Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rpcop5KrXDHebC8a0TmlXQgZRsc.roa
File: rpcop5KrXDHebC8a0TmlXQgZRsc.roa (raw, json)
Hash identifier: /DlM/KfYrUqsDGidxWl7t7eOktBb5o7yJn0R6wEanF4=
Subject key identifier: AE:97:28:A7:92:AB:5C:31:DE:6C:2F:1A:D1:39:A5:5D:08:19:46:C7
Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Certificate serial: 019415DC7D12526449E3D9A75132C076DB1D
Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rpcop5KrXDHebC8a0TmlXQgZRsc.roa
Signing time: Mon 30 Dec 2024 04:39:18 +0000
ROA not before: Mon 30 Dec 2024 04:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214142
IP address blocks: 185.222.210.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:15:dc:7d:12:52:64:49:e3:d9:a7:51:32:c0:76:db:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Validity
Not Before: Dec 30 04:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae9728a792ab5c31de6c2f1ad139a55d081946c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f4:ab:9b:04:4b:8b:48:2d:f4:15:92:9a:5c:
46:fc:a5:72:ed:3b:e1:c5:e8:7f:e2:bf:f3:52:a4:
da:af:fa:a9:36:cd:1b:54:c5:10:dc:c5:12:eb:db:
87:f8:47:bc:80:8c:42:df:50:db:85:91:99:d0:ee:
3b:0d:3f:4d:bf:65:af:95:00:c7:36:1f:e4:94:21:
54:4a:78:84:8b:92:15:7c:94:7b:d0:c3:c5:3f:8b:
d7:24:31:14:82:10:e6:33:90:24:92:aa:30:c0:7c:
e6:66:be:96:3b:43:37:69:e3:76:d3:25:be:e6:14:
53:82:f8:8f:c7:62:a6:70:6e:4d:90:6b:77:12:65:
f8:de:b0:a8:84:eb:cd:75:81:ef:f2:ff:38:fd:6a:
e0:a0:e1:50:4e:e2:08:1a:3a:b8:7f:0f:e3:d3:f5:
25:fd:5c:05:d8:ff:74:75:d3:e0:5d:c5:60:a3:69:
8a:3d:e3:ce:1c:49:04:b5:e4:ad:88:56:37:a6:58:
ae:cc:16:f2:f4:a3:b4:2e:d7:ca:b9:b4:ee:d8:55:
0d:1f:e7:ae:8b:1b:39:df:2e:fc:29:27:6d:1d:34:
82:ac:e2:8f:2b:88:2f:79:33:c2:8a:40:e4:23:cb:
b5:23:6a:aa:d2:3e:f3:01:bd:75:4c:b1:83:cb:a8:
0e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:97:28:A7:92:AB:5C:31:DE:6C:2F:1A:D1:39:A5:5D:08:19:46:C7
X509v3 Authority Key Identifier:
keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rpcop5KrXDHebC8a0TmlXQgZRsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.210.0/24
Signature Algorithm: sha256WithRSAEncryption
66:92:b3:5e:a3:8b:11:f5:77:d3:29:40:03:43:5c:2e:18:f9:
16:ef:d8:4d:a9:9c:e3:b3:4b:98:06:ff:25:7a:84:4e:10:5d:
f3:44:4c:c6:89:ee:74:e5:7a:a8:32:c5:3a:f8:1b:81:c1:d7:
34:12:e6:5e:c4:0a:a9:64:86:c6:ec:93:33:35:b4:df:07:e4:
d0:95:df:55:5f:c7:81:da:cb:49:dd:78:05:4e:d6:e9:bd:7c:
24:33:75:8e:53:32:93:d1:ea:86:18:8e:71:f9:9e:a1:ca:92:
b8:42:90:e7:65:b4:7f:2d:c6:ec:05:2e:79:7c:15:29:27:f0:
e7:78:c6:e0:a3:9a:ed:33:ec:29:45:fe:34:75:54:3f:8c:83:
03:48:c8:20:e9:db:72:54:27:1d:3b:fe:19:be:f5:cb:30:50:
6e:fb:db:46:10:d1:7c:95:75:f1:3e:32:27:4f:a4:ee:83:e7:
76:20:78:e1:c8:f0:c6:5a:0b:9b:9b:ec:25:c1:9f:05:58:b3:
39:02:b2:f8:ea:fe:a6:91:b1:ef:71:eb:19:95:92:cd:3d:14:
63:6b:9a:95:74:81:7e:55:2f:b0:c4:74:b2:b5:47:7f:0f:65:
9e:6f:ac:9a:49:55:b3:03:92:86:d4:53:54:d2:78:7c:5a:d9:
26:06:60:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQV3H0SUmRJ49mnUTLAdtsdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkOTY4MWYxNDRkYjE0MzBhYzMxNWM4MzA2ZTFjMTQ3MzBj
NWZlYzIwHhcNMjQxMjMwMDQzOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTk3MjhhNzkyYWI1YzMxZGU2YzJmMWFkMTM5YTU1ZDA4MTk0NmM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PSrmwRLi0gt9BWSmlxG/KVy7Tvh
xeh/4r/zUqTar/qpNs0bVMUQ3MUS69uH+Ee8gIxC31DbhZGZ0O47DT9Nv2WvlQDH
Nh/klCFUSniEi5IVfJR70MPFP4vXJDEUghDmM5AkkqowwHzmZr6WO0M3aeN20yW+
5hRTgviPx2KmcG5NkGt3EmX43rCohOvNdYHv8v84/WrgoOFQTuIIGjq4fw/j0/Ul
/VwF2P90ddPgXcVgo2mKPePOHEkEteStiFY3pliuzBby9KO0LtfKubTu2FUNH+eu
ixs53y78KSdtHTSCrOKPK4gveTPCikDkI8u1I2qq0j7zAb11TLGDy6gOTwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK6XKKeSq1wx3mwvGtE5pV0IGUbHMB8GA1UdIwQY
MBaAFK2WgfFE2xQwrDFcgwbhwUcwxf7CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclphQjhVVGJGRENzTVZ5REJ1SEJSekRGX3NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy80MDViNWYtOGQyNi00ZWUzLWI4N2Yt
YTNhMTNlM2E3ZDgwLzEvcnBjb3A1S3JYREhlYkM4YTBUbWxYUWdaUnNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy80MDViNWYtOGQyNi00ZWUzLWI4N2YtYTNhMTNlM2E3ZDgw
LzEvclphQjhVVGJGRENzTVZ5REJ1SEJSekRGX3NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud7SMA0G
CSqGSIb3DQEBCwUAA4IBAQBmkrNeo4sR9XfTKUADQ1wuGPkW79hNqZzjs0uYBv8l
eoROEF3zREzGie505XqoMsU6+BuBwdc0EuZexAqpZIbG7JMzNbTfB+TQld9VX8eB
2stJ3XgFTtbpvXwkM3WOUzKT0eqGGI5x+Z6hypK4QpDnZbR/LcbsBS55fBUpJ/Dn
eMbgo5rtM+wpRf40dVQ/jIMDSMgg6dtyVCcdO/4ZvvXLMFBu+9tGENF8lXXxPjIn
T6Tug+d2IHjhyPDGWgubm+wlwZ8FWLM5ArL46v6mkbHvcesZlZLNPRRja5qVdIF+
VS+wxHSytUd/D2Web6yaSVWzA5KG1FNU0nh8WtkmBmDe
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:00:28 2025 by rpki-client