Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/65985b-55b7-4cb7-a4f4-998783c6841d/1/r_psVC5QPWrnFUzYjT3a2DZ3ao0.roa
File: r_psVC5QPWrnFUzYjT3a2DZ3ao0.roa (raw, json)
Hash identifier: zG80lT17MNDfvgkZJo2Oj0NHeMBsFpbLaT/jItTONcs=
Subject key identifier: AF:FA:6C:54:2E:50:3D:6A:E7:15:4C:D8:8D:3D:DA:D8:36:77:6A:8D
Certificate issuer: /CN=453b84e8e0e5617c34260d768f440a5131f2dcf4
Certificate serial: 019204215EAA8216EC941080FB84DD168C78
Authority key identifier: 45:3B:84:E8:E0:E5:61:7C:34:26:0D:76:8F:44:0A:51:31:F2:DC:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RTuE6ODlYXw0Jg12j0QKUTHy3PQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/65985b-55b7-4cb7-a4f4-998783c6841d/1/r_psVC5QPWrnFUzYjT3a2DZ3ao0.roa
Signing time: Wed 18 Sep 2024 07:55:48 +0000
ROA not before: Wed 18 Sep 2024 07:55:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207535
IP address blocks: 5.154.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 08:12:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:04:21:5e:aa:82:16:ec:94:10:80:fb:84:dd:16:8c:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453b84e8e0e5617c34260d768f440a5131f2dcf4
Validity
Not Before: Sep 18 07:55:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=affa6c542e503d6ae7154cd88d3ddad836776a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b7:31:ee:ed:c9:f4:23:3a:de:49:79:95:5a:
a0:ba:1f:65:a9:2e:7c:80:68:1f:85:53:44:5e:5a:
9d:f6:3e:a6:b9:2f:42:03:a9:28:0d:23:69:38:d9:
7f:30:31:8e:81:0c:0c:72:43:e4:32:d7:96:54:a8:
6b:af:a6:fa:bb:11:ff:52:bf:77:c8:5b:40:3f:fa:
9a:8a:66:6d:06:32:b8:c5:c7:f3:e9:e8:7e:6c:40:
d2:93:7b:1c:ce:82:7c:0e:80:99:20:88:34:56:c7:
b1:62:16:ef:e8:8e:32:ac:38:93:6d:bc:33:bf:88:
0b:12:92:5b:23:f1:71:fd:63:8e:8a:5e:12:f3:da:
ea:ae:e8:b2:17:2c:fe:4d:c4:72:d4:26:ce:8d:ac:
e5:c0:fe:98:f3:d2:a9:de:6d:e7:5c:cb:54:d4:96:
b5:3f:77:55:54:9a:35:ad:8c:1d:7f:02:6d:91:87:
75:51:e7:8b:f9:30:46:98:bc:da:e9:b5:85:71:56:
fa:d9:cd:bf:9d:7f:06:26:b2:47:c4:c9:0b:26:e5:
6e:cb:14:6d:56:1a:27:86:b1:49:ce:59:fb:56:fa:
00:4f:e3:c9:ec:0a:ba:c2:ed:4d:b7:89:4c:89:11:
98:51:f1:b1:4e:63:73:c5:fa:1f:ec:56:47:9d:49:
0f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:FA:6C:54:2E:50:3D:6A:E7:15:4C:D8:8D:3D:DA:D8:36:77:6A:8D
X509v3 Authority Key Identifier:
keyid:45:3B:84:E8:E0:E5:61:7C:34:26:0D:76:8F:44:0A:51:31:F2:DC:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RTuE6ODlYXw0Jg12j0QKUTHy3PQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/65985b-55b7-4cb7-a4f4-998783c6841d/1/r_psVC5QPWrnFUzYjT3a2DZ3ao0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/65985b-55b7-4cb7-a4f4-998783c6841d/1/RTuE6ODlYXw0Jg12j0QKUTHy3PQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.180.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:21:1c:2a:04:95:3f:20:a4:c7:ea:42:3b:25:7f:15:95:15:
