Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ZsJGv19WBTSGjYz_PXibhL453aw.roa
File: ZsJGv19WBTSGjYz_PXibhL453aw.roa (raw, json)
Hash identifier: NOcH/6I3wSYErMrE9uI7saK6yk3YPW6iKphgYH76kik=
Subject key identifier: 66:C2:46:BF:5F:56:05:34:86:8D:8C:FF:3D:78:9B:84:BE:39:DD:AC
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 01947013644939EAF4BE92ECC0044D3886E6
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ZsJGv19WBTSGjYz_PXibhL453aw.roa
Signing time: Thu 16 Jan 2025 17:05:06 +0000
ROA not before: Thu 16 Jan 2025 17:05:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29802
IP address blocks: 37.202.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Jan 2025 04:47:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:70:13:64:49:39:ea:f4:be:92:ec:c0:04:4d:38:86:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jan 16 17:05:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=66c246bf5f560534868d8cff3d789b84be39ddac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:96:70:05:3b:26:aa:6e:fd:61:3b:b4:8c:fa:
28:be:aa:3c:68:f7:e7:3f:ee:a9:10:92:94:4a:31:
b8:35:61:f8:7f:74:fb:3a:69:c4:ee:3a:d7:c8:32:
ab:e7:1f:0d:a4:01:4d:82:e4:0d:48:41:4e:e9:0f:
49:d6:c0:5e:19:b5:e6:36:36:5b:1b:1c:34:fc:44:
f6:03:f8:f6:ee:c1:bc:8e:f7:61:7a:fb:45:e5:ed:
1c:b8:4d:b8:48:5c:ab:f5:dc:ab:e0:de:06:52:b0:
84:c1:77:ee:c9:47:6e:7b:3c:10:01:ce:ae:6c:51:
0a:c8:44:1a:d5:c3:4b:8c:0c:05:b4:72:cd:24:84:
8f:3c:a6:4a:ad:fb:24:61:8f:fd:71:1e:12:a4:c6:
23:11:7d:63:c2:eb:ad:e8:dd:8c:8f:3d:a9:ba:ce:
d7:51:57:3a:38:c6:a2:76:aa:14:36:7c:b3:6c:ce:
d2:ed:89:75:8a:4f:61:83:58:10:2b:a9:0f:ef:6b:
ed:86:a0:04:e3:da:0b:38:fa:4f:42:5e:70:50:18:
af:2d:f7:40:1e:cf:47:a8:31:6d:72:db:54:97:54:
86:1c:33:03:5f:63:8d:2e:47:f2:3c:47:4c:7f:dd:
e3:13:1f:f4:9a:ec:94:0c:9d:65:1a:b0:6a:22:40:
e3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C2:46:BF:5F:56:05:34:86:8D:8C:FF:3D:78:9B:84:BE:39:DD:AC
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/ZsJGv19WBTSGjYz_PXibhL453aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.220.0/24
Signature Algorithm: sha256WithRSAEncryption
78:ed:57:dd:f6:5d:97:9d:62:ef:73:6b:c7:a8:e4:3e:71:45:
af:d2:bf:82:35:1c:af:bb:6d:b4:e7:9a:a9:89:7f:45:f1:ee:
61:9b:8c:61:06:af:6f:33:4e:f3:8a:f7:74:1a:91:c7:41:d1:
34:66:6c:f1:e7:a0:c2:d2:c5:f7:1a:5f:44:49:7b:8e:77:52:
da:c3:68:9f:1f:c5:6e:f3:ae:3a:16:6f:b9:1b:5b:23:fc:98:
c5:a8:83:f2:1e:8e:5f:15:3c:b3:79:a8:2a:a9:2d:a7:53:00:
8d:d8:bc:d9:46:86:79:3f:36:cf:ec:0e:cc:c4:09:89:20:e4:
fe:fd:d2:36:25:53:06:81:3f:49:a8:c8:c0:65:ae:32:cf:a2:
99:ee:cf:c9:ce:84:f9:35:c4:40:d7:8e:fd:c8:6a:39:53:56:
10:70:7a:7c:69:04:96:f1:85:c1:af:c8:a3:7a:9f:ee:8f:c0:
1c:43:94:13:75:00:13:01:92:7a:5c:96:b6:11:6e:55:6c:8b:
93:b0:e8:de:44:f1:62:39:15:9d:59:fd:e0:e1:0d:38:0e:38:
e9:2f:0b:12:86:02:08:fc:d7:cf:eb:db:ae:63:14:16:09:a0:
28:a1:9c:b3:12:72:89:0d:c7:13:24:91:8b:a5:70:4d:06:1f:
76:d8:51:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZRwE2RJOer0vpLswARNOIbmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh
NWE0YzAwHhcNMjUwMTE2MTcwNTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NmMyNDZiZjVmNTYwNTM0ODY4ZDhjZmYzZDc4OWI4NGJlMzlkZGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpZwBTsmqm79YTu0jPoovqo8aPfn
P+6pEJKUSjG4NWH4f3T7OmnE7jrXyDKr5x8NpAFNguQNSEFO6Q9J1sBeGbXmNjZb
Gxw0/ET2A/j27sG8jvdhevtF5e0cuE24SFyr9dyr4N4GUrCEwXfuyUduezwQAc6u
bFEKyEQa1cNLjAwFtHLNJISPPKZKrfskYY/9cR4SpMYjEX1jwuut6N2Mjz2pus7X
UVc6OMaidqoUNnyzbM7S7Yl1ik9hg1gQK6kP72vthqAE49oLOPpPQl5wUBivLfdA
Hs9HqDFtcttUl1SGHDMDX2ONLkfyPEdMf93jEx/0muyUDJ1lGrBqIkDj2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGbCRr9fVgU0ho2M/z14m4S+Od2sMB8GA1UdIwQY
MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt
MTdiOWRlMTQxMjUyLzEvWnNKR3YxOVdCVFNHall6X1BYaWJoTDQ1M2F3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy
LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJcrcMA0G
CSqGSIb3DQEBCwUAA4IBAQB47Vfd9l2XnWLvc2vHqOQ+cUWv0r+CNRyvu22055qp
iX9F8e5hm4xhBq9vM07zivd0GpHHQdE0Zmzx56DC0sX3Gl9ESXuOd1Law2ifH8Vu
8646Fm+5G1sj/JjFqIPyHo5fFTyzeagqqS2nUwCN2LzZRoZ5PzbP7A7MxAmJIOT+
/dI2JVMGgT9JqMjAZa4yz6KZ7s/JzoT5NcRA1479yGo5U1YQcHp8aQSW8YXBr8ij
ep/uj8AcQ5QTdQATAZJ6XJa2EW5VbIuTsOjeRPFiORWdWf3g4Q04DjjpLwsShgII
/NfP69uuYxQWCaAooZyzEnKJDccTJJGLpXBNBh922FFL
-----END CERTIFICATE-----
Generated at Fri Apr 11 11:29:29 2025 by rpki-client