Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/f4663f-484e-42db-89a0-15b09f5f6ed7/1/gwMhL3L3R0qNaWNuNUOUiFxLMsw.roa
File: gwMhL3L3R0qNaWNuNUOUiFxLMsw.roa (raw, json)
Hash identifier: tyld5Uz+1cB7XK30sgMa7JsmeqCjWD3e5cV21Ckk5Lc=
Subject key identifier: 83:03:21:2F:72:F7:47:4A:8D:69:63:6E:35:43:94:88:5C:4B:32:CC
Certificate issuer: /CN=80b0638b876f3978ca7bd28d7de370996b396a3f
Certificate serial: 0194258F68A1520909BA84BF68CB8FC4912A
Authority key identifier: 80:B0:63:8B:87:6F:39:78:CA:7B:D2:8D:7D:E3:70:99:6B:39:6A:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gLBji4dvOXjKe9KNfeNwmWs5aj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/f4663f-484e-42db-89a0-15b09f5f6ed7/1/gwMhL3L3R0qNaWNuNUOUiFxLMsw.roa
Signing time: Thu 02 Jan 2025 05:49:02 +0000
ROA not before: Thu 02 Jan 2025 05:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216346
IP address blocks: 194.117.63.0/24 maxlen: 24
2a13:4e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 17 Jan 2025 17:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:68:a1:52:09:09:ba:84:bf:68:cb:8f:c4:91:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80b0638b876f3978ca7bd28d7de370996b396a3f
Validity
Not Before: Jan 2 05:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8303212f72f7474a8d69636e354394885c4b32cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f6:22:4a:8b:1a:db:e6:16:49:f4:56:08:55:
69:10:3d:1d:15:00:67:da:f9:d8:ad:82:dd:4d:44:
23:74:47:38:52:28:51:50:12:90:b9:1a:58:90:0e:
a9:31:de:a2:d5:6e:db:c0:22:52:58:2b:3a:47:fa:
a0:bb:87:6c:24:d3:d0:28:91:7f:5d:c6:68:a4:b6:
d6:58:51:4b:aa:09:4c:59:98:83:34:f5:cf:f7:97:
41:c9:e7:2d:6b:67:78:02:1b:10:ca:c0:45:59:41:
86:db:24:15:d1:d0:7e:10:8b:28:e2:4b:89:9d:1e:
f5:51:57:28:6b:52:22:7e:40:48:6b:61:83:a8:38:
8d:35:09:69:dc:33:8e:39:c9:74:68:fb:f2:83:b7:
05:fe:5b:1b:7a:02:09:fe:98:bf:da:3a:d8:ce:3e:
e0:9e:c7:6f:d4:c5:18:bd:a2:a5:b3:e6:38:7c:d4:
6e:5e:a3:c8:31:ce:c8:7f:6a:75:e6:92:d7:2f:e7:
21:5a:62:04:5d:4e:37:60:a9:77:98:7b:c7:45:d3:
5d:4d:29:f6:09:af:0b:e4:65:88:7e:33:44:c6:32:
01:bb:bb:f2:73:c2:5c:17:62:12:07:15:17:fa:1b:
b8:bd:98:52:6d:19:45:8f:d0:5e:15:1a:e6:8e:61:
bd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:03:21:2F:72:F7:47:4A:8D:69:63:6E:35:43:94:88:5C:4B:32:CC
X509v3 Authority Key Identifier:
keyid:80:B0:63:8B:87:6F:39:78:CA:7B:D2:8D:7D:E3:70:99:6B:39:6A:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gLBji4dvOXjKe9KNfeNwmWs5aj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/f4663f-484e-42db-89a0-15b09f5f6ed7/1/gwMhL3L3R0qNaWNuNUOUiFxLMsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/f4663f-484e-42db-89a0-15b09f5f6ed7/1/gLBji4dvOXjKe9KNfeNwmWs5aj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.117.63.0/24
