Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/Y5SuY-YKpmQoMDAs6Lpz-nyTr5k.roa
File: Y5SuY-YKpmQoMDAs6Lpz-nyTr5k.roa (raw, json)
Hash identifier: KejBZacC1iTWuKlYDFgkv4lUJ+7EYiG400OlH5BVU/M=
Subject key identifier: 63:94:AE:63:E6:0A:A6:64:28:30:30:2C:E8:BA:73:FA:7C:93:AF:99
Certificate issuer: /CN=fa3d0bc11b29da44ad57304c3f8568870a019c24
Certificate serial: 0194266AB99C8785814F31E754FB8FBEA524
Authority key identifier: FA:3D:0B:C1:1B:29:DA:44:AD:57:30:4C:3F:85:68:87:0A:01:9C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-j0LwRsp2kStVzBMP4VohwoBnCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/Y5SuY-YKpmQoMDAs6Lpz-nyTr5k.roa
Signing time: Thu 02 Jan 2025 09:48:36 +0000
ROA not before: Thu 02 Jan 2025 09:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200436
IP address blocks: 185.118.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Apr 2025 12:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:b9:9c:87:85:81:4f:31:e7:54:fb:8f:be:a5:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa3d0bc11b29da44ad57304c3f8568870a019c24
Validity
Not Before: Jan 2 09:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6394ae63e60aa6642830302ce8ba73fa7c93af99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fc:cb:20:93:12:25:ea:d6:bf:3c:87:7d:d3:
4f:91:20:ba:41:34:58:d7:8d:06:ad:61:f7:fe:12:
c9:4f:7d:b8:80:86:7e:73:bb:26:21:44:4b:86:65:
f6:67:a5:1c:ca:af:0f:10:33:22:c7:34:8a:90:eb:
c6:11:50:64:08:da:3b:ee:12:c2:d6:b8:25:ec:b6:
6d:fd:7b:91:b6:36:2e:c7:06:44:78:5b:2d:7b:31:
2f:cf:5c:10:60:c9:b4:8d:60:c8:76:fb:32:a5:49:
5b:8e:f1:73:0a:8b:bf:cb:2a:18:01:01:4d:ad:f2:
3b:18:33:8c:68:39:54:8c:96:ca:1a:10:58:98:90:
fb:e9:c2:ab:5b:ed:5e:fd:f9:4b:6a:97:1d:17:4c:
6c:2d:fd:e3:2a:2c:0a:52:8f:54:51:be:91:1f:de:
53:0f:0b:dc:87:23:b4:a6:7d:d4:41:cf:ce:7c:6e:
5f:2f:b2:9a:ee:7a:de:3d:f6:46:3c:12:2b:d8:81:
9a:b0:c0:27:91:6b:2e:18:f5:b7:38:b9:e9:05:5e:
96:2c:54:b8:88:d6:34:29:3f:a4:4d:90:f0:b2:02:
7b:e4:fc:2a:e3:e6:32:97:84:db:de:f9:20:92:da:
16:f3:da:1a:4f:98:ce:f8:57:77:6e:8a:5c:b9:21:
8f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:94:AE:63:E6:0A:A6:64:28:30:30:2C:E8:BA:73:FA:7C:93:AF:99
X509v3 Authority Key Identifier:
keyid:FA:3D:0B:C1:1B:29:DA:44:AD:57:30:4C:3F:85:68:87:0A:01:9C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-j0LwRsp2kStVzBMP4VohwoBnCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/Y5SuY-YKpmQoMDAs6Lpz-nyTr5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/1-j0LwRsp2kStVzBMP4VohwoBnCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.12.0/24
