Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/THyID43SFn7Jo-E6zLFghXO8EfA.roa
File: THyID43SFn7Jo-E6zLFghXO8EfA.roa (raw, json)
Hash identifier: ETKKSDi7Ba8EWOrG9th2M16+MBP0vC5NIcDdIojGgrQ=
Subject key identifier: 4C:7C:88:0F:8D:D2:16:7E:C9:A3:E1:3A:CC:B1:60:85:73:BC:11:F0
Certificate issuer: /CN=d00b37b6f4b445645e6993a9c5ec608492425f0e
Certificate serial: 0195A963CB14E25DE112155B1148A30A8FCB
Authority key identifier: D0:0B:37:B6:F4:B4:45:64:5E:69:93:A9:C5:EC:60:84:92:42:5F:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/THyID43SFn7Jo-E6zLFghXO8EfA.roa
Signing time: Tue 18 Mar 2025 13:14:04 +0000
ROA not before: Tue 18 Mar 2025 13:14:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42473
IP address blocks: 152.53.0.0/16 maxlen: 24
152.53.6.0/24 maxlen: 24
152.53.7.0/24 maxlen: 24
152.53.8.0/24 maxlen: 24
152.53.9.0/24 maxlen: 24
152.53.24.0/24 maxlen: 24
152.53.25.0/24 maxlen: 24
152.53.30.0/24 maxlen: 24
152.53.36.0/22 maxlen: 24
152.53.41.0/24 maxlen: 24
152.53.48.0/22 maxlen: 22
152.53.59.0/24 maxlen: 24
152.53.62.0/24 maxlen: 24
152.53.63.0/24 maxlen: 24
152.53.64.0/22 maxlen: 24
152.53.69.0/24 maxlen: 24
152.53.74.0/24 maxlen: 24
152.53.75.0/24 maxlen: 24
152.53.78.0/24 maxlen: 24
152.53.79.0/24 maxlen: 24
152.53.80.0/22 maxlen: 22
152.53.84.0/22 maxlen: 22
152.53.88.0/22 maxlen: 22
152.53.92.0/22 maxlen: 22
152.53.98.0/24 maxlen: 24
152.53.100.0/22 maxlen: 22
152.53.104.0/22 maxlen: 22
152.53.108.0/22 maxlen: 22
152.53.112.0/22 maxlen: 22
152.53.116.0/22 maxlen: 22
152.53.124.0/22 maxlen: 22
152.53.128.0/20 maxlen: 22
152.53.224.0/22 maxlen: 22
152.53.228.0/22 maxlen: 22
152.53.236.0/22 maxlen: 22
152.53.240.0/22 maxlen: 22
152.53.244.0/22 maxlen: 22
152.53.248.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 18 Mar 2025 13:48:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a9:63:cb:14:e2:5d:e1:12:15:5b:11:48:a3:0a:8f:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d00b37b6f4b445645e6993a9c5ec608492425f0e
Validity
Not Before: Mar 18 13:14:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4c7c880f8dd2167ec9a3e13accb1608573bc11f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:32:1d:9d:df:3e:a4:c0:ac:d2:d6:1e:41:d1:
9e:78:19:36:51:cf:f1:1f:6f:6e:4e:96:9f:7b:21:
d8:20:3a:87:b7:a9:1e:9f:b0:d9:98:eb:df:7d:96:
3f:39:59:d5:78:d5:ce:c6:91:5e:db:8d:5c:39:6d:
cb:30:d6:38:00:c5:5a:37:96:2c:49:e5:7a:54:bc:
cc:e8:df:96:cd:a1:67:1d:57:6a:48:db:45:52:86:
e4:5d:19:d9:c2:b5:48:ce:5d:bc:81:28:dd:b9:95:
a9:67:78:75:9f:0c:ee:ea:3b:64:ac:e3:7a:04:32:
a0:de:ec:ca:dc:af:fb:8a:0d:57:f5:68:50:2c:2f:
b4:e3:13:1a:68:36:d1:de:5e:0f:7c:a9:a1:25:af:
95:4f:f6:c5:b6:13:6b:a5:2c:8b:b9:8e:e7:34:86:
a3:9b:bd:3b:4a:fb:96:7b:83:85:60:8c:61:4d:61:
8d:ee:5d:9d:07:9b:d4:13:08:eb:23:05:59:28:7f:
e1:64:fa:36:a9:02:b5:79:bf:0e:4d:23:7a:f9:8f:
f3:31:37:f3:22:59:6e:96:0b:ee:7a:8d:0c:8a:99:
6a:44:25:f4:d4:d2:3d:f8:c2:86:6c:35:4a:a3:56:
11:78:a3:06:cc:3f:c1:c5:4b:25:13:16:d3:db:8e:
a8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:7C:88:0F:8D:D2:16:7E:C9:A3:E1:3A:CC:B1:60:85:73:BC:11:F0
