Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/1-sxuxcq4_jgWXWkE5f7FG8CL4gc.roa
File: 1-sxuxcq4_jgWXWkE5f7FG8CL4gc.roa (raw, json)
Hash identifier: au5p4we2dSj0WIIMfzgcaJDVQfiesVkhVRNmnUj+oTs=
Subject key identifier: FA:CC:6E:C5:CA:B8:FE:38:16:5D:69:04:E5:FE:C5:1B:C0:8B:E2:07
Certificate issuer: /CN=9052dec7b7617fe39c8550ee20c382201ab9af2a
Certificate serial: 018CC3B6BECC3AE9602372BFDF33935E6E6F
Authority key identifier: 90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/1-sxuxcq4_jgWXWkE5f7FG8CL4gc.roa
Signing time: Mon 01 Jan 2024 06:29:42 +0000
ROA not before: Mon 01 Jan 2024 06:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211492
IP address blocks: 5.8.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Jan 2024 18:36:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:be:cc:3a:e9:60:23:72:bf:df:33:93:5e:6e:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9052dec7b7617fe39c8550ee20c382201ab9af2a
Validity
Not Before: Jan 1 06:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=facc6ec5cab8fe38165d6904e5fec51bc08be207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:74:89:6e:6b:d0:25:35:c2:f0:6a:0d:bb:e7:
25:f0:94:01:3b:98:d1:69:d3:bb:d5:f7:41:0e:09:
2b:41:be:87:f2:e6:e1:ab:0f:d7:8c:e1:7c:e9:7f:
15:4f:c6:50:0d:f4:b7:8b:ef:9f:be:7b:f4:98:2d:
31:99:97:84:1c:bd:2f:9c:f7:42:6f:e5:87:bc:09:
1e:96:b1:47:e0:be:1e:c1:0d:20:4f:2e:90:40:32:
b3:9b:bb:95:59:d5:b5:09:21:19:86:78:2d:18:84:
b0:eb:ce:96:94:af:97:80:98:ad:5b:bf:5a:d6:e9:
2d:62:0b:45:e3:6a:97:5d:4f:d9:d7:2f:fe:c7:69:
87:26:1d:b5:49:a9:d6:f1:fa:e9:20:3f:0e:57:09:
2b:4b:c0:88:1b:b7:a3:83:7c:07:05:ff:ec:ce:07:
9f:5e:da:16:96:7c:24:c0:ed:4d:6e:23:b0:d3:20:
a8:fc:e5:98:40:00:bb:84:84:5b:eb:5b:f3:0d:52:
9e:1c:30:5e:8b:15:a5:6f:02:3c:0c:62:e0:6e:d1:
cf:93:a4:18:9a:61:4e:7d:ba:30:98:80:e7:a2:5b:
ed:52:d7:f4:b6:e6:a8:a1:cf:20:8e:cf:7e:af:8d:
46:83:37:11:ec:56:2a:37:63:da:ed:58:84:86:fe:
c5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CC:6E:C5:CA:B8:FE:38:16:5D:69:04:E5:FE:C5:1B:C0:8B:E2:07
X509v3 Authority Key Identifier:
keyid:90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/1-sxuxcq4_jgWXWkE5f7FG8CL4gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.249.0/24
Signature Algorithm: sha256WithRSAEncryption
42:af:91:f5:f3:8f:6b:21:71:4d:0c:00:9d:a1:0e:c6:a5:32:
06:9b:61:73:dc:bb:ec:ab:9e:b4:f0:3f:a3:45:a0:f7:a7:e1:
