Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0d6768-02e9-43dc-82d8-b2f6bc3e0b35/1/bbIl7mmSnDD8_UWbRiWhj40GnYM.roa
File: bbIl7mmSnDD8_UWbRiWhj40GnYM.roa (raw, json)
Hash identifier: kBOdLGammsWV8hgd5cEWhIXphw0uZmZ2nF5pI8dzvcg=
Subject key identifier: 6D:B2:25:EE:69:92:9C:30:FC:FD:45:9B:46:25:A1:8F:8D:06:9D:83
Certificate issuer: /CN=f724109f217702e6980db9053a8f4710fc0a0a7a
Certificate serial: 0196431DD4685103D035FB02DE5C8CCFB2A3
Authority key identifier: F7:24:10:9F:21:77:02:E6:98:0D:B9:05:3A:8F:47:10:FC:0A:0A:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9yQQnyF3AuaYDbkFOo9HEPwKCno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0d6768-02e9-43dc-82d8-b2f6bc3e0b35/1/bbIl7mmSnDD8_UWbRiWhj40GnYM.roa
Signing time: Thu 17 Apr 2025 09:39:10 +0000
ROA not before: Thu 17 Apr 2025 09:39:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200355
IP address blocks: 185.250.12.0/24 maxlen: 24
185.250.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Apr 2025 06:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:1d:d4:68:51:03:d0:35:fb:02:de:5c:8c:cf:b2:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f724109f217702e6980db9053a8f4710fc0a0a7a
Validity
Not Before: Apr 17 09:39:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6db225ee69929c30fcfd459b4625a18f8d069d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:94:3d:f8:e9:2f:d4:c2:2a:2f:05:17:8a:dc:
82:4c:65:83:0c:32:4b:f2:5b:19:74:fa:55:f6:ab:
f4:59:b8:8e:87:18:5f:45:81:de:18:be:0d:9a:bb:
72:b1:9a:0b:b7:01:83:ab:e6:4d:04:7b:48:52:40:
6f:0d:1b:42:d3:a2:70:00:86:87:8a:0a:f8:0d:75:
af:62:94:ad:47:f3:2e:a4:d9:43:51:84:ea:4c:e1:
d1:bf:4b:1b:ed:1c:6a:5f:e6:c2:e0:a8:2e:62:84:
5d:40:a1:78:62:8a:e4:3d:14:dc:4c:06:c6:ef:83:
46:e1:ac:48:51:88:0f:0b:7b:8a:bc:99:c5:7d:00:
76:d0:73:ab:d1:e1:9c:20:2b:c9:51:46:92:2e:4a:
eb:53:0f:96:c3:98:84:79:1c:4e:90:d1:7b:2d:71:
13:16:6c:23:96:06:78:04:fa:71:b4:04:a5:36:d1:
62:0d:45:3f:2c:31:24:41:51:15:c6:c0:6c:62:50:
83:47:d9:74:5c:dc:d8:e3:61:c2:14:be:3d:74:45:
b7:01:57:c4:5a:88:c9:5b:0a:ca:f9:8e:95:35:39:
fe:10:e9:7b:60:cc:84:10:06:1c:0c:bc:fd:33:70:
d9:e3:5c:a3:bd:5a:8e:8c:ab:8e:a7:eb:91:a1:61:
5f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B2:25:EE:69:92:9C:30:FC:FD:45:9B:46:25:A1:8F:8D:06:9D:83
X509v3 Authority Key Identifier:
keyid:F7:24:10:9F:21:77:02:E6:98:0D:B9:05:3A:8F:47:10:FC:0A:0A:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9yQQnyF3AuaYDbkFOo9HEPwKCno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0d6768-02e9-43dc-82d8-b2f6bc3e0b35/1/bbIl7mmSnDD8_UWbRiWhj40GnYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0d6768-02e9-43dc-82d8-b2f6bc3e0b35/1/9yQQnyF3AuaYDbkFOo9HEPwKCno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.12.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:06:b2:ff:ec:81:f5:77:be:12:05:69:ad:4b:3f:c3:11:66:
