Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/a05eba-9d85-489b-aec7-ed42d3a625a4/1/5adyEYs17zi55Ct7JZd7n9XHHtQ.roa
File: 5adyEYs17zi55Ct7JZd7n9XHHtQ.roa (raw, json)
Hash identifier: QkjFUv6RfxJPVS1DUfa+jHFHCMibc/Sn9zdY7rhcCQo=
Subject key identifier: E5:A7:72:11:8B:35:EF:38:B9:E4:2B:7B:25:97:7B:9F:D5:C7:1E:D4
Certificate issuer: /CN=e0d435784da8c218e0ff107cdcfe24ca4569c949
Certificate serial: 018E6AD767E065799AF58377BE83A149EEEF
Authority key identifier: E0:D4:35:78:4D:A8:C2:18:E0:FF:10:7C:DC:FE:24:CA:45:69:C9:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4NQ1eE2owhjg_xB83P4kykVpyUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/a05eba-9d85-489b-aec7-ed42d3a625a4/1/5adyEYs17zi55Ct7JZd7n9XHHtQ.roa
Signing time: Sat 23 Mar 2024 10:24:45 +0000
ROA not before: Sat 23 Mar 2024 10:24:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202463
IP address blocks: 87.243.71.0/24 maxlen: 24
87.243.77.0/24 maxlen: 24
87.243.79.0/24 maxlen: 24
185.49.88.0/22 maxlen: 22
185.73.236.0/24 maxlen: 24
185.73.237.0/24 maxlen: 24
185.73.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:6a:d7:67:e0:65:79:9a:f5:83:77:be:83:a1:49:ee:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0d435784da8c218e0ff107cdcfe24ca4569c949
Validity
Not Before: Mar 23 10:24:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e5a772118b35ef38b9e42b7b25977b9fd5c71ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:18:ed:5b:5e:7f:7a:15:b4:f2:3c:f8:63:25:
29:7e:b0:13:e6:2d:b6:d8:3a:e2:82:ca:99:a7:31:
cc:de:e4:e8:d4:ae:d7:32:7a:87:e5:b9:df:da:95:
9c:5c:63:f5:d2:81:12:a5:06:45:68:3c:ff:f9:61:
b9:43:d9:de:d2:e8:50:8c:26:18:35:39:c8:a1:dc:
0d:d1:1d:4e:ea:cd:60:3d:01:18:4b:3a:84:1b:10:
c7:54:60:f9:14:37:83:c1:b1:55:bc:bf:23:33:a2:
00:47:a1:59:57:f0:5b:4f:27:e8:44:d0:2b:d6:07:
12:d7:76:63:8c:b3:89:3f:e3:02:75:23:c6:f5:3b:
7d:f0:4c:4f:7a:c3:29:f2:a8:73:ed:9f:16:d9:34:
9d:2e:53:86:8e:8d:9f:85:a0:7a:67:cc:a1:3c:32:
dc:02:af:1b:54:ae:82:a2:78:4e:80:2b:2d:ac:2b:
0c:07:ef:e4:7b:4e:8b:b9:fd:95:80:7a:4f:83:1d:
6c:27:f7:3b:72:a9:07:9c:87:2e:89:99:07:2d:34:
af:f6:8d:f4:79:96:e1:0c:8b:11:4d:e4:9c:ea:67:
b0:ce:a1:80:f1:48:c9:7a:71:42:15:5e:89:3c:8d:
83:80:6a:9f:70:2f:f5:b1:ae:e0:04:30:d1:17:c5:
59:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A7:72:11:8B:35:EF:38:B9:E4:2B:7B:25:97:7B:9F:D5:C7:1E:D4
X509v3 Authority Key Identifier:
keyid:E0:D4:35:78:4D:A8:C2:18:E0:FF:10:7C:DC:FE:24:CA:45:69:C9:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4NQ1eE2owhjg_xB83P4kykVpyUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a05eba-9d85-489b-aec7-ed42d3a625a4/1/5adyEYs17zi55Ct7JZd7n9XHHtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a05eba-9d85-489b-aec7-ed42d3a625a4/1/4NQ1eE2owhjg_xB83P4kykVpyUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.243.71.0/24
