Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/776552-e0c2-4b7c-9891-21cd290c03f3/1/FGEKXSRLdB6EKHMa9M55VYdF9zo.roa
File: FGEKXSRLdB6EKHMa9M55VYdF9zo.roa (raw, json)
Hash identifier: XiX2Bv9KeuuAKFIqDyVL2umL6/jwv3m5iUQ60JZ6aAc=
Subject key identifier: 14:61:0A:5D:24:4B:74:1E:84:28:73:1A:F4:CE:79:55:87:45:F7:3A
Certificate issuer: /CN=2c9e49962073f9efb66a4b303506da6341567450
Certificate serial: 0194FF9A31D4311C025A71A4C565A8344646
Authority key identifier: 2C:9E:49:96:20:73:F9:EF:B6:6A:4B:30:35:06:DA:63:41:56:74:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LJ5JliBz-e-2akswNQbaY0FWdFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/776552-e0c2-4b7c-9891-21cd290c03f3/1/FGEKXSRLdB6EKHMa9M55VYdF9zo.roa
Signing time: Thu 13 Feb 2025 13:58:02 +0000
ROA not before: Thu 13 Feb 2025 13:58:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213425
IP address blocks: 195.200.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Feb 2025 13:09:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ff:9a:31:d4:31:1c:02:5a:71:a4:c5:65:a8:34:46:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c9e49962073f9efb66a4b303506da6341567450
Validity
Not Before: Feb 13 13:58:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=14610a5d244b741e8428731af4ce79558745f73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2e:04:1d:76:bc:44:94:0a:2e:dc:c5:48:60:
4a:d8:ba:5e:d6:0d:06:ea:44:fc:e7:69:d6:1d:72:
43:b4:2e:31:74:5a:b9:0e:e7:11:63:16:a3:82:ef:
5e:44:c0:a4:bc:1a:d1:f8:b7:f2:2c:a1:80:45:c5:
2c:eb:da:16:df:41:c0:bc:1b:e4:c5:8c:5a:8d:ca:
1f:2a:4d:74:d8:33:af:68:64:0a:05:5e:6e:47:47:
e5:75:42:83:f9:77:3e:51:84:6d:e4:84:c9:ee:d8:
14:e8:09:88:72:60:57:15:fa:1d:bb:31:72:87:cc:
e0:10:3f:9a:31:64:a8:63:2a:e5:ae:02:af:ce:1a:
34:36:87:1f:82:80:69:7a:f5:bf:c4:e9:32:1e:f0:
75:1e:66:3d:a3:8f:1a:d2:97:37:1a:08:f0:75:42:
12:1a:94:1a:5f:51:79:55:3a:a6:80:a1:51:61:c9:
16:37:6b:76:7d:19:95:d2:75:90:0c:c7:fb:a9:3b:
de:ee:c3:0d:3b:65:fd:47:50:5d:2b:b0:5c:58:38:
79:4e:82:53:47:2c:f1:be:b8:f9:5c:38:45:8c:23:
ca:c5:4f:a8:f0:5f:51:ad:d9:99:c8:96:0b:7a:d7:
3d:5a:5b:49:5d:3f:73:25:06:ba:14:76:5a:1b:34:
c1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:61:0A:5D:24:4B:74:1E:84:28:73:1A:F4:CE:79:55:87:45:F7:3A
X509v3 Authority Key Identifier:
keyid:2C:9E:49:96:20:73:F9:EF:B6:6A:4B:30:35:06:DA:63:41:56:74:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJ5JliBz-e-2akswNQbaY0FWdFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/776552-e0c2-4b7c-9891-21cd290c03f3/1/FGEKXSRLdB6EKHMa9M55VYdF9zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/776552-e0c2-4b7c-9891-21cd290c03f3/1/LJ5JliBz-e-2akswNQbaY0FWdFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.200.69.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:0b:8b:58:a1:af:da:d0:38:61:90:c1:3a:6d:a7:eb:76:9a:
