Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/eD9Y9TlH4LHDjvKHjKO8fpU3WZI.roa
File: eD9Y9TlH4LHDjvKHjKO8fpU3WZI.roa (raw, json)
Hash identifier: LC36wrQZ949TXAYFvwst8J/l9WaY8TTVbRJ55m98FzY=
Subject key identifier: 78:3F:58:F5:39:47:E0:B1:C3:8E:F2:87:8C:A3:BC:7E:95:37:59:92
Certificate issuer: /CN=015b6d1596ac0501a71a393447051a62ff1dda16
Certificate serial: 0194B15F172593E0DE947B4DF470BAF59D5F
Authority key identifier: 01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/eD9Y9TlH4LHDjvKHjKO8fpU3WZI.roa
Signing time: Wed 29 Jan 2025 09:23:06 +0000
ROA not before: Wed 29 Jan 2025 09:23:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213544
IP address blocks: 176.96.190.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Jan 2025 10:58:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:b1:5f:17:25:93:e0:de:94:7b:4d:f4:70:ba:f5:9d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=015b6d1596ac0501a71a393447051a62ff1dda16
Validity
Not Before: Jan 29 09:23:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=783f58f53947e0b1c38ef2878ca3bc7e95375992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8e:ec:a6:d9:13:dd:f9:a3:aa:29:a8:8b:a9:
4a:fe:06:a7:2c:3d:e4:e6:2a:33:3b:43:19:b1:90:
6f:d6:c7:33:2b:4e:c3:fd:49:3b:97:f5:fd:eb:8e:
eb:e1:6e:ca:48:65:e7:a8:2d:a8:34:56:c4:c0:1a:
78:c0:f5:fb:74:18:26:94:f9:22:c6:59:65:c6:90:
a6:1a:37:5f:b9:7a:65:63:c1:90:9d:2f:0a:b8:6b:
db:47:e9:be:5c:5c:57:1c:32:1d:e0:03:4e:3e:0b:
b5:93:91:01:df:4c:66:88:94:44:ad:87:e4:e5:df:
3e:53:6e:12:8d:d4:64:b8:e5:9d:87:20:2d:c0:24:
de:ce:38:bd:a9:a0:95:ea:2d:2a:30:14:61:e1:81:
e6:de:a0:05:10:3c:0c:e8:e9:ab:f7:c4:86:33:7f:
41:6b:fb:fd:30:4f:14:ad:c1:66:79:ae:92:0f:56:
d7:e6:44:d8:07:0e:19:f6:a5:4e:e3:01:da:4f:de:
c0:be:80:87:ce:37:de:45:58:9c:01:fb:55:24:eb:
65:b4:26:50:08:3e:b0:37:68:20:4d:a4:39:65:fe:
7f:7a:ca:66:a6:0d:e2:c4:3b:65:6d:87:e1:19:97:
24:68:4e:44:70:5e:a4:8e:6b:18:15:77:99:92:4f:
27:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:3F:58:F5:39:47:E0:B1:C3:8E:F2:87:8C:A3:BC:7E:95:37:59:92
X509v3 Authority Key Identifier:
keyid:01:5B:6D:15:96:AC:05:01:A7:1A:39:34:47:05:1A:62:FF:1D:DA:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVttFZasBQGnGjk0RwUaYv8d2hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/eD9Y9TlH4LHDjvKHjKO8fpU3WZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/52a88f-e9a2-4851-9148-fee8f3790567/1/AVttFZasBQGnGjk0RwUaYv8d2hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.96.190.0/23
Signature Algorithm: sha256WithRSAEncryption
