Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/cc0692-cc99-4545-bc50-eaf3ddb0a1bb/1/NzTMUZXgq7TczRQW7jjnYM7d4VA.roa
File: NzTMUZXgq7TczRQW7jjnYM7d4VA.roa (raw, json)
Hash identifier: dnRjR4KvPQyjYScZaq/PUk4FTKwan5vtFeGYa0szffM=
Subject key identifier: 37:34:CC:51:95:E0:AB:B4:DC:CD:14:16:EE:38:E7:60:CE:DD:E1:50
Certificate issuer: /CN=fb5e2eeae82eef9b657fe2795267261020f944c9
Certificate serial: 019605C578E960AD2E453BBF06B539C5FACB
Authority key identifier: FB:5E:2E:EA:E8:2E:EF:9B:65:7F:E2:79:52:67:26:10:20:F9:44:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-14u6ugu75tlf-J5UmcmECD5RMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/cc0692-cc99-4545-bc50-eaf3ddb0a1bb/1/NzTMUZXgq7TczRQW7jjnYM7d4VA.roa
Signing time: Sat 05 Apr 2025 11:45:49 +0000
ROA not before: Sat 05 Apr 2025 11:45:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212582
IP address blocks: 31.14.183.0/24 maxlen: 24
2a14:9680::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 05 Apr 2025 13:41:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:05:c5:78:e9:60:ad:2e:45:3b:bf:06:b5:39:c5:fa:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb5e2eeae82eef9b657fe2795267261020f944c9
Validity
Not Before: Apr 5 11:45:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3734cc5195e0abb4dccd1416ee38e760cedde150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:64:b6:e7:50:78:ef:c4:05:f8:45:a9:f7:42:
09:63:d1:73:aa:1a:18:73:96:a1:dc:f9:9b:69:4c:
39:f8:fa:9d:c9:6d:37:7e:09:a5:11:13:8b:28:e4:
b5:c0:9d:6f:aa:07:dd:0e:56:28:58:bd:1b:8b:e6:
99:ca:c9:6d:f0:62:75:53:cf:e1:a2:ff:03:c9:ce:
2d:db:60:30:c9:b9:6f:25:4f:8e:de:9e:6b:2d:6d:
54:a1:10:9f:93:32:9f:66:37:50:f1:b6:ce:fb:ad:
b6:ea:52:01:46:cc:88:52:01:97:5a:e3:b4:d0:70:
63:e9:1b:e3:bf:df:5b:cc:26:ed:94:55:99:50:e9:
d4:31:41:82:d2:3e:c0:04:3c:0c:72:80:ae:b1:f8:
2f:f8:fc:66:dd:1c:6a:40:3d:13:1c:e3:50:85:17:
bd:b0:de:f8:32:48:b1:ce:e1:07:40:69:c6:f0:52:
07:ac:1e:61:8e:65:f3:91:57:91:7a:e3:e2:6b:db:
d2:6b:cd:fd:3d:6b:66:34:69:10:ae:c2:59:f8:ac:
d2:25:0b:3a:fd:f8:f7:98:46:95:42:8c:57:97:ee:
b9:62:48:f6:a7:da:30:87:87:6c:af:fd:2f:47:ac:
f0:f3:7a:e4:bc:23:d6:62:1d:db:88:7c:be:28:3d:
ea:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:34:CC:51:95:E0:AB:B4:DC:CD:14:16:EE:38:E7:60:CE:DD:E1:50
X509v3 Authority Key Identifier:
keyid:FB:5E:2E:EA:E8:2E:EF:9B:65:7F:E2:79:52:67:26:10:20:F9:44:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-14u6ugu75tlf-J5UmcmECD5RMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/cc0692-cc99-4545-bc50-eaf3ddb0a1bb/1/NzTMUZXgq7TczRQW7jjnYM7d4VA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/cc0692-cc99-4545-bc50-eaf3ddb0a1bb/1/1-14u6ugu75tlf-J5UmcmECD5RMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.183.0/24
