Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4f751d-a355-40f3-aa44-7cca6773601a/1/zoHAoMUtgy3qC1RGgv3NwxpK4tA.roa
File: zoHAoMUtgy3qC1RGgv3NwxpK4tA.roa (raw, json)
Hash identifier: tcSiQOMt2+zYldQmPH5LJTgorgq1x9+5wb98kXhPQEo=
Subject key identifier: CE:81:C0:A0:C5:2D:83:2D:EA:0B:54:46:82:FD:CD:C3:1A:4A:E2:D0
Certificate issuer: /CN=c9e7aac3d724d9d49f3027133633ba119bb367fb
Certificate serial: 019541DDFF2B8B7D548613162C360E52643A
Authority key identifier: C9:E7:AA:C3:D7:24:D9:D4:9F:30:27:13:36:33:BA:11:9B:B3:67:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yeeqw9ck2dSfMCcTNjO6EZuzZ_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4f751d-a355-40f3-aa44-7cca6773601a/1/zoHAoMUtgy3qC1RGgv3NwxpK4tA.roa
Signing time: Wed 26 Feb 2025 10:47:02 +0000
ROA not before: Wed 26 Feb 2025 10:47:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48815
IP address blocks: 212.112.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Feb 2025 08:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:41:dd:ff:2b:8b:7d:54:86:13:16:2c:36:0e:52:64:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9e7aac3d724d9d49f3027133633ba119bb367fb
Validity
Not Before: Feb 26 10:47:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ce81c0a0c52d832dea0b544682fdcdc31a4ae2d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:31:18:b0:dc:11:84:a4:a1:38:c3:d4:3c:cd:
4c:8e:61:d1:3c:c3:1b:24:0e:c1:2e:91:ca:b5:11:
b8:d7:7b:0d:24:6f:83:cc:ad:23:6b:be:fa:6b:87:
c1:64:98:42:48:dd:5c:94:70:52:f1:f4:36:90:c1:
45:29:9b:f7:0a:cd:91:57:5a:38:da:a0:a3:ff:ec:
8e:c9:c7:b0:59:57:54:ad:19:83:b0:60:ca:03:78:
5e:18:81:38:ad:6f:13:f8:5d:b5:12:84:14:4a:82:
2e:22:b4:fa:c3:bf:d4:a4:3a:a4:e7:7d:1f:3b:c3:
69:0f:90:aa:b2:e7:43:a4:2c:1a:89:74:01:e3:75:
10:03:86:50:25:02:e7:87:14:9b:fe:e8:72:5e:b8:
b8:13:af:b8:dc:a9:b9:3e:7f:a9:40:cc:41:e0:f1:
1b:f5:e4:04:bd:b6:cd:e1:d5:67:4e:5d:18:f9:18:
a8:86:7d:3b:af:6f:0e:f9:17:ae:32:55:13:73:92:
8f:ff:7c:d6:a6:e1:fe:11:3a:a6:18:a5:b3:c2:2c:
84:eb:ae:c3:fc:d2:a3:1f:b2:ea:22:68:af:b3:e1:
54:f2:b6:a2:7b:f6:e4:5b:e5:c0:a6:1a:84:b9:3d:
8b:7b:c9:36:6d:74:e7:66:a3:2b:a1:96:df:f0:9f:
f6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:81:C0:A0:C5:2D:83:2D:EA:0B:54:46:82:FD:CD:C3:1A:4A:E2:D0
X509v3 Authority Key Identifier:
keyid:C9:E7:AA:C3:D7:24:D9:D4:9F:30:27:13:36:33:BA:11:9B:B3:67:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yeeqw9ck2dSfMCcTNjO6EZuzZ_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4f751d-a355-40f3-aa44-7cca6773601a/1/zoHAoMUtgy3qC1RGgv3NwxpK4tA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4f751d-a355-40f3-aa44-7cca6773601a/1/yeeqw9ck2dSfMCcTNjO6EZuzZ_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.112.74.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:2e:26:95:91:2c:4d:10:a5:27:f0:98:1c:0e:b5:69:88:ed:
