Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/b9h7N-OFOejTCjeg7XWg46ZAZnw.roa
File: b9h7N-OFOejTCjeg7XWg46ZAZnw.roa (raw, json)
Hash identifier: F8Zl1TJ9UTmIRzC0XUkd0DB7/zcf95MAqPWHYkTgrZE=
Subject key identifier: 6F:D8:7B:37:E3:85:39:E8:D3:0A:37:A0:ED:75:A0:E3:A6:40:66:7C
Certificate issuer: /CN=7a1bb036db40d799d861198a5243b3c03d56c20a
Certificate serial: 0195DB865943367552EE519E145064D8FFF4
Authority key identifier: 7A:1B:B0:36:DB:40:D7:99:D8:61:19:8A:52:43:B3:C0:3D:56:C2:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ehuwNttA15nYYRmKUkOzwD1Wwgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/b9h7N-OFOejTCjeg7XWg46ZAZnw.roa
Signing time: Fri 28 Mar 2025 06:52:49 +0000
ROA not before: Fri 28 Mar 2025 06:52:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39097
IP address blocks: 185.181.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Mar 2025 06:27:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:db:86:59:43:36:75:52:ee:51:9e:14:50:64:d8:ff:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a1bb036db40d799d861198a5243b3c03d56c20a
Validity
Not Before: Mar 28 06:52:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6fd87b37e38539e8d30a37a0ed75a0e3a640667c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:34:80:dc:9f:74:71:38:00:22:40:9a:56:98:
35:50:2b:7e:57:f4:03:07:88:d5:84:59:cd:e0:df:
18:5f:b0:26:77:a3:ff:92:11:8e:7f:2e:97:cd:db:
1e:41:b8:1f:4e:0a:6f:5b:27:80:fd:7a:da:17:3a:
d7:f6:b3:ca:fb:41:88:3d:c0:91:26:39:ff:14:6b:
cf:e5:3d:c4:21:15:4b:a2:49:d6:19:46:65:bd:e9:
4e:e9:64:7d:45:5e:64:a8:eb:3c:ea:4b:95:24:ce:
b0:86:df:6c:07:6f:a7:74:52:db:a4:08:9c:e4:03:
20:d6:61:e7:e1:e4:27:57:81:7e:dd:fa:7b:10:3c:
3b:ef:d2:07:8d:52:8c:2a:93:ec:b4:bf:0a:78:ba:
bd:dc:75:c3:ca:76:1e:19:2f:fa:07:01:80:5d:88:
1d:cb:ff:5a:8c:18:47:89:03:1c:b0:e6:f4:56:cb:
e5:f0:3f:09:ae:44:90:ad:a4:1b:14:93:03:69:6e:
3d:ac:57:3f:29:5d:18:c3:18:e2:ff:03:34:2e:49:
ad:ac:91:8d:45:1e:7f:e7:af:c0:c3:f8:4f:7f:74:
28:cc:4a:6e:ad:3a:41:6f:fc:7c:6b:a2:20:0f:25:
c5:a5:15:2c:0c:9b:46:fe:f5:4a:47:57:b4:f2:66:
52:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D8:7B:37:E3:85:39:E8:D3:0A:37:A0:ED:75:A0:E3:A6:40:66:7C
X509v3 Authority Key Identifier:
keyid:7A:1B:B0:36:DB:40:D7:99:D8:61:19:8A:52:43:B3:C0:3D:56:C2:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ehuwNttA15nYYRmKUkOzwD1Wwgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/b9h7N-OFOejTCjeg7XWg46ZAZnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6da5b3-24c7-4ee5-95dc-b08db3c36fbb/1/ehuwNttA15nYYRmKUkOzwD1Wwgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.147.0/24
