Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/zc56Cm9B6lrzRu43Y2v38gwPPRw.roa
File: zc56Cm9B6lrzRu43Y2v38gwPPRw.roa (raw, json)
Hash identifier: HdtcdGYsSl+PDLb7fDocaw2bRY0EgQJhQVaHEpEZwjY=
Subject key identifier: CD:CE:7A:0A:6F:41:EA:5A:F3:46:EE:37:63:6B:F7:F2:0C:0F:3D:1C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01942780C9BAFA5FC1727A030ABC71E8E1CF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/zc56Cm9B6lrzRu43Y2v38gwPPRw.roa
Signing time: Thu 02 Jan 2025 14:52:19 +0000
ROA not before: Thu 02 Jan 2025 14:52:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214025
IP address blocks: 185.199.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Mar 2025 09:02:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:80:c9:ba:fa:5f:c1:72:7a:03:0a:bc:71:e8:e1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 14:52:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cdce7a0a6f41ea5af346ee37636bf7f20c0f3d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1e:54:0b:96:59:5d:ad:e8:08:60:81:4c:16:
25:8b:06:ed:1b:0a:a1:32:fc:a8:4b:19:7b:b0:de:
2a:2b:f6:6f:e3:60:ac:e7:23:45:ea:cf:64:ba:17:
b8:01:4c:9e:94:9d:41:d1:02:4d:4c:6a:d4:dd:04:
2d:57:60:6c:38:4e:df:f8:e6:46:71:c1:e7:14:6c:
c7:b3:86:1a:e3:b3:ff:5a:19:2f:7e:dc:e3:a3:d8:
1c:0c:a3:df:b5:fb:df:50:ac:6a:a8:d5:40:17:1e:
a7:c0:9a:27:bc:5a:df:5c:0e:8b:4f:e7:99:24:bb:
9c:5d:49:8c:00:c5:7f:84:99:77:bf:8a:81:d3:79:
57:4a:63:2d:1c:90:16:9f:66:cd:dc:26:67:00:06:
98:33:c9:78:f0:97:55:56:d9:d1:63:1c:d1:88:b0:
e6:4e:b3:90:b7:17:8c:db:9a:54:c2:5d:8e:27:28:
60:e3:58:01:a2:7d:b8:ff:67:04:41:5a:49:89:ad:
12:3e:92:38:d0:7a:37:63:81:17:74:41:c8:25:7d:
b2:3a:2b:36:af:7c:6b:d1:be:e0:b0:36:7b:cd:85:
0f:a2:23:7c:93:86:92:5c:d5:8b:3c:e3:d3:a3:be:
97:56:e9:0b:08:e5:51:89:f3:70:42:bf:db:46:8c:
7f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:CE:7A:0A:6F:41:EA:5A:F3:46:EE:37:63:6B:F7:F2:0C:0F:3D:1C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/zc56Cm9B6lrzRu43Y2v38gwPPRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.54.0/24
Signature Algorithm: sha256WithRSAEncryption
39:ce:f3:f9:da:6d:ba:29:92:0c:19:c0:1a:66:f9:75:1b:dc:
f3:17:36:05:89:e7:06:85:87:b7:b7:91:97:a0:aa:4c:9f:26:
9d:71:3e:de:5b:b0:c8:a3:6d:4e:dc:e9:09:21:91:26:46:0f:
e2:0a:72:f6:30:c3:fb:6a:bb:26:34:e2:ca:63:93:06:4e:50:
64:51:d7:62:0e:b1:df:f9:5a:00:49:ac:ad:93:4a:56:8c:e9:
e3:02:8f:9c:d8:aa:e0:89:2b:04:0c:99:15:81:9b:07:da:74:
f3:49:1c:5e:f6:24:69:1d:e2:c3:e6:3f:bb:6c:e8:1a:cc:44:
b0:33:1d:e3:00:ae:31:a9:d5:bc:a8:df:84:de:ab:7d:da:53:
d0:b7:32:b3:fb:0a:01:18:8f:31:ec:e3:1f:c8:77:40:f0:97:
b5:c0:cf:35:ad:53:52:3e:43:07:59:14:b6:af:c0:1c:44:d4:
00:54:5f:72:84:58:1b:35:22:6a:bb:eb:35:58:97:0b:c6:8c:
dd:2d:9f:53:ca:54:10:fd:ea:df:31:8c:b5:10:a1:d5:8d:69:
da:30:15:1f:fe:96:6f:78:d4:07:d0:e8:ef:6a:3d:57:b1:ad:
8e:32:ec:5e:68:95:09:e4:76:e1:8d:2d:4c:c4:03:55:42:f8:
cf:bc:1f:a1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQngMm6+l/BcnoDCrxx6OHPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjUwMTAyMTQ1MjE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZGNlN2EwYTZmNDFlYTVhZjM0NmVlMzc2MzZiZjdmMjBjMGYzZDFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzR5UC5ZZXa3oCGCBTBYliwbtGwqh
MvyoSxl7sN4qK/Zv42Cs5yNF6s9kuhe4AUyelJ1B0QJNTGrU3QQtV2BsOE7f+OZG
ccHnFGzHs4Ya47P/Whkvftzjo9gcDKPftfvfUKxqqNVAFx6nwJonvFrfXA6LT+eZ
JLucXUmMAMV/hJl3v4qB03lXSmMtHJAWn2bN3CZnAAaYM8l48JdVVtnRYxzRiLDm
TrOQtxeM25pUwl2OJyhg41gBon24/2cEQVpJia0SPpI40Ho3Y4EXdEHIJX2yOis2
r3xr0b7gsDZ7zYUPoiN8k4aSXNWLPOPTo76XVukLCOVRifNwQr/bRox/GQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM3OegpvQepa80buN2Nr9/IMDz0cMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvemM1NkNtOUI2bHJ6UnU0M1kydjM4Z3dQUFJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucc2MA0G
CSqGSIb3DQEBCwUAA4IBAQA5zvP52m26KZIMGcAaZvl1G9zzFzYFiecGhYe3t5GX
oKpMnyadcT7eW7DIo21O3OkJIZEmRg/iCnL2MMP7arsmNOLKY5MGTlBkUddiDrHf
+VoASaytk0pWjOnjAo+c2KrgiSsEDJkVgZsH2nTzSRxe9iRpHeLD5j+7bOgazESw
Mx3jAK4xqdW8qN+E3qt92lPQtzKz+woBGI8x7OMfyHdA8Je1wM81rVNSPkMHWRS2
r8AcRNQAVF9yhFgbNSJqu+s1WJcLxozdLZ9TylQQ/erfMYy1EKHVjWnaMBUf/pZv
eNQH0Ojvaj1Xsa2OMuxeaJUJ5HbhjS1MxANVQvjPvB+h
-----END CERTIFICATE-----
Generated at Sat Apr 12 09:29:56 2025 by rpki-client