9e:d3:2b:f8:6e:11:12:58:4a:8c:5f:a3:36:cd:2e:05:55:47:
1a:14:cd:ad:71:92:ba:cb:13:74:03:71:41:35:f7:b5:69:46:
70:b1:a8:18:a6:d4:b8:b8:ba:df:f5:83:13:d2:af:53:84:d5:
45:ce:26:8d:d0:01:18:f5:05:b1:8b:7a:d9:27:b1:78:60:8e:
61:3b:38:0a:e9:58:9c:17:74:df:51:1b:eb:ec:f2:94:59:82:
27:27:4c:ff:cd:84:57:85:28:e5:b0:3c:49:1b:a0:ee:87:7e:
91:81:8f:72:c6:5f:2c:7b:27:e9:ae:d5:78:73:0e:2e:26:7e:
3f:10:65:b3:28:cb:be:ab:ab:25:5a:14:2b:a6:f8:1b:4c:84:
1a:ad:b3:2a:96:e6:b6:4c:5a:5b:16:05:f8:c6:72:d8:c7:b5:
f9:01:26:5f:0b:f8:2b:02:33:2f:00:fe:93:fa:b0:38:55:9f:
b2:3a:bc:0f:0c:a8:8e:2d:a9:bb:01:c2:4c:84:b0:4b:35:04:
51:c9:23:9d:3b:a7:30:fd:61:38:54:0a:67:9f:30:86:e9:35:
bc:1f:4d:5f:c4:99:ae:bc:61:c8:a0:2d:69:e9:22:4b:7b:e2:
fa:ff:28:cd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZT/mjHUMRwCWnGkxWWoNEZGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjOWU0OTk2MjA3M2Y5ZWZiNjZhNGIzMDM1MDZkYTYzNDE1
Njc0NTAwHhcNMjUwMjEzMTM1ODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDYxMGE1ZDI0NGI3NDFlODQyODczMWFmNGNlNzk1NTg3NDVmNzNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyC4EHXa8RJQKLtzFSGBK2Lpe1g0G
6kT852nWHXJDtC4xdFq5DucRYxajgu9eRMCkvBrR+LfyLKGARcUs69oW30HAvBvk
xYxajcofKk102DOvaGQKBV5uR0fldUKD+Xc+UYRt5ITJ7tgU6AmIcmBXFfoduzFy
h8zgED+aMWSoYyrlrgKvzho0NocfgoBpevW/xOkyHvB1HmY9o48a0pc3GgjwdUIS
GpQaX1F5VTqmgKFRYckWN2t2fRmV0nWQDMf7qTve7sMNO2X9R1BdK7BcWDh5ToJT
Ryzxvrj5XDhFjCPKxU+o8F9RrdmZyJYLetc9WltJXT9zJQa6FHZaGzTBeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBRhCl0kS3QehChzGvTOeVWHRfc6MB8GA1UdIwQY
MBaAFCyeSZYgc/nvtmpLMDUG2mNBVnRQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEo1SmxpQnotZS0yYWtzd05RYmFZMEZXZEZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi83NzY1NTItZTBjMi00YjdjLTk4OTEt
MjFjZDI5MGMwM2YzLzEvRkdFS1hTUkxkQjZFS0hNYTlNNTVWWWRGOXpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNi83NzY1NTItZTBjMi00YjdjLTk4OTEtMjFjZDI5MGMwM2Yz
LzEvTEo1SmxpQnotZS0yYWtzd05RYmFZMEZXZEZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw8hFMA0G
CSqGSIb3DQEBCwUAA4IBAQCnC4tYoa/a0DhhkME6bafrdpqe0yv4bhESWEqMX6M2
zS4FVUcaFM2tcZK6yxN0A3FBNfe1aUZwsagYptS4uLrf9YMT0q9ThNVFziaN0AEY
9QWxi3rZJ7F4YI5hOzgK6VicF3TfURvr7PKUWYInJ0z/zYRXhSjlsDxJG6Duh36R
gY9yxl8seyfprtV4cw4uJn4/EGWzKMu+q6slWhQrpvgbTIQarbMqlua2TFpbFgX4
xnLYx7X5ASZfC/grAjMvAP6T+rA4VZ+yOrwPDKiOLam7AcJMhLBLNQRRySOdO6cw
/WE4VApnnzCG6TW8H01fxJmuvGHIoC1p6SJLe+L6/yjN
-----END CERTIFICATE-----
Generated at Mon Apr 21 04:16:44 2025 by rpki-client