Signature Algorithm: sha256WithRSAEncryption
01:00:4f:d4:df:f2:6c:50:c3:a2:2c:07:d7:b2:27:d5:84:7c:
89:2a:a6:cb:11:1c:39:7a:45:ed:40:3c:a8:9a:38:d2:d9:3a:
ec:ff:65:5d:9c:7d:3a:8e:c0:b5:ab:0b:c8:01:a6:53:c7:19:
77:bf:92:2a:51:ca:89:cc:75:94:79:6f:2a:6b:88:da:34:c4:
76:d8:56:07:5b:6e:81:4a:56:a9:1f:1c:c6:92:b2:9d:3c:66:
20:24:69:67:34:47:44:2f:84:07:78:8e:76:da:4b:42:59:f0:
ad:da:54:e1:bc:a9:98:36:08:d7:06:e1:9a:bd:90:d0:43:35:
cf:a8:5d:7d:bd:de:d1:31:98:60:ac:ff:6f:7c:d1:8f:ae:c4:
36:0d:f4:ba:96:c7:d7:5a:07:50:1f:49:aa:59:f1:13:b6:0b:
c8:c1:f3:d2:52:8a:9e:c5:09:61:18:cf:77:ac:af:4d:20:d3:
77:4b:45:bf:04:2c:3c:b5:dc:f2:65:f9:08:51:e0:78:d9:28:
e6:0e:a2:a7:cc:3a:ad:59:77:1d:19:69:64:29:b8:27:54:2f:
9d:14:47:47:2e:b7:98:af:9d:73:8d:25:37:37:2f:32:ad:2d:
29:eb:06:12:0c:73:94:2e:78:71:02:f2:7b:1f:ca:ad:1b:20:
52:76:9f:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZXbhllDNnVS7lGeFFBk2P/0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhMWJiMDM2ZGI0MGQ3OTlkODYxMTk4YTUyNDNiM2MwM2Q1
NmMyMGEwHhcNMjUwMzI4MDY1MjQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmQ4N2IzN2UzODUzOWU4ZDMwYTM3YTBlZDc1YTBlM2E2NDA2NjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzzSA3J90cTgAIkCaVpg1UCt+V/QD
B4jVhFnN4N8YX7Amd6P/khGOfy6XzdseQbgfTgpvWyeA/XraFzrX9rPK+0GIPcCR
Jjn/FGvP5T3EIRVLoknWGUZlvelO6WR9RV5kqOs86kuVJM6wht9sB2+ndFLbpAic
5AMg1mHn4eQnV4F+3fp7EDw779IHjVKMKpPstL8KeLq93HXDynYeGS/6BwGAXYgd
y/9ajBhHiQMcsOb0Vsvl8D8JrkSQraQbFJMDaW49rFc/KV0Ywxji/wM0LkmtrJGN
RR5/56/Aw/hPf3QozEpurTpBb/x8a6IgDyXFpRUsDJtG/vVKR1e08mZSFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG/YezfjhTno0wo3oO11oOOmQGZ8MB8GA1UdIwQY
MBaAFHobsDbbQNeZ2GEZilJDs8A9VsIKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWh1d050dEExNW5ZWVJtS1VrT3p3RDFXd2dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ZGE1YjMtMjRjNy00ZWU1LTk1ZGMt
YjA4ZGIzYzM2ZmJiLzEvYjloN04tT0ZPZWpUQ2plZzdYV2c0NlpBWm53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ZGE1YjMtMjRjNy00ZWU1LTk1ZGMtYjA4ZGIzYzM2ZmJi
LzEvZWh1d050dEExNW5ZWVJtS1VrT3p3RDFXd2dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubWTMA0G
CSqGSIb3DQEBCwUAA4IBAQABAE/U3/JsUMOiLAfXsifVhHyJKqbLERw5ekXtQDyo
mjjS2Trs/2VdnH06jsC1qwvIAaZTxxl3v5IqUcqJzHWUeW8qa4jaNMR22FYHW26B
SlapHxzGkrKdPGYgJGlnNEdEL4QHeI522ktCWfCt2lThvKmYNgjXBuGavZDQQzXP
qF19vd7RMZhgrP9vfNGPrsQ2DfS6lsfXWgdQH0mqWfETtgvIwfPSUoqexQlhGM93
rK9NINN3S0W/BCw8tdzyZfkIUeB42SjmDqKnzDqtWXcdGWlkKbgnVC+dFEdHLreY
r51zjSU3Ny8yrS0p6wYSDHOULnhxAvJ7H8qtGyBSdp/B
-----END CERTIFICATE-----
Generated at Sun Apr 20 12:17:27 2025 by rpki-client