Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/_Pi5RTsEv4IxKMqsno4WCqmScao.roa
File: _Pi5RTsEv4IxKMqsno4WCqmScao.roa (raw, json)
Hash identifier: rni3XqZOphEFHt82FgyZG7ypORS3I/lZz1/CLAW6zUY=
Subject key identifier: FC:F8:B9:45:3B:04:BF:82:31:28:CA:AC:9E:8E:16:0A:A9:92:71:AA
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 019730A2B16EA752BEDBA1F14847C60AFE00
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/_Pi5RTsEv4IxKMqsno4WCqmScao.roa
Signing time: Mon 02 Jun 2025 12:34:17 +0000
ROA not before: Mon 02 Jun 2025 12:34:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209155
IP address blocks: 203.188.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jun 2025 00:59:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:30:a2:b1:6e:a7:52:be:db:a1:f1:48:47:c6:0a:fe:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Jun 2 12:34:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fcf8b9453b04bf823128caac9e8e160aa99271aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7e:9c:c7:ed:f2:7a:33:66:ce:7d:e5:ba:f4:
a3:27:35:bb:17:d0:fd:e7:12:3f:1f:f1:87:19:2f:
a7:02:e4:98:7d:01:2e:b4:33:aa:87:ac:1b:76:c4:
20:3c:50:d2:02:a0:a3:d4:b8:28:00:2b:eb:71:a4:
a1:27:2c:4b:6a:57:36:76:71:e4:72:be:5e:d4:30:
c2:19:0e:00:02:c6:00:4e:a6:cc:6d:ae:4e:fe:3d:
3e:b3:d2:dd:13:ec:ea:a7:16:fa:b2:ac:77:73:a3:
25:e7:ee:2d:7c:bf:33:b4:69:37:20:76:94:ae:0c:
13:48:a4:51:44:5c:f7:e4:c7:bb:c6:f4:28:6c:90:
1b:ca:90:08:2e:8e:de:91:11:c8:25:75:47:30:4e:
d6:01:e4:88:aa:e4:49:b3:4c:3a:d5:64:c2:1a:66:
95:9c:5a:a4:7a:de:23:ed:ea:6e:92:bb:05:12:ca:
bb:35:f2:5f:bb:95:81:25:34:4a:fc:f1:2d:ad:15:
ef:02:05:9a:11:46:77:16:53:0e:bf:19:ed:31:61:
16:bc:2d:8a:c3:f6:21:17:cf:c4:14:3a:f5:7a:3e:
1a:22:f4:93:e8:aa:0a:1f:a1:2a:0e:cf:f1:fe:e3:
a0:6e:f9:47:f0:85:a8:e2:9a:f7:17:ea:cc:4a:88:
c7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F8:B9:45:3B:04:BF:82:31:28:CA:AC:9E:8E:16:0A:A9:92:71:AA
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/_Pi5RTsEv4IxKMqsno4WCqmScao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.188.166.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:15:77:d6:04:d2:b9:c0:3c:d1:20:7e:49:02:f7:ad:63:54:
8d:75:1b:50:6b:3c:f6:ce:35:f7:c4:99:a0:30:0b:56:ef:63:
af:a6:38:e0:7f:f0:77:f8:c8:da:11:aa:af:18:63:da:2d:0b:
af:4e:7e:fa:5a:0c:78:24:8e:c9:2b:95:ae:34:7d:b6:ba:b8:
23:07:b8:2e:3b:c0:95:a0:e5:45:d8:bf:05:94:23:cd:cd:1d:
c8:02:d2:bf:b4:3e:b1:1f:dc:77:5e:29:21:d3:39:8a:6b:72:
d3:93:67:b4:02:2d:ae:53:f7:0d:fa:91:97:0a:2e:02:f2:3e:
3d:75:1e:e8:d6:49:ff:42:66:91:d9:30:09:76:b2:fc:4a:95:
7f:69:91:5f:c6:c9:fd:f7:2b:96:0b:e6:73:41:7a:94:3f:a4:
fc:4d:b6:e6:db:0b:00:e4:cb:88:db:a4:5e:38:db:a3:a6:be:
50:fb:62:36:7c:ef:c0:f8:13:e8:8f:61:5d:8b:4f:4b:10:08:
b6:10:99:77:a3:45:9d:5b:4d:72:d8:10:82:89:13:dc:de:16:
05:c4:27:87:f2:83:11:d1:33:de:dd:b9:63:08:2a:98:d5:b8:
9e:74:00:01:6a:4e:51:9a:e6:81:77:56:da:1c:18:64:6c:68:
4f:54:f9:cd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZcworFup1K+26HxSEfGCv4AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5
NTkyZGEwHhcNMjUwNjAyMTIzNDE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmY2Y4Yjk0NTNiMDRiZjgyMzEyOGNhYWM5ZThlMTYwYWE5OTI3MWFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwH6cx+3yejNmzn3luvSjJzW7F9D9
5xI/H/GHGS+nAuSYfQEutDOqh6wbdsQgPFDSAqCj1LgoACvrcaShJyxLalc2dnHk
cr5e1DDCGQ4AAsYATqbMba5O/j0+s9LdE+zqpxb6sqx3c6Ml5+4tfL8ztGk3IHaU
rgwTSKRRRFz35Me7xvQobJAbypAILo7ekRHIJXVHME7WAeSIquRJs0w61WTCGmaV
nFqket4j7epukrsFEsq7NfJfu5WBJTRK/PEtrRXvAgWaEUZ3FlMOvxntMWEWvC2K
w/YhF8/EFDr1ej4aIvST6KoKH6EqDs/x/uOgbvlH8IWo4pr3F+rMSojHwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPz4uUU7BL+CMSjKrJ6OFgqpknGqMB8GA1UdIwQY
MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt
ZjVmYjcxYjlhNTFmLzEvX1BpNVJUc0V2NEl4S01xc25vNFdDcW1TY2FvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm
LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy7ymMA0G
CSqGSIb3DQEBCwUAA4IBAQDWFXfWBNK5wDzRIH5JAvetY1SNdRtQazz2zjX3xJmg
MAtW72Ovpjjgf/B3+MjaEaqvGGPaLQuvTn76Wgx4JI7JK5WuNH22urgjB7guO8CV
oOVF2L8FlCPNzR3IAtK/tD6xH9x3Xikh0zmKa3LTk2e0Ai2uU/cN+pGXCi4C8j49
dR7o1kn/QmaR2TAJdrL8SpV/aZFfxsn99yuWC+ZzQXqUP6T8Tbbm2wsA5MuI26Re
ONujpr5Q+2I2fO/A+BPoj2Fdi09LEAi2EJl3o0WdW01y2BCCiRPc3hYFxCeH8oMR
0TPe3bljCCqY1biedAABak5RmuaBd1baHBhkbGhPVPnN
-----END CERTIFICATE-----
Generated at Sat Jun 7 04:20:55 2025 by rpki-client