b1:c8:6e:e3:06:3d:25:e2:af:9b:bd:8e:87:6c:b6:98:7f:4c:
fc:ab:ce:af:28:e2:98:17:8d:51:63:be:a5:00:4b:5a:87:27:
7c:f8:ae:fd:57:95:71:c6:1a:99:0a:37:77:b8:4a:59:47:27:
ef:ff:e7:61:f1:34:c9:ac:77:2f:6b:da:7c:ed:8e:f5:15:44:
7c:32:a3:7e:a4:19:f0:64:3b:65:46:00:fd:6f:eb:4b:c2:78:
a7:9c:98:25:41:79:7d:05:aa:e0:80:d4:69:ab:81:80:ee:a4:
8a:c8:05:55:18:86:26:55:5a:73:14:46:d2:08:3c:72:6c:1e:
5a:61:4b:b7:44:47:39:ac:6c:18:1b:35:4c:05:71:f4:f4:d3:
e6:c1:5c:32:0e:da:e7:e9:5c:2b:c2:0d:ea:ad:87:16:40:b7:
ed:2a:1f:bc:71:3e:f1:3e:9f:c7:f1:8d:2d:44:66:61:5f:3d:
e3:06:5e:3d:e5:73:da:b8:41:30:6f:da:f6:c6:26:d8:82:b6:
65:d4:7e:c8:ab:c8:22:cf:57:ed:89:45:05:90:88:03:cb:09:
e0:52:60:cc:5e:e5:4f:4a:70:2d:15:04:de:27:34:43:a4:47:
81:37:ae:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZVB3f8ri31UhhMWLDYOUmQ6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZTdhYWMzZDcyNGQ5ZDQ5ZjMwMjcxMzM2MzNiYTExOWJi
MzY3ZmIwHhcNMjUwMjI2MTA0NzAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZTgxYzBhMGM1MmQ4MzJkZWEwYjU0NDY4MmZkY2RjMzFhNGFlMmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjEYsNwRhKShOMPUPM1MjmHRPMMb
JA7BLpHKtRG413sNJG+DzK0ja776a4fBZJhCSN1clHBS8fQ2kMFFKZv3Cs2RV1o4
2qCj/+yOycewWVdUrRmDsGDKA3heGIE4rW8T+F21EoQUSoIuIrT6w7/UpDqk530f
O8NpD5CqsudDpCwaiXQB43UQA4ZQJQLnhxSb/uhyXri4E6+43Km5Pn+pQMxB4PEb
9eQEvbbN4dVnTl0Y+Riohn07r28O+ReuMlUTc5KP/3zWpuH+ETqmGKWzwiyE667D
/NKjH7LqImivs+FU8raie/bkW+XAphqEuT2Le8k2bXTnZqMroZbf8J/20QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM6BwKDFLYMt6gtURoL9zcMaSuLQMB8GA1UdIwQY
MBaAFMnnqsPXJNnUnzAnEzYzuhGbs2f7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWVlcXc5Y2syZFNmTUNjVE5qTzZFWnV6Wl9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS80Zjc1MWQtYTM1NS00MGYzLWFhNDQt
N2NjYTY3NzM2MDFhLzEvem9IQW9NVXRneTNxQzFSR2d2M053eHBLNHRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS80Zjc1MWQtYTM1NS00MGYzLWFhNDQtN2NjYTY3NzM2MDFh
LzEveWVlcXc5Y2syZFNmTUNjVE5qTzZFWnV6Wl9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1HBKMA0G
CSqGSIb3DQEBCwUAA4IBAQCzLiaVkSxNEKUn8JgcDrVpiO2xyG7jBj0l4q+bvY6H
bLaYf0z8q86vKOKYF41RY76lAEtahyd8+K79V5VxxhqZCjd3uEpZRyfv/+dh8TTJ
rHcva9p87Y71FUR8MqN+pBnwZDtlRgD9b+tLwninnJglQXl9BarggNRpq4GA7qSK
yAVVGIYmVVpzFEbSCDxybB5aYUu3REc5rGwYGzVMBXH09NPmwVwyDtrn6Vwrwg3q
rYcWQLftKh+8cT7xPp/H8Y0tRGZhXz3jBl495XPauEEwb9r2xibYgrZl1H7Iq8gi
z1ftiUUFkIgDywngUmDMXuVPSnAtFQTeJzRDpEeBN67s
-----END CERTIFICATE-----
Generated at Sun Apr 20 03:26:17 2025 by rpki-client