Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/749346-b08f-4931-8d4a-0538a3a14dfd/1/gZJxgLZ6dKsTvia-pJrVrmW1me0.roa
File: gZJxgLZ6dKsTvia-pJrVrmW1me0.roa (raw, json)
Hash identifier: 9T9H2pJXSRk/Z3H83LBgZ3poRDz9GEWt9bMo0/b59AM=
Subject key identifier: 81:92:71:80:B6:7A:74:AB:13:BE:26:BE:A4:9A:D5:AE:65:B5:99:ED
Certificate issuer: /CN=71f5e9ea88305f7d316a12a1d49db0e9fb896ce1
Certificate serial: 019424449808C838EA1B1EDD11A3DBEC9F33
Authority key identifier: 71:F5:E9:EA:88:30:5F:7D:31:6A:12:A1:D4:9D:B0:E9:FB:89:6C:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cfXp6ogwX30xahKh1J2w6fuJbOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/749346-b08f-4931-8d4a-0538a3a14dfd/1/gZJxgLZ6dKsTvia-pJrVrmW1me0.roa
Signing time: Wed 01 Jan 2025 23:47:42 +0000
ROA not before: Wed 01 Jan 2025 23:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201647
IP address blocks: 193.57.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Jan 2025 17:09:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:98:08:c8:38:ea:1b:1e:dd:11:a3:db:ec:9f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71f5e9ea88305f7d316a12a1d49db0e9fb896ce1
Validity
Not Before: Jan 1 23:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=81927180b67a74ab13be26bea49ad5ae65b599ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:dd:e5:3f:9f:f4:96:05:fe:83:7e:83:eb:29:
f4:95:56:56:3c:1a:9c:4f:61:44:e4:81:f6:d0:42:
8d:7f:04:15:4c:2a:b5:93:9c:84:1d:db:4b:7e:2a:
6e:59:02:ee:90:f6:95:3a:96:0b:26:b7:7a:81:f0:
69:14:07:e5:59:4b:55:da:d0:5f:4c:bb:ed:c3:c3:
5c:f5:46:84:8b:8a:52:7e:8c:48:2a:45:f0:c1:55:
d1:b1:82:76:aa:c9:3f:9f:bd:cb:9a:89:fd:c2:9a:
89:cc:b4:86:4c:02:49:6e:12:78:ee:47:ae:17:64:
7c:3c:e3:9a:dd:6c:61:bc:82:47:9f:8b:e3:b5:e2:
5e:8a:43:6a:9d:ce:ff:72:a0:2b:5b:99:4d:cf:aa:
22:22:25:7f:88:7d:7c:7d:5b:07:c1:c3:23:0c:c2:
8b:d5:3e:e3:df:96:50:9b:e5:0b:46:e4:f0:ad:1c:
4d:07:ac:27:5a:dc:ac:95:26:1b:7e:0a:99:d1:7b:
3a:69:d2:bc:42:e1:6c:c0:72:bd:38:78:04:46:0d:
f6:9a:56:76:f0:f0:43:b9:7b:b3:d3:dc:1b:b9:d5:
c3:ab:32:4c:96:c9:d9:4e:0c:b2:37:5d:8f:4d:d5:
2f:54:8e:c1:c5:a4:83:09:90:92:75:55:63:c4:17:
ef:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:92:71:80:B6:7A:74:AB:13:BE:26:BE:A4:9A:D5:AE:65:B5:99:ED
X509v3 Authority Key Identifier:
keyid:71:F5:E9:EA:88:30:5F:7D:31:6A:12:A1:D4:9D:B0:E9:FB:89:6C:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cfXp6ogwX30xahKh1J2w6fuJbOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/749346-b08f-4931-8d4a-0538a3a14dfd/1/gZJxgLZ6dKsTvia-pJrVrmW1me0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/749346-b08f-4931-8d4a-0538a3a14dfd/1/cfXp6ogwX30xahKh1J2w6fuJbOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.66.0/24
