Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/7SSFkWuvB8X38VYs5SPr4_OmiTk.roa
File: 7SSFkWuvB8X38VYs5SPr4_OmiTk.roa (raw, json)
Hash identifier: IAYRg9xx+rheL0DdoVnFueohYYpcLS1ZdqBBIkwK5XM=
Subject key identifier: ED:24:85:91:6B:AF:07:C5:F7:F1:56:2C:E5:23:EB:E3:F3:A6:89:39
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 019749BBDD53E887372B7A53C7934DDAAE53
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/7SSFkWuvB8X38VYs5SPr4_OmiTk.roa
Signing time: Sat 07 Jun 2025 09:32:18 +0000
ROA not before: Sat 07 Jun 2025 09:32:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215350
IP address blocks: 85.133.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 07 Jun 2025 13:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:bb:dd:53:e8:87:37:2b:7a:53:c7:93:4d:da:ae:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jun 7 09:32:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ed2485916baf07c5f7f1562ce523ebe3f3a68939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6f:25:dd:b2:38:36:45:d0:f6:28:0f:a0:b9:
0f:c1:a4:ad:6a:e1:07:5f:e1:fc:40:e7:89:d8:c3:
a6:88:4f:10:2d:4b:6f:c2:e9:93:d1:b4:c0:7e:8c:
6a:86:db:0f:0c:42:87:37:5f:c8:3e:66:ca:9c:70:
56:3a:36:da:e7:28:46:5a:a4:7b:1b:e7:5b:14:92:
0d:02:6f:46:47:95:9a:83:9f:2c:ed:97:29:f0:66:
52:ed:88:09:c2:75:b0:c1:45:49:da:82:e9:bb:ba:
33:4c:79:40:a7:eb:b7:e6:74:f8:e7:96:cc:fa:4b:
4f:87:0a:34:35:0a:f3:50:68:55:5c:b2:c7:64:cd:
d3:ee:9a:0a:63:af:94:b0:38:90:02:0d:33:c6:fb:
11:15:77:2e:20:92:e2:3e:40:42:72:2d:ea:7b:c5:
72:01:6e:7b:6e:65:7d:0c:eb:43:89:24:61:99:0e:
7d:3c:05:de:e2:e5:96:00:18:08:38:78:de:32:fb:
75:bc:c8:99:23:33:86:7f:d2:07:60:21:d6:48:10:
f3:40:47:c3:6a:b9:f2:f5:62:d9:40:60:bc:b2:15:
de:40:0c:78:d8:2b:30:a8:3f:3d:93:93:83:cf:11:
1b:ac:f8:28:34:a4:54:4e:ec:71:9f:25:fb:42:71:
42:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:24:85:91:6B:AF:07:C5:F7:F1:56:2C:E5:23:EB:E3:F3:A6:89:39
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/7SSFkWuvB8X38VYs5SPr4_OmiTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.207.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:f7:6d:25:07:30:6d:3b:f8:c2:e7:12:13:b1:47:29:bc:c3:
16:f0:ec:f0:78:e8:99:ec:6b:4b:ec:84:3a:7c:a8:77:08:50:
73:24:2f:d0:e8:ed:63:ee:ec:40:32:51:5a:96:9a:ff:f1:5b:
df:a4:84:17:5b:38:dc:54:6c:70:d6:18:d9:c7:6e:40:15:18:
f9:aa:c4:7b:f0:42:e5:85:ea:f0:f2:9e:7f:c9:01:0a:47:55:
74:ae:96:2a:14:23:b4:8d:ec:6d:ba:08:79:61:df:5f:cc:3e:
0f:d0:ec:60:4d:b6:eb:0d:7d:5c:ed:5e:7b:c1:1b:e9:06:3a:
ba:a8:22:8b:6d:32:30:ca:b2:6d:e6:75:72:f6:fb:af:e5:d7:
b0:55:51:dd:83:e5:1f:09:4f:00:d5:ee:b4:92:c5:01:a3:95:
77:e2:c8:f9:6e:25:38:67:a7:fd:a6:db:39:b9:54:b4:dd:11:
52:56:ad:07:63:16:cc:f4:62:20:a5:cf:f0:d0:ec:93:d4:89:
74:a1:e8:55:35:4b:96:92:6a:0f:e5:70:e0:07:bb:ee:7b:63:
17:0c:6a:db:0b:f7:84:91:f7:77:56:5f:fd:33:79:90:d1:01:
8e:2a:1b:16:30:29:4e:1e:b7:a2:51:e5:72:e5:0e:a5:83:67:
d2:46:11:ff
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZdJu91T6Ic3K3pTx5NN2q5TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjUwNjA3MDkzMjE4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDI0ODU5MTZiYWYwN2M1ZjdmMTU2MmNlNTIzZWJlM2YzYTY4OTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiW8l3bI4NkXQ9igPoLkPwaStauEH
X+H8QOeJ2MOmiE8QLUtvwumT0bTAfoxqhtsPDEKHN1/IPmbKnHBWOjba5yhGWqR7
G+dbFJINAm9GR5Wag58s7Zcp8GZS7YgJwnWwwUVJ2oLpu7ozTHlAp+u35nT455bM
+ktPhwo0NQrzUGhVXLLHZM3T7poKY6+UsDiQAg0zxvsRFXcuIJLiPkBCci3qe8Vy
AW57bmV9DOtDiSRhmQ59PAXe4uWWABgIOHjeMvt1vMiZIzOGf9IHYCHWSBDzQEfD
arny9WLZQGC8shXeQAx42CswqD89k5ODzxEbrPgoNKRUTuxxnyX7QnFCzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO0khZFrrwfF9/FWLOUj6+Pzpok5MB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvN1NTRmtXdXZCOFgzOFZZczVTUHI0X09taVRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVYXPMA0G
CSqGSIb3DQEBCwUAA4IBAQBM920lBzBtO/jC5xITsUcpvMMW8OzweOiZ7GtL7IQ6
fKh3CFBzJC/Q6O1j7uxAMlFalpr/8VvfpIQXWzjcVGxw1hjZx25AFRj5qsR78ELl
herw8p5/yQEKR1V0rpYqFCO0jextugh5Yd9fzD4P0OxgTbbrDX1c7V57wRvpBjq6
qCKLbTIwyrJt5nVy9vuv5dewVVHdg+UfCU8A1e60ksUBo5V34sj5biU4Z6f9pts5
uVS03RFSVq0HYxbM9GIgpc/w0OyT1Il0oehVNUuWkmoP5XDgB7vue2MXDGrbC/eE
kfd3Vl/9M3mQ0QGOKhsWMClOHreiUeVy5Q6lg2fSRhH/
-----END CERTIFICATE-----
Generated at Sat Jun 7 21:10:25 2025 by rpki-client