Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zrvTgZIwEZ8Ojnl3Da5PlwkuLiw.roa
File: zrvTgZIwEZ8Ojnl3Da5PlwkuLiw.roa (raw, json)
Hash identifier: SOn6Ccupicd695jRCGuSDuv1FMYUEMvPdDI2f71TsFc=
Subject key identifier: CE:BB:D3:81:92:30:11:9F:0E:8E:79:77:0D:AE:4F:97:09:2E:2E:2C
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0193583D431B22B824303FE603BBD7F3FDD6
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zrvTgZIwEZ8Ojnl3Da5PlwkuLiw.roa
Signing time: Sat 23 Nov 2024 08:57:10 +0000
ROA not before: Sat 23 Nov 2024 08:57:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 185.254.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Nov 2024 20:35:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:3d:43:1b:22:b8:24:30:3f:e6:03:bb:d7:f3:fd:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Nov 23 08:57:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cebbd3819230119f0e8e79770dae4f97092e2e2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:88:85:47:b2:6a:4a:1a:05:6e:3b:e5:49:12:
0f:fe:87:34:37:31:07:10:d3:be:ac:da:84:1a:34:
b3:03:81:af:08:2a:f2:ce:3a:63:bd:a0:b1:ba:0f:
d9:b8:c0:37:2f:cb:fd:d9:3e:cd:b2:b0:11:e1:d1:
0e:a9:7a:a3:8f:d8:b1:8e:c2:94:2d:c9:76:01:59:
55:00:5d:0a:00:48:fa:b6:f5:31:1b:56:90:05:8b:
ca:ab:dd:e8:68:e2:bd:cf:58:6a:b8:72:2b:b5:09:
76:31:9c:37:e9:3c:64:c5:e9:f2:5d:8d:13:73:13:
2b:b5:84:8a:b4:32:5f:02:fe:81:d7:97:6a:2c:fa:
b9:aa:4e:d3:32:88:e8:c7:3b:e1:db:8f:9b:9b:16:
40:f8:6d:f1:5e:99:40:e1:96:7f:42:de:34:df:27:
49:82:50:a5:e0:ee:5d:17:7e:8e:80:fc:a2:dc:40:
96:3d:2f:84:97:83:bc:9f:8b:53:b9:11:6b:2b:20:
eb:e7:cd:2d:72:91:48:6e:5e:d0:84:c7:27:9a:05:
f8:3a:04:c5:e8:8a:23:c9:45:1c:a2:9f:19:52:5c:
0e:33:aa:d6:33:35:29:15:20:23:3a:1c:91:71:e0:
d2:83:6e:10:a8:4f:67:88:ee:01:ec:f0:92:9f:2c:
b2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:BB:D3:81:92:30:11:9F:0E:8E:79:77:0D:AE:4F:97:09:2E:2E:2C
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/zrvTgZIwEZ8Ojnl3Da5PlwkuLiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.67.0/24
Signature Algorithm: sha256WithRSAEncryption
37:ad:a8:d8:5a:57:bb:ef:3b:11:e4:58:d5:d3:9d:53:7a:b6:
44:ed:bd:7a:6e:97:e0:8b:5a:30:a1:e8:23:00:92:81:f3:60:
61:0d:c9:3e:e6:aa:08:5b:55:89:82:27:b7:94:16:f9:0b:db:
b3:8d:d6:4a:c5:a5:66:7e:76:d2:de:72:1f:f0:68:5f:c8:e4:
07:71:1e:35:67:72:a7:bd:c0:8c:6a:d8:23:53:8a:2f:dc:7a:
bb:8b:96:d8:77:80:b2:db:0e:36:6c:67:0d:66:9d:05:92:d4:
34:0d:e0:af:1d:9c:c2:ce:a5:75:79:5d:7e:21:09:14:4a:4b:
8b:55:75:eb:a3:d0:e1:87:c7:f8:08:2c:bf:ee:d0:47:a1:3e:
31:e9:88:17:ea:7b:d4:48:63:09:aa:ec:ba:3d:da:6a:21:0c:
e6:b7:54:22:50:76:f7:5a:e8:80:e0:b6:e6:08:29:82:2b:5f:
0b:a6:2f:ce:eb:84:ff:11:69:35:62:b9:1e:00:ec:00:31:a3:
6d:1d:a8:14:12:33:10:bd:ff:77:95:1d:05:06:83:ca:e5:14:
3f:9c:8b:74:e7:96:6e:d2:e4:6a:cb:43:9d:d1:f0:78:6c:ad:
34:4e:71:da:9e:b6:25:76:0e:32:7d:9d:eb:7d:29:fd:d1:54:
e3:1b:4a:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNYPUMbIrgkMD/mA7vX8/3WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQxMTIzMDg1NzEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZWJiZDM4MTkyMzAxMTlmMGU4ZTc5NzcwZGFlNGY5NzA5MmUyZTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5IiFR7JqShoFbjvlSRIP/oc0NzEH
ENO+rNqEGjSzA4GvCCryzjpjvaCxug/ZuMA3L8v92T7NsrAR4dEOqXqjj9ixjsKU
Lcl2AVlVAF0KAEj6tvUxG1aQBYvKq93oaOK9z1hquHIrtQl2MZw36TxkxenyXY0T
cxMrtYSKtDJfAv6B15dqLPq5qk7TMojoxzvh24+bmxZA+G3xXplA4ZZ/Qt403ydJ
glCl4O5dF36OgPyi3ECWPS+El4O8n4tTuRFrKyDr580tcpFIbl7QhMcnmgX4OgTF
6IojyUUcop8ZUlwOM6rWMzUpFSAjOhyRceDSg24QqE9niO4B7PCSnyyywQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM6704GSMBGfDo55dw2uT5cJLi4sMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvenJ2VGdaSXdFWjhPam5sM0RhNVBsd2t1TGl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf5DMA0G
CSqGSIb3DQEBCwUAA4IBAQA3rajYWle77zsR5FjV051TerZE7b16bpfgi1owoegj
AJKB82BhDck+5qoIW1WJgie3lBb5C9uzjdZKxaVmfnbS3nIf8GhfyOQHcR41Z3Kn
vcCMatgjU4ov3Hq7i5bYd4Cy2w42bGcNZp0FktQ0DeCvHZzCzqV1eV1+IQkUSkuL
VXXro9Dhh8f4CCy/7tBHoT4x6YgX6nvUSGMJquy6PdpqIQzmt1QiUHb3WuiA4Lbm
CCmCK18Lpi/O64T/EWk1YrkeAOwAMaNtHagUEjMQvf93lR0FBoPK5RQ/nIt055Zu
0uRqy0Od0fB4bK00TnHanrYldg4yfZ3rfSn90VTjG0pJ
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:00:10 2025 by rpki-client