Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_TNaAC6-6LxghetPID4kNllnNvo.roa
File: _TNaAC6-6LxghetPID4kNllnNvo.roa (raw, json)
Hash identifier: 2I9BbLBG+1IPtb/WX6027Bay19o5nPy8BNRrkTQqgyc=
Subject key identifier: FD:33:5A:00:2E:BE:E8:BC:60:85:EB:4F:20:3E:24:36:59:67:36:FA
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019617814E4D3CF60549734C0B9AB9549608
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_TNaAC6-6LxghetPID4kNllnNvo.roa
Signing time: Tue 08 Apr 2025 22:24:32 +0000
ROA not before: Tue 08 Apr 2025 22:24:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395839
IP address blocks: 178.18.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Apr 2025 19:58:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:17:81:4e:4d:3c:f6:05:49:73:4c:0b:9a:b9:54:96:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Apr 8 22:24:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fd335a002ebee8bc6085eb4f203e2436596736fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c4:9f:e4:2c:9b:83:19:25:c7:3c:ab:af:eb:
d5:14:38:f8:06:6b:de:b2:cf:9c:8f:37:3f:02:7d:
59:78:ba:9f:c1:56:29:e7:97:e7:99:2b:a2:dc:bc:
01:43:dc:6f:88:9d:7e:fa:38:2b:93:a6:fb:33:49:
e9:cb:b4:51:d5:2e:e1:33:e6:ff:0f:d8:61:27:15:
d7:bf:66:de:26:d2:d9:7f:9b:36:a0:36:24:e3:7a:
1b:5e:b2:19:47:f5:09:ba:1c:6e:89:c4:5e:8a:1b:
29:f1:22:ae:52:9e:6f:f4:23:f4:43:bc:2a:30:ce:
dd:e8:45:9d:7d:84:7e:1f:d7:2f:53:2a:9c:aa:2b:
d9:61:da:0b:50:2b:9e:cd:60:87:2e:64:1e:cd:a2:
11:c3:fe:f3:ec:95:f2:13:56:d6:a8:6d:fd:35:cc:
01:9a:ca:7a:1b:c4:a6:31:3a:4d:a7:22:71:8b:5c:
a5:09:dc:b5:4f:42:2d:b2:bd:2f:f0:2a:50:cf:7b:
24:6d:48:4c:40:41:98:00:1d:6c:68:cd:93:6f:38:
3a:94:a8:72:1e:ce:14:14:5f:42:ce:02:17:60:e9:
9e:e0:80:3c:a2:7b:9a:af:39:69:a7:5e:8b:25:37:
0c:2a:39:7f:6b:6e:7e:de:03:46:51:99:bb:de:51:
82:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:33:5A:00:2E:BE:E8:BC:60:85:EB:4F:20:3E:24:36:59:67:36:FA
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/_TNaAC6-6LxghetPID4kNllnNvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.149.0/24
Signature Algorithm: sha256WithRSAEncryption
10:86:f4:4d:50:50:96:3d:55:d5:dd:83:dc:b2:e7:89:71:47:
f0:45:65:9c:da:27:82:08:a5:f8:d2:a4:7d:17:04:88:35:91:
72:38:e5:fa:83:81:53:56:22:ae:4f:3a:8e:ee:00:35:0e:e2:
6e:85:eb:2a:c9:3d:04:d9:c1:35:d6:60:2a:bc:c0:4d:e3:57:
26:16:d0:4b:35:7d:67:67:a4:03:6c:cf:44:6f:54:08:8f:78:
b8:db:4d:70:51:f7:ef:43:41:56:c7:d2:2d:71:e7:92:5b:2d:
ad:ab:0d:57:ce:b4:4e:9a:5f:e0:20:50:87:30:4a:b6:39:32:
2f:f2:1b:d3:ad:09:3e:83:d8:31:48:98:d6:2a:e1:96:d1:4c:
73:9f:bd:b2:7e:44:a1:e3:8d:2a:ee:b3:97:64:bb:36:5e:2a:
0b:da:7f:22:88:bf:4f:b8:83:56:a9:9b:e5:fc:45:0c:aa:a9:
96:5f:16:e8:ab:3d:f5:9a:94:79:44:09:7f:82:30:fd:18:b2:
9b:85:b3:13:cb:f0:d0:2d:7e:d3:97:41:12:95:23:2d:f3:2c:
83:41:9c:4e:bf:f1:65:57:97:72:c4:91:2d:89:6e:a1:6a:18:
da:3f:c3:cd:a0:5b:2b:37:13:77:03:89:8f:bf:9e:ad:86:bb:
27:e9:98:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZYXgU5NPPYFSXNMC5q5VJYIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwNDA4MjIyNDMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDMzNWEwMDJlYmVlOGJjNjA4NWViNGYyMDNlMjQzNjU5NjczNmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8Sf5Cybgxklxzyrr+vVFDj4Bmve
ss+cjzc/An1ZeLqfwVYp55fnmSui3LwBQ9xviJ1++jgrk6b7M0npy7RR1S7hM+b/
D9hhJxXXv2beJtLZf5s2oDYk43obXrIZR/UJuhxuicReihsp8SKuUp5v9CP0Q7wq
MM7d6EWdfYR+H9cvUyqcqivZYdoLUCuezWCHLmQezaIRw/7z7JXyE1bWqG39NcwB
msp6G8SmMTpNpyJxi1ylCdy1T0Itsr0v8CpQz3skbUhMQEGYAB1saM2Tbzg6lKhy
Hs4UFF9CzgIXYOme4IA8onuarzlpp16LJTcMKjl/a25+3gNGUZm73lGCKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP0zWgAuvui8YIXrTyA+JDZZZzb6MB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvX1ROYUFDNi02THhnaGV0UElENGtObGxuTnZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAshKVMA0G
CSqGSIb3DQEBCwUAA4IBAQAQhvRNUFCWPVXV3YPcsueJcUfwRWWc2ieCCKX40qR9
FwSINZFyOOX6g4FTViKuTzqO7gA1DuJuhesqyT0E2cE11mAqvMBN41cmFtBLNX1n
Z6QDbM9Eb1QIj3i4201wUffvQ0FWx9ItceeSWy2tqw1XzrROml/gIFCHMEq2OTIv
8hvTrQk+g9gxSJjWKuGW0Uxzn72yfkSh440q7rOXZLs2XioL2n8iiL9PuINWqZvl
/EUMqqmWXxboqz31mpR5RAl/gjD9GLKbhbMTy/DQLX7Tl0ESlSMt8yyDQZxOv/Fl
V5dyxJEtiW6hahjaP8PNoFsrNxN3A4mPv56thrsn6Zgs
-----END CERTIFICATE-----
Generated at Mon Jun 16 05:40:07 2025 by rpki-client