Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/8ZAkmCMMQS_GDPZ6a1PW9yuu6nI.roa
File: 8ZAkmCMMQS_GDPZ6a1PW9yuu6nI.roa (raw, json)
Hash identifier: 0IJ7/8rR8/GKf6iBf2/XWGj3LkFoEJASKXp2sxSmRGo=
Subject key identifier: F1:90:24:98:23:0C:41:2F:C6:0C:F6:7A:6B:53:D6:F7:2B:AE:EA:72
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 01941F8C92366D49C57EBB554AF412690F89
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/8ZAkmCMMQS_GDPZ6a1PW9yuu6nI.roa
Signing time: Wed 01 Jan 2025 01:48:13 +0000
ROA not before: Wed 01 Jan 2025 01:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 194.143.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Jan 2025 07:50:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:92:36:6d:49:c5:7e:bb:55:4a:f4:12:69:0f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Jan 1 01:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1902498230c412fc60cf67a6b53d6f72baeea72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1a:39:e9:70:47:8f:0a:5d:4f:e3:20:8a:58:
10:0d:72:82:3d:64:ad:26:0e:c4:56:92:4f:0d:fb:
52:a1:2a:34:10:2a:5d:a5:52:3c:ba:b9:93:31:64:
3d:6a:0c:6c:ed:cc:b6:0f:55:3f:a9:7a:a6:6b:2a:
9d:57:f4:3b:5d:a8:09:9d:33:7f:db:03:e2:b4:87:
42:a6:e7:f4:27:01:00:e5:89:e4:28:20:67:c8:97:
8f:de:87:b3:dc:17:b7:42:77:e2:30:a1:31:e1:d7:
1f:50:40:c9:11:2b:d9:a3:a5:10:0c:fa:69:2a:3c:
a0:5e:a4:f8:b0:af:37:bf:60:e8:99:c6:d9:c3:01:
de:5c:ab:5b:39:70:ee:f1:07:2b:b5:23:97:77:20:
15:f0:bb:c9:2e:82:0d:e6:2c:8b:4f:32:f9:51:56:
2d:65:56:66:d0:d2:2a:09:b0:4f:ed:65:d1:ca:02:
1a:b5:8c:13:1e:35:7b:37:45:10:7c:67:0d:44:53:
0f:9b:e9:c2:e4:d2:c1:01:41:bf:22:fa:85:05:92:
15:5e:4f:36:20:82:ba:e9:1c:d3:25:47:5e:50:03:
76:6c:c9:21:1a:f4:a7:62:85:d5:18:bb:73:0b:3a:
15:25:55:0a:b4:5b:40:f3:4c:6c:dd:89:a4:f6:78:
3f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:90:24:98:23:0C:41:2F:C6:0C:F6:7A:6B:53:D6:F7:2B:AE:EA:72
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/8ZAkmCMMQS_GDPZ6a1PW9yuu6nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.143.217.0/24
Signature Algorithm: sha256WithRSAEncryption
35:ea:68:af:de:2d:06:9c:f5:c6:9e:04:71:e5:ee:bd:d4:ea:
97:e6:93:aa:4f:05:6a:c4:48:5b:e5:d1:94:96:2e:97:6f:58:
29:3a:71:15:dc:34:fe:82:a7:18:18:16:f0:00:df:a1:0b:6b:
c7:f9:21:85:33:6f:05:cb:f8:6a:a1:a0:25:0e:d5:da:f1:5d:
40:d2:7c:86:9b:7a:48:04:76:73:dd:b0:2a:de:e0:da:bb:5f:
0f:ed:f3:e6:2a:a2:97:10:3d:27:9d:b1:a7:8a:52:ee:dc:45:
82:f4:4d:05:b6:9d:3a:82:0b:ef:ec:aa:1b:e9:21:83:1c:b3:
7c:d4:54:e5:21:1c:85:33:06:3c:02:e0:b4:a0:ba:45:94:ef:
e5:1a:d8:41:bb:6c:0e:3e:d6:c3:c2:93:4a:0e:55:e9:a8:08:
30:51:7e:70:0b:5e:02:fe:72:8a:55:6e:45:58:12:2f:5b:a3:
fb:3f:22:e9:23:3d:a5:28:88:88:64:b9:28:00:5b:14:ea:fc:
d8:86:af:d4:b4:d0:ee:45:c5:b5:6d:37:ef:3c:a2:58:1c:1e:
c6:c4:86:a8:53:01:64:d9:24:5c:f4:d4:08:9a:63:9c:11:7b:
e0:af:de:2a:5b:83:96:8e:4c:d2:ed:86:98:3c:50:0d:d9:10:
83:3e:27:d6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQfjJI2bUnFfrtVSvQSaQ+JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NzFkY2M3YTlhYzczNTFjNzFlMGJjMjI3OGNmNDVmZDAy
MGFlMmUwHhcNMjUwMTAxMDE0ODEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTkwMjQ5ODIzMGM0MTJmYzYwY2Y2N2E2YjUzZDZmNzJiYWVlYTcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Bo56XBHjwpdT+MgilgQDXKCPWSt
Jg7EVpJPDftSoSo0ECpdpVI8urmTMWQ9agxs7cy2D1U/qXqmayqdV/Q7XagJnTN/
2wPitIdCpuf0JwEA5YnkKCBnyJeP3oez3Be3QnfiMKEx4dcfUEDJESvZo6UQDPpp
KjygXqT4sK83v2DomcbZwwHeXKtbOXDu8QcrtSOXdyAV8LvJLoIN5iyLTzL5UVYt
ZVZm0NIqCbBP7WXRygIatYwTHjV7N0UQfGcNRFMPm+nC5NLBAUG/IvqFBZIVXk82
IIK66RzTJUdeUAN2bMkhGvSnYoXVGLtzCzoVJVUKtFtA80xs3Ymk9ng/VQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPGQJJgjDEEvxgz2emtT1vcrrupyMB8GA1UdIwQY
MBaAFAZx3MeprHNRxx4LwieM9F/QIK4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGIt
MWRkZWM0Y2NlMjRjLzEvOFpBa21DTU1RU19HRFBaNmExUFc5eXV1Nm5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGItMWRkZWM0Y2NlMjRj
LzEvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwo/ZMA0G
CSqGSIb3DQEBCwUAA4IBAQA16miv3i0GnPXGngRx5e691OqX5pOqTwVqxEhb5dGU
li6Xb1gpOnEV3DT+gqcYGBbwAN+hC2vH+SGFM28Fy/hqoaAlDtXa8V1A0nyGm3pI
BHZz3bAq3uDau18P7fPmKqKXED0nnbGnilLu3EWC9E0Ftp06ggvv7Kob6SGDHLN8
1FTlIRyFMwY8AuC0oLpFlO/lGthBu2wOPtbDwpNKDlXpqAgwUX5wC14C/nKKVW5F
WBIvW6P7PyLpIz2lKIiIZLkoAFsU6vzYhq/UtNDuRcW1bTfvPKJYHB7GxIaoUwFk
2SRc9NQImmOcEXvgr94qW4OWjkzS7YaYPFAN2RCDPifW
-----END CERTIFICATE-----
Generated at Thu Apr 17 02:24:39 2025 by rpki-client