fe:4b:8e:9a:b6:7e:2c:e8:71:a9:c4:8a:f6:72:ff:17:ad:b7:
67:3a:81:4f:9a:a9:30:85:ad:7b:57:fc:a3:54:a4:9a:cd:ec:
f7:16:d6:a7:37:a7:8d:fb:07:18:92:2f:57:48:a0:98:7b:99:
7a:8a:c1:87:48:ed:78:8e:5d:3b:69:bb:94:6a:7a:ca:91:7e:
7e:f7:e8:28:d1:a6:fb:1f:67:fb:c5:d2:c0:6f:11:c5:37:bf:
fc:7e:c3:b2:e1:4f:18:12:4c:54:5c:53:b1:bf:7b:33:1d:3d:
c3:90:00:2d:bf:0c:fc:27:c2:80:a8:1d:32:f5:66:68:3e:45:
d9:fb:81:ac:1a:fa:41:eb:ba:e7:7a:18:10:70:02:4d:03:18:
b8:25:52:0d:a9:e5:44:f4:a0:72:f6:a9:d6:99:0f:a8:3a:f6:
1e:c4:be:5c:52:8c:1c:c4:cd:48:ca:8f:be:07:74:88:82:98:
d9:c7:52:62:37:09:f7:a0:b5:07:13:c6:b3:40:a9:6c:1f:ff:
54:8a:81:7f:43:06:0c:72:ed:ec:4f:45:e0:19:49:02:e5:ca:
20:f8:88:4f:91:b2:e0:36:91:6a:32:8b:ae:c0:fa:ea:f8:35:
67:a2:63:a7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZZDHdRoUQPQNfsC3lyMz7KjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3MjQxMDlmMjE3NzAyZTY5ODBkYjkwNTNhOGY0NzEwZmMw
YTBhN2EwHhcNMjUwNDE3MDkzOTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZGIyMjVlZTY5OTI5YzMwZmNmZDQ1OWI0NjI1YTE4ZjhkMDY5ZDgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5JQ9+Okv1MIqLwUXityCTGWDDDJL
8lsZdPpV9qv0WbiOhxhfRYHeGL4NmrtysZoLtwGDq+ZNBHtIUkBvDRtC06JwAIaH
igr4DXWvYpStR/MupNlDUYTqTOHRv0sb7RxqX+bC4KguYoRdQKF4YorkPRTcTAbG
74NG4axIUYgPC3uKvJnFfQB20HOr0eGcICvJUUaSLkrrUw+Ww5iEeRxOkNF7LXET
FmwjlgZ4BPpxtASlNtFiDUU/LDEkQVEVxsBsYlCDR9l0XNzY42HCFL49dEW3AVfE
WojJWwrK+Y6VNTn+EOl7YMyEEAYcDLz9M3DZ41yjvVqOjKuOp+uRoWFfmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG2yJe5pkpww/P1Fm0YloY+NBp2DMB8GA1UdIwQY
MBaAFPckEJ8hdwLmmA25BTqPRxD8Cgp6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOXlRUW55RjNBdWFZRGJrRk9vOUhFUHdLQ25vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8wZDY3NjgtMDJlOS00M2RjLTgyZDgt
YjJmNmJjM2UwYjM1LzEvYmJJbDdtbVNuREQ4X1VXYlJpV2hqNDBHbllNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8wZDY3NjgtMDJlOS00M2RjLTgyZDgtYjJmNmJjM2UwYjM1
LzEvOXlRUW55RjNBdWFZRGJrRk9vOUhFUHdLQ25vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBufoMMA0G
CSqGSIb3DQEBCwUAA4IBAQBsBrL/7IH1d74SBWmtSz/DEWb+S46atn4s6HGpxIr2
cv8XrbdnOoFPmqkwha17V/yjVKSazez3FtanN6eN+wcYki9XSKCYe5l6isGHSO14
jl07abuUanrKkX5+9+go0ab7H2f7xdLAbxHFN7/8fsOy4U8YEkxUXFOxv3szHT3D
kAAtvwz8J8KAqB0y9WZoPkXZ+4GsGvpB67rnehgQcAJNAxi4JVINqeVE9KBy9qnW
mQ+oOvYexL5cUowcxM1Iyo++B3SIgpjZx1JiNwn3oLUHE8azQKlsH/9UioF/QwYM
cu3sT0XgGUkC5cog+IhPkbLgNpFqMouuwPrq+DVnomOn
-----END CERTIFICATE-----
Generated at Wed Apr 30 07:16:54 2025 by rpki-client