Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Q7Pp-LdHXc35lqc8Z4oxHd49xS4.roa
File: Q7Pp-LdHXc35lqc8Z4oxHd49xS4.roa (raw, json)
Hash identifier: eUtKVXNKE29YTVMvXpG3h03ivpcAtypAqtHivUSNCVA=
Subject key identifier: 43:B3:E9:F8:B7:47:5D:CD:F9:96:A7:3C:67:8A:31:1D:DE:3D:C5:2E
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018FF8AB4FF801929BFAED743F2FF046CCE4
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Q7Pp-LdHXc35lqc8Z4oxHd49xS4.roa
Signing time: Sat 08 Jun 2024 16:25:27 +0000
ROA not before: Sat 08 Jun 2024 16:25:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206995
IP address blocks: 86.105.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 17:23:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f8:ab:4f:f8:01:92:9b:fa:ed:74:3f:2f:f0:46:cc:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 8 16:25:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43b3e9f8b7475dcdf996a73c678a311dde3dc52e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:15:9b:13:2d:52:fb:5b:ad:ee:b5:45:96:65:
85:b9:bb:51:87:1a:52:94:77:30:ac:bd:04:ca:84:
3b:76:51:55:36:79:e7:bc:72:59:a1:da:61:da:15:
ec:45:28:9c:67:a2:4a:91:01:99:98:1a:a5:36:84:
9a:6f:38:61:30:67:1d:e7:c2:c2:73:50:bd:fd:e0:
66:25:e0:42:7a:00:9c:c9:d7:c9:2e:3a:75:61:92:
d2:1e:8e:d7:2c:26:88:05:79:fb:bc:af:cd:c4:ef:
f9:ff:4d:17:0d:29:6d:a5:ed:5f:24:f0:5f:b6:2c:
2f:10:a2:39:e9:90:ee:c0:ec:1a:5f:e3:52:6d:21:
44:cd:1f:db:9c:9c:e3:ef:3c:8e:9c:42:04:23:e4:
63:68:02:25:cb:c5:a5:e8:c0:3a:ac:30:11:fe:4f:
03:f7:b4:89:1b:8c:a2:0d:1d:04:02:fa:7c:a3:93:
36:f9:f4:0c:cd:df:2c:1b:ab:59:07:13:fc:00:78:
f1:c6:5e:5c:d8:4f:86:97:ae:c1:7a:c4:26:b7:b2:
4f:8c:aa:6d:14:eb:20:6a:48:33:4a:7d:98:82:47:
4b:0a:85:c6:a5:f7:f4:e1:51:4d:a3:7e:66:a8:e5:
22:b4:01:e5:a9:82:78:a6:12:c4:da:80:05:7f:59:
4f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B3:E9:F8:B7:47:5D:CD:F9:96:A7:3C:67:8A:31:1D:DE:3D:C5:2E
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Q7Pp-LdHXc35lqc8Z4oxHd49xS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.4.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:c6:22:97:11:eb:1e:92:ad:73:31:6d:f9:7d:a9:6b:0e:e7:
2b:3f:09:a0:0a:0e:29:3a:2b:4b:22:14:cd:3a:d3:d2:cc:67:
ee:08:42:04:17:20:d8:55:0a:95:af:e0:e9:d5:e1:18:ab:94:
69:8b:77:2d:71:74:6f:37:46:80:9a:4e:37:42:92:73:58:d3:
37:48:c5:f4:f5:53:2f:5f:5a:50:dc:70:4f:14:d1:6d:a5:04:
88:f9:89:ad:0c:62:62:cd:0d:b8:fd:02:61:06:f5:06:46:6c:
f7:34:70:de:34:b6:95:cb:7d:03:60:d7:91:78:a0:29:ab:c1:
92:be:60:e0:0a:5e:1e:6d:eb:41:f6:22:13:a4:46:eb:60:09:
46:6c:53:d2:8f:d1:27:32:c1:c6:76:80:86:af:47:e3:19:21:
6c:b0:77:25:b8:6f:49:45:8d:50:cb:48:c1:fc:19:d4:a7:a0:
e5:ba:3a:f7:18:23:22:6f:9d:5c:dd:8a:d0:3e:e6:c9:7b:69:
1b:75:df:3c:a8:24:22:0a:82:06:61:59:21:f5:78:c4:76:76:
25:bf:9e:ea:17:09:52:65:0c:e1:a3:0c:45:aa:0f:eb:94:d7:
dc:2c:90:a7:0b:be:29:b1:73:07:b5:07:4b:0a:8c:c4:1e:a3:
8b:ee:ff:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY/4q0/4AZKb+u10Py/wRszkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwNjA4MTYyNTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0M2IzZTlmOGI3NDc1ZGNkZjk5NmE3M2M2NzhhMzExZGRlM2RjNTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhWbEy1S+1ut7rVFlmWFubtRhxpS
lHcwrL0EyoQ7dlFVNnnnvHJZodph2hXsRSicZ6JKkQGZmBqlNoSabzhhMGcd58LC
c1C9/eBmJeBCegCcydfJLjp1YZLSHo7XLCaIBXn7vK/NxO/5/00XDSltpe1fJPBf
tiwvEKI56ZDuwOwaX+NSbSFEzR/bnJzj7zyOnEIEI+RjaAIly8Wl6MA6rDAR/k8D
97SJG4yiDR0EAvp8o5M2+fQMzd8sG6tZBxP8AHjxxl5c2E+Gl67BesQmt7JPjKpt
FOsgakgzSn2YgkdLCoXGpff04VFNo35mqOUitAHlqYJ4phLE2oAFf1lPvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEOz6fi3R13N+ZanPGeKMR3ePcUuMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvUTdQcC1MZEhYYzM1bHFjOFo0b3hIZDQ5eFM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVmkEMA0G
CSqGSIb3DQEBCwUAA4IBAQANxiKXEesekq1zMW35falrDucrPwmgCg4pOitLIhTN
OtPSzGfuCEIEFyDYVQqVr+Dp1eEYq5Rpi3ctcXRvN0aAmk43QpJzWNM3SMX09VMv
X1pQ3HBPFNFtpQSI+YmtDGJizQ24/QJhBvUGRmz3NHDeNLaVy30DYNeReKApq8GS
vmDgCl4ebetB9iITpEbrYAlGbFPSj9EnMsHGdoCGr0fjGSFssHcluG9JRY1Qy0jB
/BnUp6Dlujr3GCMib51c3YrQPubJe2kbdd88qCQiCoIGYVkh9XjEdnYlv57qFwlS
ZQzhowxFqg/rlNfcLJCnC74psXMHtQdLCozEHqOL7v86
-----END CERTIFICATE-----
Generated at Sat Jun 7 08:14:08 2025 by rpki-client