Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Et5uz6yWDvGowuNSq7lMWxiBUc0.roa
File: Et5uz6yWDvGowuNSq7lMWxiBUc0.roa (raw, json)
Hash identifier: ZkriLuVlP261MfrZAAApB4V4+oPhjGlO0ugHG2enKvM=
Subject key identifier: 12:DE:6E:CF:AC:96:0E:F1:A8:C2:E3:52:AB:B9:4C:5B:18:81:51:CD
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0193F20A967C5F489E673A26B41E7D2B4A52
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Et5uz6yWDvGowuNSq7lMWxiBUc0.roa
Signing time: Mon 23 Dec 2024 05:43:20 +0000
ROA not before: Mon 23 Dec 2024 05:43:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5573
IP address blocks: 195.112.224.0/19 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f2:0a:96:7c:5f:48:9e:67:3a:26:b4:1e:7d:2b:4a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Dec 23 05:43:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12de6ecfac960ef1a8c2e352abb94c5b188151cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b2:11:03:97:4f:7e:83:e2:36:2e:58:b8:25:
77:7a:1c:42:49:c8:04:c3:82:38:a2:90:97:50:16:
72:ed:c9:c8:67:9f:bb:fc:bb:59:c1:52:26:ef:f9:
b9:ad:aa:9d:9c:fc:44:d3:18:3b:51:8c:f4:71:7a:
ca:ce:bb:d0:89:23:86:37:95:b5:ad:15:b3:1a:a7:
10:8f:8b:be:50:0a:9e:d3:8d:a7:79:8c:b1:ff:74:
c8:ac:3c:08:2c:02:ad:0f:96:d5:36:49:be:6f:bc:
d1:bf:24:61:fc:05:cf:e0:2b:75:6c:7b:8f:4d:fd:
90:0c:d2:33:6a:53:e6:74:9f:bc:b1:de:c9:1c:63:
51:fa:22:37:5f:9a:18:67:63:ff:2a:3f:67:d6:3e:
a2:db:07:bf:ca:f0:03:7b:d9:59:3b:71:e7:6b:cf:
fe:16:09:0c:06:e9:9d:22:0a:53:71:39:56:a1:26:
5f:31:b3:c6:90:61:fb:48:98:29:ad:50:01:4b:ca:
a8:05:55:03:a1:4f:7a:5e:8d:8f:b3:ae:d9:a8:e1:
56:cb:58:31:0f:12:19:c7:20:bb:21:74:68:82:20:
0c:26:90:7a:9c:d7:54:07:bb:5a:26:1a:17:fc:2d:
fe:a5:93:25:fe:ec:85:38:c5:7a:a5:69:31:11:2c:
13:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:DE:6E:CF:AC:96:0E:F1:A8:C2:E3:52:AB:B9:4C:5B:18:81:51:CD
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/Et5uz6yWDvGowuNSq7lMWxiBUc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.112.224.0/19
Signature Algorithm: sha256WithRSAEncryption
19:88:e0:7a:34:21:f5:b1:65:14:58:04:15:0a:6a:d0:db:c5:
46:81:b3:6b:77:ef:d6:cc:65:84:fd:40:4f:2c:57:55:4c:66:
69:b6:16:6e:53:4f:ca:44:7d:05:7c:eb:65:b4:ce:0c:83:e5:
eb:e4:43:f6:84:af:5c:e1:90:a1:b9:1e:f3:d1:76:ef:17:42:
aa:bd:68:f6:82:0b:f3:f2:51:9b:50:a1:05:8a:ce:fb:41:24:
ea:cf:ab:12:5e:0b:43:fc:7a:7b:60:74:19:2c:bd:10:45:2a:
13:2a:91:3b:99:60:9c:1f:af:eb:3f:c4:fd:68:d6:34:34:8e:
dc:89:7b:29:85:3a:46:07:96:26:31:e7:cd:5d:41:61:e4:c4:
b4:c4:ac:11:7d:c8:a1:83:73:14:92:dd:89:17:f7:8d:8c:d6:
22:c1:67:8e:5f:b9:6f:71:ee:47:65:ad:4b:36:b4:74:7e:e2:
44:2e:62:ae:51:b3:72:36:11:34:2f:15:94:f4:99:97:5e:ff:
c1:2a:e8:a3:82:48:e3:b6:c2:db:2c:2a:95:ca:3d:cb:dc:d0:
f5:b5:93:d6:28:d1:84:46:b5:71:9c:2e:be:3b:77:a2:36:46:
79:02:1d:42:b1:b6:b4:8a:f2:ff:8a:40:4e:46:2c:4b:ad:88:
7d:58:a4:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZPyCpZ8X0ieZzomtB59K0pSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjQxMjIzMDU0MzIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMmRlNmVjZmFjOTYwZWYxYThjMmUzNTJhYmI5NGM1YjE4ODE1MWNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rIRA5dPfoPiNi5YuCV3ehxCScgE
w4I4opCXUBZy7cnIZ5+7/LtZwVIm7/m5raqdnPxE0xg7UYz0cXrKzrvQiSOGN5W1
rRWzGqcQj4u+UAqe042neYyx/3TIrDwILAKtD5bVNkm+b7zRvyRh/AXP4Ct1bHuP
Tf2QDNIzalPmdJ+8sd7JHGNR+iI3X5oYZ2P/Kj9n1j6i2we/yvADe9lZO3Hna8/+
FgkMBumdIgpTcTlWoSZfMbPGkGH7SJgprVABS8qoBVUDoU96Xo2Ps67ZqOFWy1gx
DxIZxyC7IXRogiAMJpB6nNdUB7taJhoX/C3+pZMl/uyFOMV6pWkxESwT4wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBLebs+slg7xqMLjUqu5TFsYgVHNMB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvRXQ1dXo2eVdEdkdvd3VOU3E3bE1XeGlCVWMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFw3DgMA0G
CSqGSIb3DQEBCwUAA4IBAQAZiOB6NCH1sWUUWAQVCmrQ28VGgbNrd+/WzGWE/UBP
LFdVTGZpthZuU0/KRH0FfOtltM4Mg+Xr5EP2hK9c4ZChuR7z0XbvF0KqvWj2ggvz
8lGbUKEFis77QSTqz6sSXgtD/Hp7YHQZLL0QRSoTKpE7mWCcH6/rP8T9aNY0NI7c
iXsphTpGB5YmMefNXUFh5MS0xKwRfcihg3MUkt2JF/eNjNYiwWeOX7lvce5HZa1L
NrR0fuJELmKuUbNyNhE0LxWU9JmXXv/BKuijgkjjtsLbLCqVyj3L3ND1tZPWKNGE
RrVxnC6+O3eiNkZ5Ah1Csba0ivL/ikBORixLrYh9WKSR
-----END CERTIFICATE-----
Generated at Thu Apr 17 10:03:20 2025 by rpki-client