IPv6:
2a13:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
01:4a:df:4b:58:f2:e1:64:fa:53:3a:2d:fb:f7:0d:1e:d4:49:
66:e1:2c:ec:11:f8:09:be:83:a4:d6:8d:63:19:03:ad:77:b5:
69:ba:e1:f1:76:93:9b:36:fa:74:8e:32:b2:40:86:aa:d5:c8:
2b:08:90:ca:ed:73:64:a9:9c:a5:9f:d6:fe:ac:8c:53:95:66:
ad:0e:d8:8c:5d:16:80:c1:f8:4d:66:e5:17:ea:35:28:7e:31:
70:48:c8:82:6c:2a:43:71:42:e3:74:9e:d3:4c:ae:78:88:d1:
3e:27:1c:17:b0:44:8e:28:e6:69:d0:1f:b1:01:04:81:78:f9:
7d:13:6d:b5:fe:1a:ef:cd:26:c0:a2:54:39:c5:04:01:32:13:
c5:0e:74:e7:fd:8e:98:4d:57:8a:9c:6a:da:66:a6:03:d0:03:
a0:2e:38:00:50:9b:69:70:2e:ec:5b:2e:42:32:5e:71:66:cd:
17:ad:d8:97:b0:82:21:eb:27:5a:c9:0c:40:4b:69:74:93:84:
0a:ae:b7:7b:e1:ca:34:de:6e:47:13:76:03:51:70:4c:c7:c2:
18:c9:e8:34:f6:4e:f7:be:31:56:dc:7c:5b:80:f5:61:b5:3f:
b1:d2:cd:b8:20:5c:08:07:63:65:ec:c5:6b:4a:99:6c:2e:97:
66:6b:4a:e7
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQlj2ihUgkJuoS/aMuPxJEqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwYjA2MzhiODc2ZjM5NzhjYTdiZDI4ZDdkZTM3MDk5NmIz
OTZhM2YwHhcNMjUwMTAyMDU0OTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzAzMjEyZjcyZjc0NzRhOGQ2OTYzNmUzNTQzOTQ4ODVjNGIzMmNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmPYiSosa2+YWSfRWCFVpED0dFQBn
2vnYrYLdTUQjdEc4UihRUBKQuRpYkA6pMd6i1W7bwCJSWCs6R/qgu4dsJNPQKJF/
XcZopLbWWFFLqglMWZiDNPXP95dByecta2d4AhsQysBFWUGG2yQV0dB+EIso4kuJ
nR71UVcoa1IifkBIa2GDqDiNNQlp3DOOOcl0aPvyg7cF/lsbegIJ/pi/2jrYzj7g
nsdv1MUYvaKls+Y4fNRuXqPIMc7If2p15pLXL+chWmIEXU43YKl3mHvHRdNdTSn2
Ca8L5GWIfjNExjIBu7vyc8JcF2ISBxUX+hu4vZhSbRlFj9BeFRrmjmG9YQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFIMDIS9y90dKjWljbjVDlIhcSzLMMB8GA1UdIwQY
MBaAFICwY4uHbzl4ynvSjX3jcJlrOWo/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0xCamk0ZHZPWGpLZTlLTmZlTndtV3M1YWo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9mNDY2M2YtNDg0ZS00MmRiLTg5YTAt
MTViMDlmNWY2ZWQ3LzEvZ3dNaEwzTDNSMHFOYVdOdU5VT1VpRnhMTXN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9mNDY2M2YtNDg0ZS00MmRiLTg5YTAtMTViMDlmNWY2ZWQ3
LzEvZ0xCamk0ZHZPWGpLZTlLTmZlTndtV3M1YWo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwnU/MA0E
AgACMAcDBQMqE04AMA0GCSqGSIb3DQEBCwUAA4IBAQABSt9LWPLhZPpTOi379w0e
1Elm4SzsEfgJvoOk1o1jGQOtd7VpuuHxdpObNvp0jjKyQIaq1cgrCJDK7XNkqZyl
n9b+rIxTlWatDtiMXRaAwfhNZuUX6jUofjFwSMiCbCpDcULjdJ7TTK54iNE+JxwX
sESOKOZp0B+xAQSBePl9E221/hrvzSbAolQ5xQQBMhPFDnTn/Y6YTVeKnGraZqYD
0AOgLjgAUJtpcC7sWy5CMl5xZs0XrdiXsIIh6ydayQxAS2l0k4QKrrd74co03m5H
E3YDUXBMx8IYyeg09k73vjFW3HxbgPVhtT+x0s24IFwIB2Nl7MVrSplsLpdma0rn
-----END CERTIFICATE-----
Generated at Sat Apr 19 16:06:11 2025 by rpki-client