Signature Algorithm: sha256WithRSAEncryption
85:f7:c5:a5:b6:ca:db:ae:d6:0a:13:69:d8:70:8e:4a:cc:8b:
1e:d1:d4:c2:a1:95:8d:f9:62:69:58:79:1c:e8:65:aa:89:3c:
d1:d8:98:73:c3:a7:d1:62:bc:86:79:b8:ac:cd:92:49:c2:c0:
10:2b:a4:22:51:3a:87:ab:90:a8:0b:e3:24:c8:9b:15:12:9e:
c6:ee:a0:0a:6f:b7:c4:1c:64:b0:1a:f9:40:64:0e:90:f3:4d:
21:3f:1d:ea:68:1f:3e:0b:df:36:60:56:72:9a:14:a6:b0:cf:
da:85:e0:29:db:1f:b2:64:c3:b0:b6:7e:d6:77:8f:6d:a2:1f:
7d:f3:f1:b5:51:ab:c6:dd:da:ca:5e:59:29:df:f5:40:02:4d:
cc:a0:60:5a:5c:ba:2b:46:8d:78:91:e8:69:e4:79:73:bd:cb:
5e:f4:19:2f:43:11:22:b9:39:40:d4:59:34:12:2d:f3:b5:4b:
0e:31:12:13:b6:7a:57:f6:1c:a9:06:d6:1f:a5:99:e2:7e:18:
6b:21:7b:2c:44:d7:bc:07:6a:eb:6f:69:de:d3:8b:b7:06:d5:
fc:20:f4:62:80:6f:2d:0a:7b:51:ae:36:5c:90:b9:c3:b7:00:
1f:12:66:d0:05:52:6d:a8:05:e0:3a:d3:4b:ff:ff:06:c5:36:
ba:0d:a4:9f
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZQmarmch4WBTzHnVPuPvqUkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhM2QwYmMxMWIyOWRhNDRhZDU3MzA0YzNmODU2ODg3MGEw
MTljMjQwHhcNMjUwMTAyMDk0ODM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Mzk0YWU2M2U2MGFhNjY0MjgzMDMwMmNlOGJhNzNmYTdjOTNhZjk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfzLIJMSJerWvzyHfdNPkSC6QTRY
140GrWH3/hLJT324gIZ+c7smIURLhmX2Z6Ucyq8PEDMixzSKkOvGEVBkCNo77hLC
1rgl7LZt/XuRtjYuxwZEeFstezEvz1wQYMm0jWDIdvsypUlbjvFzCou/yyoYAQFN
rfI7GDOMaDlUjJbKGhBYmJD76cKrW+1e/flLapcdF0xsLf3jKiwKUo9UUb6RH95T
DwvchyO0pn3UQc/OfG5fL7Ka7nrePfZGPBIr2IGasMAnkWsuGPW3OLnpBV6WLFS4
iNY0KT+kTZDwsgJ75Pwq4+Yyl4Tb3vkgktoW89oaT5jO+Fd3bopcuSGPDQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFGOUrmPmCqZkKDAwLOi6c/p8k6+ZMB8GA1UdIwQY
MBaAFPo9C8EbKdpErVcwTD+FaIcKAZwkMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1qMEx3UnNwMmtTdFZ6Qk1QNFZvaHdvQm5DUS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMvYWE2NjI5LWQxNDktNDE5Ny1hMzE1
LWQyMTA3MWVmNzM1Yi8xL1k1U3VZLVlLcG1Rb01EQXM2THB6LW55VHI1ay5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYzMvYWE2NjI5LWQxNDktNDE5Ny1hMzE1LWQyMTA3MWVmNzM1
Yi8xLzEtajBMd1JzcDJrU3RWekJNUDRWb2h3b0JuQ1EuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5dgww
DQYJKoZIhvcNAQELBQADggEBAIX3xaW2ytuu1goTadhwjkrMix7R1MKhlY35YmlY
eRzoZaqJPNHYmHPDp9FivIZ5uKzNkknCwBArpCJROoerkKgL4yTImxUSnsbuoApv
t8QcZLAa+UBkDpDzTSE/HepoHz4L3zZgVnKaFKawz9qF4CnbH7Jkw7C2ftZ3j22i
H33z8bVRq8bd2speWSnf9UACTcygYFpcuitGjXiR6GnkeXO9y170GS9DESK5OUDU
WTQSLfO1Sw4xEhO2elf2HKkG1h+lmeJ+GGsheyxE17wHautvad7Ti7cG1fwg9GKA
by0Ke1GuNlyQucO3AB8SZtAFUm2oBeA600v//wbFNroNpJ8=
-----END CERTIFICATE-----
Generated at Thu Apr 17 09:24:03 2025 by rpki-client