X509v3 Authority Key Identifier:
keyid:D0:0B:37:B6:F4:B4:45:64:5E:69:93:A9:C5:EC:60:84:92:42:5F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0As3tvS0RWReaZOpxexghJJCXw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/THyID43SFn7Jo-E6zLFghXO8EfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/730fc5-7301-4a60-86d1-7db6868d8474/1/0As3tvS0RWReaZOpxexghJJCXw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.53.0.0/16
Signature Algorithm: sha256WithRSAEncryption
49:d1:77:d7:75:01:ce:bc:4d:a5:39:15:21:30:a8:f0:bd:07:
97:f2:cf:67:0a:f2:db:dc:50:24:25:14:c4:82:2e:ab:a3:9d:
9c:53:46:5c:ca:f5:60:bd:8b:be:9d:d0:d3:28:40:0b:07:35:
9c:c2:a4:ad:f7:f2:36:f0:6a:4f:36:60:41:11:c2:f9:cc:4f:
17:cc:c0:7c:b2:4d:4c:b7:ca:8f:83:b3:70:96:b5:61:80:68:
e9:2a:c7:96:24:fd:61:47:0d:4a:5a:6e:18:84:8a:b9:44:5c:
be:d7:58:68:a5:51:0b:35:aa:37:28:80:a7:50:d6:16:30:a8:
7b:d4:a3:4a:21:47:da:1e:52:59:a0:0e:e6:06:73:29:99:96:
e8:b4:51:2f:21:cd:c8:72:4f:6f:73:cb:90:25:12:77:14:d4:
da:2b:83:63:ec:42:34:b7:38:e6:ed:90:dd:06:ee:41:11:b7:
1a:7c:25:6d:48:e7:a7:8c:00:06:1d:e8:29:ca:dd:78:6b:ae:
41:1a:b8:d6:17:b3:bd:2d:76:e4:ce:a2:f7:30:09:31:d9:05:
c8:f8:c9:e8:b5:4c:bb:e0:ac:ac:90:53:19:35:3e:28:ad:a5:
f8:12:0b:80:05:e4:e0:b3:13:54:de:7a:b7:27:63:7f:14:5c:
f2:06:0c:17
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAZWpY8sU4l3hEhVbEUijCo/LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwMGIzN2I2ZjRiNDQ1NjQ1ZTY5OTNhOWM1ZWM2MDg0OTI0
MjVmMGUwHhcNMjUwMzE4MTMxNDA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzdjODgwZjhkZDIxNjdlYzlhM2UxM2FjY2IxNjA4NTczYmMxMWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjIdnd8+pMCs0tYeQdGeeBk2Uc/x
H29uTpafeyHYIDqHt6ken7DZmOvffZY/OVnVeNXOxpFe241cOW3LMNY4AMVaN5Ys
SeV6VLzM6N+WzaFnHVdqSNtFUobkXRnZwrVIzl28gSjduZWpZ3h1nwzu6jtkrON6
BDKg3uzK3K/7ig1X9WhQLC+04xMaaDbR3l4PfKmhJa+VT/bFthNrpSyLuY7nNIaj
m707SvuWe4OFYIxhTWGN7l2dB5vUEwjrIwVZKH/hZPo2qQK1eb8OTSN6+Y/zMTfz
Illulgvueo0MiplqRCX01NI9+MKGbDVKo1YReKMGzD/BxUslExbT246odQIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFEx8iA+N0hZ+yaPhOsyxYIVzvBHwMB8GA1UdIwQY
MBaAFNALN7b0tEVkXmmTqcXsYISSQl8OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEFzM3R2UzBSV1JlYVpPcHhleGdoSkpDWHc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC83MzBmYzUtNzMwMS00YTYwLTg2ZDEt
N2RiNjg2OGQ4NDc0LzEvVEh5SUQ0M1NGbjdKby1FNnpMRmdoWE84RWZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC83MzBmYzUtNzMwMS00YTYwLTg2ZDEtN2RiNjg2OGQ4NDc0
LzEvMEFzM3R2UzBSV1JlYVpPcHhleGdoSkpDWHc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAmDUwDQYJ
KoZIhvcNAQELBQADggEBAEnRd9d1Ac68TaU5FSEwqPC9B5fyz2cK8tvcUCQlFMSC
LqujnZxTRlzK9WC9i76d0NMoQAsHNZzCpK338jbwak82YEERwvnMTxfMwHyyTUy3
yo+Ds3CWtWGAaOkqx5Yk/WFHDUpabhiEirlEXL7XWGilUQs1qjcogKdQ1hYwqHvU
o0ohR9oeUlmgDuYGcymZlui0US8hzchyT29zy5AlEncU1Norg2PsQjS3OObtkN0G
7kERtxp8JW1I56eMAAYd6CnK3XhrrkEauNYXs70tduTOovcwCTHZBcj4yei1TLvg
rKyQUxk1PiitpfgSC4AF5OCzE1TeercnY38UXPIGDBc=
-----END CERTIFICATE-----
Generated at Sun Apr 13 12:23:37 2025 by rpki-client