84:44:c0:37:77:38:f2:a7:d2:9d:ea:a7:81:e8:6b:a1:88:0a:
0f:19:94:5d:f6:c2:8b:37:ef:2f:a4:f1:39:76:a3:48:30:96:
7d:0a:31:a7:e1:46:05:86:8d:5d:bf:d9:b1:23:f3:21:2b:6b:
4b:aa:86:99:ae:92:e3:e5:55:51:9d:91:0d:49:a9:3a:b1:57:
7c:d0:42:04:27:b8:02:2a:27:06:c9:18:e3:1f:4e:16:a7:9c:
8b:07:d7:01:99:32:d8:05:05:b1:a8:c5:d2:13:a0:b8:d6:90:
0e:0e:15:cd:e1:71:d4:a4:d7:e9:4a:ee:d8:64:e2:f1:1b:e9:
e5:44:41:2d:b0:6b:14:45:ef:10:c1:a2:81:ff:f2:04:4d:7c:
25:8c:98:dc:9b:28:53:e4:5a:33:12:93:bf:e7:2e:33:f3:2e:
d8:eb:7e:04:0a:42:11:c0:69:98:de:c6:14:da:b9:37:44:49:
a9:40:d5:d3:f9:5b:5f:19:3a:73:8b:8c:86:1d:07:73:42:14:
cb:98:50:32:30:d3:06:76:aa:7f:14:ea:bb:8a:f0:1d:47:6b:
de:fb:7e:5d:60:45:26:f0:87:71:1d:42:47:72:d5:87:b7:9c:
51:e4:8e:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZIEIV6qghbslBCA+4TdFox4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1M2I4NGU4ZTBlNTYxN2MzNDI2MGQ3NjhmNDQwYTUxMzFm
MmRjZjQwHhcNMjQwOTE4MDc1NTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZmZhNmM1NDJlNTAzZDZhZTcxNTRjZDg4ZDNkZGFkODM2Nzc2YThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7cx7u3J9CM63kl5lVqguh9lqS58
gGgfhVNEXlqd9j6muS9CA6koDSNpONl/MDGOgQwMckPkMteWVKhrr6b6uxH/Ur93
yFtAP/qaimZtBjK4xcfz6eh+bEDSk3sczoJ8DoCZIIg0VsexYhbv6I4yrDiTbbwz
v4gLEpJbI/Fx/WOOil4S89rqruiyFyz+TcRy1CbOjazlwP6Y89Kp3m3nXMtU1Ja1
P3dVVJo1rYwdfwJtkYd1UeeL+TBGmLza6bWFcVb62c2/nX8GJrJHxMkLJuVuyxRt
VhonhrFJzln7VvoAT+PJ7Aq6wu1Nt4lMiRGYUfGxTmNzxfof7FZHnUkPSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK/6bFQuUD1q5xVM2I092tg2d2qNMB8GA1UdIwQY
MBaAFEU7hOjg5WF8NCYNdo9EClEx8tz0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUlR1RTZPRGxZWHcwSmcxMmowUUtVVEh5M1BRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NTk4NWItNTViNy00Y2I3LWE0ZjQt
OTk4NzgzYzY4NDFkLzEvcl9wc1ZDNVFQV3JuRlV6WWpUM2EyRFozYW8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NTk4NWItNTViNy00Y2I3LWE0ZjQtOTk4NzgzYzY4NDFk
LzEvUlR1RTZPRGxZWHcwSmcxMmowUUtVVEh5M1BRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABZq0MA0G
CSqGSIb3DQEBCwUAA4IBAQAfIRwqBJU/IKTH6kI7JX8VlRWERMA3dzjyp9Kd6qeB
6GuhiAoPGZRd9sKLN+8vpPE5dqNIMJZ9CjGn4UYFho1dv9mxI/MhK2tLqoaZrpLj
5VVRnZENSak6sVd80EIEJ7gCKicGyRjjH04Wp5yLB9cBmTLYBQWxqMXSE6C41pAO
DhXN4XHUpNfpSu7YZOLxG+nlREEtsGsURe8QwaKB//IETXwljJjcmyhT5FozEpO/
5y4z8y7Y634ECkIRwGmY3sYU2rk3REmpQNXT+VtfGTpzi4yGHQdzQhTLmFAyMNMG
dqp/FOq7ivAdR2ve+35dYEUm8IdxHUJHctWHt5xR5I6H
-----END CERTIFICATE-----
Generated at Sun Jun 8 06:55:59 2025 by rpki-client