Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/S_vGuhMTYxXaCunLGgLAGv5bbBE.roa
File: S_vGuhMTYxXaCunLGgLAGv5bbBE.roa (raw, json)
Hash identifier: 5Em3XBcXGNqqHbN7DaTuRG/Zzolukym2RTghaRfXsnQ=
Subject key identifier: 4B:FB:C6:BA:13:13:63:15:DA:0A:E9:CB:1A:02:C0:1A:FE:5B:6C:11
Certificate issuer: /CN=22373571c90249bf2aa948e78bed13e08528b87e
Certificate serial: 0194126D9678A2A77D9655E79904BBF6AA97
Authority key identifier: 22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/S_vGuhMTYxXaCunLGgLAGv5bbBE.roa
Signing time: Sun 29 Dec 2024 12:39:19 +0000
ROA not before: Sun 29 Dec 2024 12:39:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61176
IP address blocks: 5.160.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:12:6d:96:78:a2:a7:7d:96:55:e7:99:04:bb:f6:aa:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22373571c90249bf2aa948e78bed13e08528b87e
Validity
Not Before: Dec 29 12:39:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4bfbc6ba13136315da0ae9cb1a02c01afe5b6c11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a4:f1:b2:0f:25:c9:c8:03:3f:59:b8:04:8a:
9c:ef:da:8c:35:31:90:7a:da:0d:d4:8d:1a:29:56:
c8:d7:6d:16:c5:32:9e:61:c4:49:3e:75:fe:d4:e6:
c8:16:a3:08:74:77:2e:87:35:8b:44:6c:8e:a8:19:
49:98:33:80:63:7f:52:a8:9e:be:88:24:6f:7e:9b:
e0:df:29:a1:ee:19:c0:58:6d:3e:0b:37:da:7f:47:
d9:96:45:23:74:83:99:bc:38:16:74:f3:56:1b:27:
9c:7d:ff:89:e0:40:57:5c:bc:5a:ac:d5:3c:b1:2b:
c9:d9:60:eb:e7:73:43:0c:e8:dc:04:63:04:86:5f:
fd:aa:dc:5b:31:9a:66:a1:ec:6c:88:f4:f6:25:1f:
0a:9a:31:54:36:d1:be:81:2c:86:a6:1c:50:32:1c:
74:9c:cd:6b:ed:41:49:4e:5d:e3:0b:3e:86:5a:3a:
d0:36:1f:af:82:a3:77:17:34:a3:2e:69:ed:72:ab:
2d:41:64:ae:86:7d:53:f7:69:09:b1:a5:1d:27:80:
dc:0c:b9:2e:be:c5:cb:54:8b:11:10:46:fd:82:82:
6b:bd:0a:95:d2:6e:6f:cc:98:31:d4:fb:95:09:7a:
4a:e1:5d:a9:62:60:01:f4:2e:e7:05:a2:48:65:f6:
eb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:FB:C6:BA:13:13:63:15:DA:0A:E9:CB:1A:02:C0:1A:FE:5B:6C:11
X509v3 Authority Key Identifier:
keyid:22:37:35:71:C9:02:49:BF:2A:A9:48:E7:8B:ED:13:E0:85:28:B8:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ijc1cckCSb8qqUjni-0T4IUouH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/S_vGuhMTYxXaCunLGgLAGv5bbBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/866e5e-831e-4cb1-bd51-b4540c74c94b/1/Ijc1cckCSb8qqUjni-0T4IUouH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.15.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:09:7a:8f:0a:7f:ab:2d:97:37:56:65:d9:ee:46:1e:78:5b:
13:3d:ab:08:cc:35:95:a4:83:ad:01:6f:cb:2b:7f:3a:95:f4:
4d:f2:4f:d7:1e:23:99:c7:7a:60:88:de:8d:27:1e:c9:c2:f9:
0f:4c:8b:4f:57:4d:b5:3a:df:6b:e5:b7:df:57:ec:eb:74:eb:
f3:cf:49:78:bb:23:69:de:1f:8b:d3:b3:21:0e:be:50:36:cb:
9c:f7:e4:8a:6a:7c:6b:4d:d7:21:7b:ae:f8:06:d7:af:91:97:
24:16:78:41:c2:86:ca:fe:7a:38:a7:4e:c9:97:2f:46:8f:da:
1a:b2:bb:cd:4e:26:dd:dc:6e:9b:6b:49:cd:d6:39:1a:8c:5c:
c5:90:66:ee:bf:c4:6e:74:35:0f:d7:96:a6:a2:68:bb:7b:0a:
b4:01:fd:7c:2a:90:02:3c:65:b0:c5:6e:e1:6f:6d:f6:71:de:
d5:69:41:2d:5c:79:a7:c3:f9:e0:37:4f:b0:d2:b2:19:2b:05:
a4:80:4a:3b:22:62:44:3c:e7:91:71:b5:25:5f:43:67:66:4f:
5e:c7:26:8a:41:a3:19:8f:c5:d8:ff:61:f4:fa:fa:bf:7c:db:
37:af:2c:8e:36:6f:8f:79:d2:a0:d5:6a:d8:0a:50:88:a1:f6:
ff:0f:32:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQSbZZ4oqd9llXnmQS79qqXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyMzczNTcxYzkwMjQ5YmYyYWE5NDhlNzhiZWQxM2UwODUy
OGI4N2UwHhcNMjQxMjI5MTIzOTE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YmZiYzZiYTEzMTM2MzE1ZGEwYWU5Y2IxYTAyYzAxYWZlNWI2YzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiaTxsg8lycgDP1m4BIqc79qMNTGQ
etoN1I0aKVbI120WxTKeYcRJPnX+1ObIFqMIdHcuhzWLRGyOqBlJmDOAY39SqJ6+
iCRvfpvg3ymh7hnAWG0+Czfaf0fZlkUjdIOZvDgWdPNWGyecff+J4EBXXLxarNU8
sSvJ2WDr53NDDOjcBGMEhl/9qtxbMZpmoexsiPT2JR8KmjFUNtG+gSyGphxQMhx0
nM1r7UFJTl3jCz6GWjrQNh+vgqN3FzSjLmntcqstQWSuhn1T92kJsaUdJ4DcDLku
vsXLVIsREEb9goJrvQqV0m5vzJgx1PuVCXpK4V2pYmAB9C7nBaJIZfbr1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEv7xroTE2MV2grpyxoCwBr+W2wRMB8GA1UdIwQY
MBaAFCI3NXHJAkm/KqlI54vtE+CFKLh+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEt
YjQ1NDBjNzRjOTRiLzEvU192R3VoTVRZeFhhQ3VuTEdnTEFHdjViYkJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS84NjZlNWUtODMxZS00Y2IxLWJkNTEtYjQ1NDBjNzRjOTRi
LzEvSWpjMWNja0NTYjhxcVVqbmktMFQ0SVVvdUg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABaAPMA0G
CSqGSIb3DQEBCwUAA4IBAQBdCXqPCn+rLZc3VmXZ7kYeeFsTPasIzDWVpIOtAW/L
K386lfRN8k/XHiOZx3pgiN6NJx7JwvkPTItPV021Ot9r5bffV+zrdOvzz0l4uyNp
3h+L07MhDr5QNsuc9+SKanxrTdche674BtevkZckFnhBwobK/no4p07Jly9Gj9oa
srvNTibd3G6ba0nN1jkajFzFkGbuv8RudDUP15amomi7ewq0Af18KpACPGWwxW7h
b232cd7VaUEtXHmnw/ngN0+w0rIZKwWkgEo7ImJEPOeRcbUlX0NnZk9exyaKQaMZ
j8XY/2H0+vq/fNs3ryyONm+PedKg1WrYClCIofb/DzJq
-----END CERTIFICATE-----
Generated at Sat Jun 7 21:04:32 2025 by rpki-client