
6a:ab:b9:59:b6:bb:9e:2f:2d:48:e9:29:b3:5c:c3:
e8:5c:05:7e:e0:22:a6:fc:f0:16:55:73:28:a2:e7:
0d:cc:f4:fd:77:bd:8a:96:5c:56:45:82:86:40:b3:
cc:79:f2:fd:0b:c8:7a:87:0e:b4:aa:de:2b:b8:08:
48:27:9a:a5:7f:d4:a6:f7:d2:ac:57:83:b6:72:9f:
63:c7:35:ac:d2:0b:d7:0e:30:de:56:10:82:94:10:
53:d9:e5:05:14:96:16:e1:a5:f2:4b:d3:47:4a:b3:
68:2e:83:e1:b0:e2:c5:74:c2:56:5d:ae:c0:60:32:
c7:db:7a:9a:66:16:ee:bd:82:0b:35:5b:b6:42:aa:
98:df:db:cf:a2:67:09:da:b3:24:8e:56:ef:5d:cb:
57:ac:8f:37:17:d9:88:00:03:e0:d1:34:37:7d:14:
4f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:B7:DD:02:17:14:2A:CB:E1:6D:DA:A2:8C:48:E3:FA:2B:17:D9:65
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/GbfdAhcUKsvhbdqijEjj-isX2WU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.7.0/24
Signature Algorithm: sha256WithRSAEncryption
71:6c:28:d5:60:a4:23:56:c7:8e:c9:09:bf:48:17:95:ce:90:
4f:ef:2a:50:14:ff:99:d9:84:25:72:98:2f:11:76:11:80:f2:
1f:df:b1:42:f4:30:fc:b1:e4:79:51:25:df:78:38:cc:e2:06:
8c:84:02:69:17:ae:6c:ab:d4:5e:ba:17:6e:31:48:51:31:10:
51:e8:ad:5e:89:3a:08:ce:42:69:4c:32:af:3c:f5:35:7d:57:
71:3e:ea:d0:2e:47:12:f2:1f:09:90:b7:e1:60:d1:f8:89:d4:
e9:46:90:51:0a:61:28:9f:08:8b:6f:a6:12:7c:f8:51:fc:7f:
31:31:c6:e5:de:a1:9a:91:a8:36:cf:d8:72:ca:e4:bc:21:0f:
e4:92:c5:b6:c6:c5:5a:39:e3:90:dc:34:33:62:e1:7b:3f:3c:
58:ee:0f:c8:78:53:7f:6c:ed:77:79:f4:07:cd:8a:d0:a5:46:
ad:6e:bf:e4:5c:56:2a:fc:85:65:3e:0c:5a:b3:fd:ea:36:22:
fb:d1:6b:69:70:bd:2d:51:dc:d0:88:c2:fb:7f:58:31:5e:5c:
4b:b6:93:13:31:93:1d:1a:d4:cf:ad:64:66:1f:06:28:74:f8:
23:70:0a:ff:39:f7:f4:ef:b9:da:f0:2e:d1:8a:11:e3:87:52:
2e:b6:ac:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZU3V5mZ++q9j3qnpsSoBrxsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWFjODNlZTNhM2Y5NjhkNjZhZDJmZGY0NjE2ZTdiYjFl
NGQxZDcwHhcNMjUwMjI0MDk0NDAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOWI3ZGQwMjE3MTQyYWNiZTE2ZGRhYTI4YzQ4ZTNmYTJiMTdkOTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7YvmPLiVpawR8AudTUiPIQgvq/V
xUnRo0gAL3Zq31ChaRespQyEQuN4f8nIOp+6yLa/EzRjYLj8AcMXfqrD7jfMaCBb
wPjuPhvb1qBAvCsrFWkgJ/OArAlqq7lZtrueLy1I6SmzXMPoXAV+4CKm/PAWVXMo
oucNzPT9d72KllxWRYKGQLPMefL9C8h6hw60qt4ruAhIJ5qlf9Sm99KsV4O2cp9j
xzWs0gvXDjDeVhCClBBT2eUFFJYW4aXyS9NHSrNoLoPhsOLFdMJWXa7AYDLH23qa
ZhbuvYILNVu2QqqY39vPomcJ2rMkjlbvXctXrI83F9mIAAPg0TQ3fRRP/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBm33QIXFCrL4W3aooxI4/orF9llMB8GA1UdIwQY
MBaAFI0ayD7jo/lo1mrS/fRhbnux5NHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWIt
ZGRmNTY3ZWRlZDAzLzEvR2JmZEFoY1VLc3ZoYmRxaWpFamotaXNYMldVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWItZGRmNTY3ZWRlZDAz
LzEvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueMHMA0G
CSqGSIb3DQEBCwUAA4IBAQBxbCjVYKQjVseOyQm/SBeVzpBP7ypQFP+Z2YQlcpgv
EXYRgPIf37FC9DD8seR5USXfeDjM4gaMhAJpF65sq9ReuhduMUhRMRBR6K1eiToI
zkJpTDKvPPU1fVdxPurQLkcS8h8JkLfhYNH4idTpRpBRCmEonwiLb6YSfPhR/H8x
Mcbl3qGakag2z9hyyuS8IQ/kksW2xsVaOeOQ3DQzYuF7PzxY7g/IeFN/bO13efQH
zYrQpUatbr/kXFYq/IVlPgxas/3qNiL70WtpcL0tUdzQiML7f1gxXlxLtpMTMZMd
GtTPrWRmHwYodPgjcAr/Off077na8C7RihHjh1Iutqyi
-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:51 2025 by rpki-client