IPv6:
2a14:9680::/29
Signature Algorithm: sha256WithRSAEncryption
4f:c9:93:bb:b1:f0:8d:5d:4a:33:b7:e5:68:6e:0b:d4:10:bf:
69:c4:f0:58:52:ac:22:3e:28:c8:61:c1:de:e6:ad:f0:54:13:
0a:96:f6:30:52:c8:e9:3a:97:45:93:4a:8f:e5:b0:1f:a4:2a:
54:3f:9f:b5:92:81:80:3c:d4:b2:96:07:8c:13:1c:f6:90:9e:
57:72:f6:51:99:50:bf:27:95:ff:f0:1b:ef:80:6a:09:17:3e:
a4:ee:2a:8a:1f:ed:b1:23:06:5a:6e:b3:b3:48:ff:f1:e8:70:
07:7d:7c:32:26:04:61:ae:f4:f0:3b:56:33:b6:ff:c0:16:27:
fc:60:c7:40:4e:6e:2a:1e:b4:8d:21:28:32:63:93:70:1a:80:
dc:d3:2e:3f:27:0d:8c:3e:28:bf:37:15:fe:0a:4d:96:11:06:
2b:bd:0c:57:b3:99:8d:0a:c4:36:56:b9:f0:93:a1:e7:ae:42:
68:b2:0e:9d:b3:78:35:28:6a:38:f2:b8:4c:26:f9:15:a4:20:
35:f9:a5:a1:06:b1:d1:84:03:fb:4b:f0:7d:cd:e9:a5:90:b4:
13:b0:4f:9c:ae:8e:f2:87:75:14:34:da:75:57:3e:1c:a5:4a:
46:78:52:e7:08:3b:37:fe:3e:d0:18:e6:29:85:e4:0e:1e:78:
51:ec:4e:92
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZYFxXjpYK0uRTu/BrU5xfrLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiNWUyZWVhZTgyZWVmOWI2NTdmZTI3OTUyNjcyNjEwMjBm
OTQ0YzkwHhcNMjUwNDA1MTE0NTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNzM0Y2M1MTk1ZTBhYmI0ZGNjZDE0MTZlZTM4ZTc2MGNlZGRlMTUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGS251B478QF+EWp90IJY9FzqhoY
c5ah3PmbaUw5+PqdyW03fgmlEROLKOS1wJ1vqgfdDlYoWL0bi+aZyslt8GJ1U8/h
ov8Dyc4t22AwyblvJU+O3p5rLW1UoRCfkzKfZjdQ8bbO+6226lIBRsyIUgGXWuO0
0HBj6Rvjv99bzCbtlFWZUOnUMUGC0j7ABDwMcoCusfgv+Pxm3RxqQD0THONQhRe9
sN74MkixzuEHQGnG8FIHrB5hjmXzkVeReuPia9vSa839PWtmNGkQrsJZ+KzSJQs6
/fj3mEaVQoxXl+65Ykj2p9owh4dsr/0vR6zw83rkvCPWYh3biHy+KD3quQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDc0zFGV4Ku03M0UFu4452DO3eFQMB8GA1UdIwQY
MBaAFPteLuroLu+bZX/ieVJnJhAg+UTJMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS0xNHU2dWd1NzV0bGYtSjVVbWNtRUNENVJNay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEvY2MwNjkyLWNjOTktNDU0NS1iYzUw
LWVhZjNkZGIwYTFiYi8xL056VE1VWlhncTdUY3pSUVc3ampuWU03ZDRWQS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNTEvY2MwNjkyLWNjOTktNDU0NS1iYzUwLWVhZjNkZGIwYTFi
Yi8xLzEtMTR1NnVndTc1dGxmLUo1VW1jbUVDRDVSTWsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAAfDrcw
DQQCAAIwBwMFAyoUloAwDQYJKoZIhvcNAQELBQADggEBAE/Jk7ux8I1dSjO35Whu
C9QQv2nE8FhSrCI+KMhhwd7mrfBUEwqW9jBSyOk6l0WTSo/lsB+kKlQ/n7WSgYA8
1LKWB4wTHPaQnldy9lGZUL8nlf/wG++AagkXPqTuKoof7bEjBlpus7NI//HocAd9
fDImBGGu9PA7VjO2/8AWJ/xgx0BObioetI0hKDJjk3AagNzTLj8nDYw+KL83Ff4K
TZYRBiu9DFezmY0KxDZWufCToeeuQmiyDp2zeDUoajjyuEwm+RWkIDX5paEGsdGE
A/tL8H3N6aWQtBOwT5yujvKHdRQ02nVXPhylSkZ4UucIOzf+PtAY5imF5A4eeFHs
TpI=
-----END CERTIFICATE-----
Generated at Sun Jun 15 03:09:05 2025 by rpki-client