87.243.77.0/24
87.243.79.0/24
185.49.88.0/22
185.73.236.0-185.73.238.255
Signature Algorithm: sha256WithRSAEncryption
b4:47:8e:64:6a:66:d8:d3:d9:e7:e7:cc:f7:89:03:a2:90:f0:
0c:98:38:f4:40:c9:9a:92:22:3c:ec:af:16:f3:0b:33:00:26:
58:f7:20:83:a6:69:08:7f:29:47:59:37:87:21:29:4a:e0:75:
0b:5a:35:0d:d0:06:34:43:28:d5:a5:44:2f:69:c0:d3:ac:60:
4e:b9:e5:ca:41:3c:7f:d7:68:c7:f3:e9:c6:57:01:73:74:44:
41:29:38:69:a9:86:af:30:88:92:fb:82:bc:2b:93:e4:a9:c8:
0f:3b:18:90:16:5d:d5:a9:7e:6e:ab:13:5e:47:55:64:4e:22:
01:91:1b:91:1a:db:49:70:54:64:40:18:d1:0b:4d:ae:04:f8:
6c:58:48:14:9e:26:65:96:d5:61:51:fd:f2:22:a8:a6:03:17:
93:0c:12:15:45:66:4e:bd:ec:21:e0:fc:dc:be:6b:52:3b:a7:
a4:b4:be:c5:c4:97:87:3d:a0:9b:da:0d:b5:7a:a1:14:56:e0:
93:bb:f6:26:16:dc:bf:9a:1e:f9:62:38:bc:82:24:a7:2b:16:
dd:8f:b3:5a:de:d6:9d:08:28:e2:84:92:f2:40:cb:46:20:89:
39:6e:c2:c0:f2:67:ad:95:8a:53:1b:94:62:b0:c6:fb:01:dc:
f9:bd:a9:2c
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAY5q12fgZXma9YN3voOhSe7vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwZDQzNTc4NGRhOGMyMThlMGZmMTA3Y2RjZmUyNGNhNDU2
OWM5NDkwHhcNMjQwMzIzMTAyNDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNWE3NzIxMThiMzVlZjM4YjllNDJiN2IyNTk3N2I5ZmQ1YzcxZWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAihjtW15/ehW08jz4YyUpfrAT5i22
2DrigsqZpzHM3uTo1K7XMnqH5bnf2pWcXGP10oESpQZFaDz/+WG5Q9ne0uhQjCYY
NTnIodwN0R1O6s1gPQEYSzqEGxDHVGD5FDeDwbFVvL8jM6IAR6FZV/BbTyfoRNAr
1gcS13ZjjLOJP+MCdSPG9Tt98ExPesMp8qhz7Z8W2TSdLlOGjo2fhaB6Z8yhPDLc
Aq8bVK6ConhOgCstrCsMB+/ke06Luf2VgHpPgx1sJ/c7cqkHnIcuiZkHLTSv9o30
eZbhDIsRTeSc6mewzqGA8UjJenFCFV6JPI2DgGqfcC/1sa7gBDDRF8VZgwIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFOWnchGLNe84ueQreyWXe5/Vxx7UMB8GA1UdIwQY
MBaAFODUNXhNqMIY4P8QfNz+JMpFaclJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNE5RMWVFMm93aGpnX3hCODNQNGt5a1ZweVVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9hMDVlYmEtOWQ4NS00ODliLWFlYzct
ZWQ0MmQzYTYyNWE0LzEvNWFkeUVZczE3emk1NUN0N0paZDduOVhISHRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC9hMDVlYmEtOWQ4NS00ODliLWFlYzctZWQ0MmQzYTYyNWE0
LzEvNE5RMWVFMm93aGpnX3hCODNQNGt5a1ZweVVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQAV/NHAwQA
V/NNAwQAV/NPAwQCuTFYMAwDBAK5SewDBAC5Se4wDQYJKoZIhvcNAQELBQADggEB
ALRHjmRqZtjT2efnzPeJA6KQ8AyYOPRAyZqSIjzsrxbzCzMAJlj3IIOmaQh/KUdZ
N4chKUrgdQtaNQ3QBjRDKNWlRC9pwNOsYE655cpBPH/XaMfz6cZXAXN0REEpOGmp
hq8wiJL7grwrk+SpyA87GJAWXdWpfm6rE15HVWROIgGRG5Ea20lwVGRAGNELTa4E
+GxYSBSeJmWW1WFR/fIiqKYDF5MMEhVFZk697CHg/Ny+a1I7p6S0vsXEl4c9oJva
DbV6oRRW4JO79iYW3L+aHvliOLyCJKcrFt2Ps1re1p0IKOKEkvJAy0YgiTluwsDy
Z62VilMblGKwxvsB3Pm9qSw=
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:33:30 2025 by rpki-client