99:96:01:56:0c:06:15:5a:22:2e:73:ee:29:d6:e2:79:95:07:
40:37:b4:80:ac:43:21:df:1e:07:a8:cf:ad:3c:91:e8:3e:cc:
cd:30:7c:b0:67:76:85:b8:a5:22:bf:26:3d:2f:1d:03:83:db:
97:23:1e:52:20:32:bc:85:8e:44:07:60:5f:a9:69:38:d7:e0:
88:16:8e:bf:46:b3:47:e8:cb:33:5b:fd:5b:15:01:de:cd:63:
a6:fe:45:a4:c8:92:76:2f:6a:08:7a:e2:f0:24:96:7e:fe:66:
1f:5c:57:91:8a:f5:c0:46:b1:ec:3a:8c:94:dd:21:17:52:ba:
20:f6:15:75:21:61:f3:32:62:f4:70:e9:10:c8:03:d1:b1:d4:
9b:fb:b5:7f:74:aa:fb:a4:c4:10:e3:ea:17:6d:86:40:2e:2e:
99:c0:cc:49:2a:7e:50:55:0e:fb:58:71:ca:ed:f5:5d:62:ae:
01:a1:c1:69:30:89:78:4f:7f:9c:d4:11:6c:df:48:fc:94:24:
78:34:7d:15:26:7b:52:b5:d4:71:0a:33:c0:a2:3b:65:58:e7:
21:b2:31:d7:15:04:14:b3:e2:e8:f8:af:fd:ce:65:f5:d9:42:
6f:e5:09:6d:7a:97:b5:70:79:a4:2b:16:55:bc:4e:9e:b9:8b:
18:a6:56:bb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZSxXxclk+DelHtN9HC69Z1fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxNWI2ZDE1OTZhYzA1MDFhNzFhMzkzNDQ3MDUxYTYyZmYx
ZGRhMTYwHhcNMjUwMTI5MDkyMzA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODNmNThmNTM5NDdlMGIxYzM4ZWYyODc4Y2EzYmM3ZTk1Mzc1OTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAto7sptkT3fmjqimoi6lK/ganLD3k
5iozO0MZsZBv1sczK07D/Uk7l/X9647r4W7KSGXnqC2oNFbEwBp4wPX7dBgmlPki
xlllxpCmGjdfuXplY8GQnS8KuGvbR+m+XFxXHDId4ANOPgu1k5EB30xmiJRErYfk
5d8+U24SjdRkuOWdhyAtwCTezji9qaCV6i0qMBRh4YHm3qAFEDwM6Omr98SGM39B
a/v9ME8UrcFmea6SD1bX5kTYBw4Z9qVO4wHaT97AvoCHzjfeRVicAftVJOtltCZQ
CD6wN2ggTaQ5Zf5/espmpg3ixDtlbYfhGZckaE5EcF6kjmsYFXeZkk8n1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHg/WPU5R+Cxw47yh4yjvH6VN1mSMB8GA1UdIwQY
MBaAFAFbbRWWrAUBpxo5NEcFGmL/HdoWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVZ0dEZaYXNCUUduR2prMFJ3VWFZdjhkMmhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC81MmE4OGYtZTlhMi00ODUxLTkxNDgt
ZmVlOGYzNzkwNTY3LzEvZUQ5WTlUbEg0TEhEanZLSGpLTzhmcFUzV1pJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC81MmE4OGYtZTlhMi00ODUxLTkxNDgtZmVlOGYzNzkwNTY3
LzEvQVZ0dEZaYXNCUUduR2prMFJ3VWFZdjhkMmhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBsGC+MA0G
CSqGSIb3DQEBCwUAA4IBAQCZlgFWDAYVWiIuc+4p1uJ5lQdAN7SArEMh3x4HqM+t
PJHoPszNMHywZ3aFuKUivyY9Lx0Dg9uXIx5SIDK8hY5EB2BfqWk41+CIFo6/RrNH
6MszW/1bFQHezWOm/kWkyJJ2L2oIeuLwJJZ+/mYfXFeRivXARrHsOoyU3SEXUrog
9hV1IWHzMmL0cOkQyAPRsdSb+7V/dKr7pMQQ4+oXbYZALi6ZwMxJKn5QVQ77WHHK
7fVdYq4BocFpMIl4T3+c1BFs30j8lCR4NH0VJntStdRxCjPAojtlWOchsjHXFQQU
s+Lo+K/9zmX12UJv5Qltepe1cHmkKxZVvE6euYsYpla7
-----END CERTIFICATE-----
Generated at Thu Apr 17 02:42:20 2025 by rpki-client