Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/5V5QptHWWuzj3DxQEDfxkWU9I5o.roa
File: 5V5QptHWWuzj3DxQEDfxkWU9I5o.roa (raw, json)
Hash identifier: qbkU1i1bKn3ScoIXYBdD24J5nPOvKh/nr9iZXl2vgPA=
Subject key identifier: E5:5E:50:A6:D1:D6:5A:EC:E3:DC:3C:50:10:37:F1:91:65:3D:23:9A
Certificate issuer: /CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Certificate serial: 019425222AA762B7B0380F23F56C9D8066F3
Authority key identifier: 60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/5V5QptHWWuzj3DxQEDfxkWU9I5o.roa
Signing time: Thu 02 Jan 2025 03:49:43 +0000
ROA not before: Thu 02 Jan 2025 03:49:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25369
IP address blocks: 84.55.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 28 Feb 2025 06:54:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:2a:a7:62:b7:b0:38:0f:23:f5:6c:9d:80:66:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60661758ce330622470a39ae8d6ef4a2044f83c4
Validity
Not Before: Jan 2 03:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e55e50a6d1d65aece3dc3c501037f191653d239a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bd:3f:44:cb:9f:44:08:91:05:37:7b:c7:d3:
15:2e:cc:a6:4d:93:da:30:83:72:0b:b9:33:54:b7:
3c:e1:bb:be:c3:88:55:80:c5:a5:c1:15:d8:44:fa:
a3:71:5d:87:43:da:12:ad:b5:e1:fb:44:b6:98:86:
c9:16:53:60:6d:1f:19:91:a8:72:69:6b:f4:df:6d:
eb:80:d3:94:c3:db:95:27:d1:ad:e7:ad:8a:7d:58:
9e:a0:75:8e:55:4e:e0:dd:73:b9:01:98:12:01:5e:
4d:28:58:78:c3:23:89:86:4b:f5:5b:f7:ac:11:7b:
51:27:6e:79:d0:2b:b3:17:19:54:b8:fc:61:8e:97:
83:74:68:e2:8f:ba:51:25:e9:b1:cd:2b:37:27:43:
5d:32:39:0c:4b:2d:94:14:34:5e:a0:6f:50:53:ca:
83:87:76:e4:d4:b8:8f:ba:fa:b1:85:6e:11:26:bf:
7f:ce:8d:f8:56:8f:47:39:11:76:50:3d:e9:00:14:
9c:2b:50:d6:a4:7a:20:cc:36:88:75:de:96:a3:ed:
8e:aa:27:5a:f8:c3:06:6b:cd:8d:e7:df:ca:80:b4:
39:64:df:17:05:e7:92:19:8c:20:e8:2f:d4:02:57:
c2:27:de:af:ad:3c:02:84:a2:7f:14:14:07:95:9e:
8e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5E:50:A6:D1:D6:5A:EC:E3:DC:3C:50:10:37:F1:91:65:3D:23:9A
X509v3 Authority Key Identifier:
keyid:60:66:17:58:CE:33:06:22:47:0A:39:AE:8D:6E:F4:A2:04:4F:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGYXWM4zBiJHCjmujW70ogRPg8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/5V5QptHWWuzj3DxQEDfxkWU9I5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/edd128-6d6e-49e3-b77e-1f8746945483/1/YGYXWM4zBiJHCjmujW70ogRPg8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.55.8.0/22