6c:f3:7a:d9:45:d4:1e:37:96:7e:d9:03:37:08:96:a0:bb:cf:
18:d5:24:bb:44:0e:d8:9b:13:cb:b8:0c:62:97:07:41:c8:3b:
12:23:08:2d:d7:08:ff:17:b5:d6:0c:10:99:f4:21:c6:fd:c7:
5a:50:4e:b5:47:88:d9:b3:87:3c:4f:5a:15:ff:f8:3a:ce:5e:
5d:dc:c8:91:b0:31:36:2e:fe:20:17:51:a6:2b:52:e7:5e:48:
12:8c:b3:3e:84:39:e1:0b:bd:41:d0:a7:67:3a:e1:1f:96:2f:
5f:95:69:cd:12:a7:de:b8:8b:c9:c5:72:fd:d6:6d:d4:44:51:
0b:91:8e:eb:d0:2a:66:e2:e9:02:7c:d6:48:d5:e3:c7:f1:05:
77:97:ef:28:42:41:3c:34:da:1b:36:f5:3b:86:66:10:95:81:
aa:f9:12:3f:8e:9d:ed:d8:5e:db:b9:e2:11:bb:17:df:27:af:
e3:66:a6:e8:60:58:fc:c0:00:f1:41:95:5b:0c:69:e8:c8:84:
06:d3:75:da:5a:c3:92:36:b2:11:48:12:f6:bd:6e:58:50:33:
bb:d1:b4:45
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzDtr7MOulgI3K/3zOTXm5vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwNTJkZWM3Yjc2MTdmZTM5Yzg1NTBlZTIwYzM4MjIwMWFi
OWFmMmEwHhcNMjQwMTAxMDYyOTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYWNjNmVjNWNhYjhmZTM4MTY1ZDY5MDRlNWZlYzUxYmMwOGJlMjA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXSJbmvQJTXC8GoNu+cl8JQBO5jR
adO71fdBDgkrQb6H8ubhqw/XjOF86X8VT8ZQDfS3i++fvnv0mC0xmZeEHL0vnPdC
b+WHvAkelrFH4L4ewQ0gTy6QQDKzm7uVWdW1CSEZhngtGISw686WlK+XgJitW79a
1uktYgtF42qXXU/Z1y/+x2mHJh21SanW8frpID8OVwkrS8CIG7ejg3wHBf/szgef
XtoWlnwkwO1NbiOw0yCo/OWYQAC7hIRb61vzDVKeHDBeixWlbwI8DGLgbtHPk6QY
mmFOfbowmIDnolvtUtf0tuaooc8gjs9+r41GgzcR7FYqN2Pa7ViEhv7FSQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPrMbsXKuP44Fl1pBOX+xRvAi+IHMB8GA1UdIwQY
MBaAFJBS3se3YX/jnIVQ7iDDgiAaua8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0ZMZXg3ZGhmLU9jaFZEdUlNT0NJQnE1cnlvLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9lOWE3YTEtZTlmZS00N2Q0LWFlMzIt
ZGYwYTQ0ODAwYWE1LzEvMS1zeHV4Y3E0X2pnV1hXa0U1ZjdGRzhDTDRnYy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvN2QvZTlhN2ExLWU5ZmUtNDdkNC1hZTMyLWRmMGE0NDgwMGFh
NS8xL2tGTGV4N2RoZi1PY2hWRHVJTU9DSUJxNXJ5by5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAUI+TAN
BgkqhkiG9w0BAQsFAAOCAQEAQq+R9fOPayFxTQwAnaEOxqUyBpthc9y77KuetPA/
o0Wg96fhbPN62UXUHjeWftkDNwiWoLvPGNUku0QO2JsTy7gMYpcHQcg7EiMILdcI
/xe11gwQmfQhxv3HWlBOtUeI2bOHPE9aFf/4Os5eXdzIkbAxNi7+IBdRpitS515I
EoyzPoQ54Qu9QdCnZzrhH5YvX5VpzRKn3riLycVy/dZt1ERRC5GO69AqZuLpAnzW
SNXjx/EFd5fvKEJBPDTaGzb1O4ZmEJWBqvkSP46d7dhe27niEbsX3yev42am6GBY
/MAA8UGVWwxp6MiEBtN12lrDkjayEUgS9r1uWFAzu9G0RQ==
-----END CERTIFICATE-----
Generated at Thu Apr 17 22:30:30 2025 by rpki-client