Signature Algorithm: sha256WithRSAEncryption
91:5d:d1:a5:b6:de:9c:e8:80:a9:67:06:9a:bd:a1:d6:b6:54:
04:93:93:3f:c2:9a:9a:1a:b3:42:b3:a2:42:a0:48:15:56:3b:
dd:b3:41:c4:83:8e:c1:eb:a2:21:17:56:ca:84:ed:33:ce:09:
29:f5:65:8d:db:8c:42:02:0e:04:74:4f:7b:68:8e:cd:78:4d:
1f:a6:4f:db:81:51:40:e2:61:fd:61:7d:03:ea:b4:d0:f2:db:
6a:b4:7d:7b:13:60:9c:6f:06:a2:8d:a5:a4:f3:49:e9:c0:10:
05:10:dd:e7:e3:bd:ac:80:30:d6:82:68:61:47:a1:fa:24:12:
9a:2f:e9:cb:c3:d3:c0:6d:06:25:37:50:df:30:d9:1f:9e:80:
e7:02:6f:43:49:38:47:ad:3d:99:92:b3:c5:bc:55:71:48:24:
28:76:32:fe:d8:c4:57:11:f6:49:13:67:13:7c:c0:2b:86:2f:
82:24:a7:b1:75:e6:1c:4a:69:9f:49:5f:04:4c:a2:ea:90:6b:
60:b5:89:67:e7:d3:ba:4a:e3:e7:42:5a:2b:ad:76:3e:08:00:
49:78:4e:af:4a:3d:4b:d8:17:eb:9f:39:c0:04:50:bf:5b:5c:
89:45:b2:67:23:93:9f:29:c6:70:1e:ef:6a:b0:53:5d:e9:78:
5d:04:79:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRJgIyDjqGx7dEaPb7J8zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxZjVlOWVhODgzMDVmN2QzMTZhMTJhMWQ0OWRiMGU5ZmI4
OTZjZTEwHhcNMjUwMTAxMjM0NzQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTkyNzE4MGI2N2E3NGFiMTNiZTI2YmVhNDlhZDVhZTY1YjU5OWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmd3lP5/0lgX+g36D6yn0lVZWPBqc
T2FE5IH20EKNfwQVTCq1k5yEHdtLfipuWQLukPaVOpYLJrd6gfBpFAflWUtV2tBf
TLvtw8Nc9UaEi4pSfoxIKkXwwVXRsYJ2qsk/n73Lmon9wpqJzLSGTAJJbhJ47keu
F2R8POOa3WxhvIJHn4vjteJeikNqnc7/cqArW5lNz6oiIiV/iH18fVsHwcMjDMKL
1T7j35ZQm+ULRuTwrRxNB6wnWtyslSYbfgqZ0Xs6adK8QuFswHK9OHgERg32mlZ2
8PBDuXuz09wbudXDqzJMlsnZTgyyN12PTdUvVI7BxaSDCZCSdVVjxBfvxQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIGScYC2enSrE74mvqSa1a5ltZntMB8GA1UdIwQY
MBaAFHH16eqIMF99MWoSodSdsOn7iWzhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2ZYcDZvZ3dYMzB4YWhLaDFKMnc2ZnVKYk9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83NDkzNDYtYjA4Zi00OTMxLThkNGEt
MDUzOGEzYTE0ZGZkLzEvZ1pKeGdMWjZkS3NUdmlhLXBKclZybVcxbWUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83NDkzNDYtYjA4Zi00OTMxLThkNGEtMDUzOGEzYTE0ZGZk
LzEvY2ZYcDZvZ3dYMzB4YWhLaDFKMnc2ZnVKYk9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTlCMA0G
CSqGSIb3DQEBCwUAA4IBAQCRXdGltt6c6ICpZwaavaHWtlQEk5M/wpqaGrNCs6JC
oEgVVjvds0HEg47B66IhF1bKhO0zzgkp9WWN24xCAg4EdE97aI7NeE0fpk/bgVFA
4mH9YX0D6rTQ8ttqtH17E2CcbwaijaWk80npwBAFEN3n472sgDDWgmhhR6H6JBKa
L+nLw9PAbQYlN1DfMNkfnoDnAm9DSThHrT2ZkrPFvFVxSCQodjL+2MRXEfZJE2cT
fMArhi+CJKexdeYcSmmfSV8ETKLqkGtgtYln59O6SuPnQlorrXY+CABJeE6vSj1L
2BfrnznABFC/W1yJRbJnI5OfKcZwHu9qsFNd6XhdBHk0
-----END CERTIFICATE-----
Generated at Fri Apr 18 02:04:09 2025 by rpki-client