Signature Algorithm: sha256WithRSAEncryption
87:75:64:cf:ee:38:54:58:ce:58:45:15:ce:4e:79:4a:a1:de:
de:ca:dc:64:02:50:a4:84:68:81:1a:c6:b6:ed:97:f2:06:33:
48:4a:f2:f2:44:1a:74:60:77:5d:65:c8:15:4c:72:9b:28:4f:
51:00:30:46:ab:82:9c:79:01:be:fa:c0:a2:89:8c:9f:25:ce:
16:17:89:12:bc:a8:b7:53:b1:99:25:c3:2a:88:cb:14:76:1d:
40:2b:a1:c4:8a:fa:4d:6b:ec:03:f5:4d:96:05:56:b5:74:2a:
0d:c3:11:ac:4a:98:eb:68:59:7e:ef:8a:4b:33:d2:00:c0:59:
6f:34:77:6f:91:e3:9a:40:cd:5d:0d:31:f1:9d:26:bf:22:ef:
58:63:51:e1:f8:e3:c6:cb:55:26:7c:73:6c:7f:10:7a:f8:ec:
3d:12:60:ec:e0:fb:5d:88:fa:d2:72:58:2f:9d:03:20:5e:6b:
ef:9a:ba:a2:1f:71:59:17:c3:35:21:ed:18:26:19:1b:1c:61:
fe:07:c1:74:1a:51:50:ea:4e:47:2b:34:06:7e:a3:7e:19:ad:
0e:d8:ce:de:18:7e:43:b8:5c:ad:65:40:bf:86:c2:79:5b:e2:
e5:c3:34:8b:87:ec:b6:2c:50:91:22:7d:7d:c3:bb:fc:6c:58:
9d:47:e9:ee
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIiqnYrewOA8j9WydgGbzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjYxNzU4Y2UzMzA2MjI0NzBhMzlhZThkNmVmNGEyMDQ0
ZjgzYzQwHhcNMjUwMTAyMDM0OTQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTVlNTBhNmQxZDY1YWVjZTNkYzNjNTAxMDM3ZjE5MTY1M2QyMzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAor0/RMufRAiRBTd7x9MVLsymTZPa
MINyC7kzVLc84bu+w4hVgMWlwRXYRPqjcV2HQ9oSrbXh+0S2mIbJFlNgbR8Zkahy
aWv0323rgNOUw9uVJ9Gt562KfVieoHWOVU7g3XO5AZgSAV5NKFh4wyOJhkv1W/es
EXtRJ2550CuzFxlUuPxhjpeDdGjij7pRJemxzSs3J0NdMjkMSy2UFDReoG9QU8qD
h3bk1LiPuvqxhW4RJr9/zo34Vo9HORF2UD3pABScK1DWpHogzDaIdd6Wo+2Oqida
+MMGa82N59/KgLQ5ZN8XBeeSGYwg6C/UAlfCJ96vrTwChKJ/FBQHlZ6O7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOVeUKbR1lrs49w8UBA38ZFlPSOaMB8GA1UdIwQY
MBaAFGBmF1jOMwYiRwo5ro1u9KIET4PEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2Ut
MWY4NzQ2OTQ1NDgzLzEvNVY1UXB0SFdXdXpqM0R4UUVEZnhrV1U5STVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9lZGQxMjgtNmQ2ZS00OWUzLWI3N2UtMWY4NzQ2OTQ1NDgz
LzEvWUdZWFdNNHpCaUpIQ2ptdWpXNzBvZ1JQZzhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVDcIMA0G
CSqGSIb3DQEBCwUAA4IBAQCHdWTP7jhUWM5YRRXOTnlKod7eytxkAlCkhGiBGsa2
7ZfyBjNISvLyRBp0YHddZcgVTHKbKE9RADBGq4KceQG++sCiiYyfJc4WF4kSvKi3
U7GZJcMqiMsUdh1AK6HEivpNa+wD9U2WBVa1dCoNwxGsSpjraFl+74pLM9IAwFlv
NHdvkeOaQM1dDTHxnSa/Iu9YY1Hh+OPGy1UmfHNsfxB6+Ow9EmDs4PtdiPrSclgv
nQMgXmvvmrqiH3FZF8M1Ie0YJhkbHGH+B8F0GlFQ6k5HKzQGfqN+Ga0O2M7eGH5D
uFytZUC/hsJ5W+LlwzSLh+y2LFCRIn19w7v8bFidR+nu
-----END CERTIFICATE-----
Generated at Sun Apr 6 20:46:48 2025 by rpki-client