Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/ddd9f1-0f2e-4d5f-857d-02bab9f6f955/1/FyiHou4OZGmr6yvAIZogGMPvjTE.roa
File: FyiHou4OZGmr6yvAIZogGMPvjTE.roa (raw, json)
Hash identifier: fT8OT7+Pxl8octboZz6c2kZ7vmf8Vme1PrmvHpS5Hkk=
Subject key identifier: 17:28:87:A2:EE:0E:64:69:AB:EB:2B:C0:21:9A:20:18:C3:EF:8D:31
Certificate issuer: /CN=03e53d18f5f212ae0802a17ee5994c3331a43524
Certificate serial: 018CC500DDBEC51F028E6865E418C64F99F7
Authority key identifier: 03:E5:3D:18:F5:F2:12:AE:08:02:A1:7E:E5:99:4C:33:31:A4:35:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-U9GPXyEq4IAqF-5ZlMMzGkNSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/ddd9f1-0f2e-4d5f-857d-02bab9f6f955/1/FyiHou4OZGmr6yvAIZogGMPvjTE.roa
Signing time: Mon 01 Jan 2024 12:30:17 +0000
ROA not before: Mon 01 Jan 2024 12:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50563
IP address blocks: 5.83.95.0/24 maxlen: 24
212.85.240.0/24 maxlen: 24
212.85.240.0/23 maxlen: 23
212.85.244.0/23 maxlen: 23
212.85.244.0/24 maxlen: 24
212.85.245.0/24 maxlen: 24
185.67.106.0/24 maxlen: 24
185.67.107.0/24 maxlen: 24
212.85.241.0/24 maxlen: 24
212.85.242.0/23 maxlen: 23
185.3.116.0/23 maxlen: 23
185.3.116.0/22 maxlen: 22
185.3.116.0/24 maxlen: 24
185.3.117.0/24 maxlen: 24
185.3.118.0/24 maxlen: 24
185.3.118.0/23 maxlen: 23
185.3.119.0/24 maxlen: 24
5.83.54.0/24 maxlen: 24
5.83.64.0/21 maxlen: 21
5.83.64.0/23 maxlen: 23
5.83.64.0/22 maxlen: 22
5.83.64.0/24 maxlen: 24
5.83.68.0/22 maxlen: 22
5.83.68.0/23 maxlen: 23
5.83.65.0/24 maxlen: 24
5.83.66.0/23 maxlen: 23
5.83.70.0/23 maxlen: 23
5.83.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:49:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:dd:be:c5:1f:02:8e:68:65:e4:18:c6:4f:99:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03e53d18f5f212ae0802a17ee5994c3331a43524
Validity
Not Before: Jan 1 12:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=172887a2ee0e6469abeb2bc0219a2018c3ef8d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e5:93:e0:d6:5b:cf:cc:c4:d0:c5:ca:99:d8:
14:37:b5:68:d9:f1:f5:4a:a0:84:78:49:07:4a:03:
2d:94:b6:9b:62:5d:4c:c2:ea:d1:92:da:1a:11:77:
cf:ba:19:54:34:db:25:54:3d:72:8f:86:f4:ad:a3:
38:33:29:e1:45:95:48:cc:2d:0d:94:d7:be:b5:3d:
be:ee:3a:84:74:c5:ba:2e:88:35:93:bf:e4:65:04:
a1:2d:4f:6e:28:87:6e:68:4e:87:23:89:e0:bc:e4:
8a:e9:6d:b6:d0:d8:46:73:c8:9f:5d:95:6c:77:08:
70:e1:56:7a:7d:36:df:cc:b1:e5:24:d9:e2:d4:d3:
16:6c:16:20:26:8b:f7:de:fd:1f:2e:0f:a5:c0:df:
3c:d4:bc:59:c1:96:10:d3:e1:06:53:5a:1a:c6:29:
ba:a3:46:f5:13:97:31:de:16:c5:46:09:02:3b:df:
50:99:6c:5f:b8:dd:5b:7e:67:97:90:6a:2b:23:02:
b0:51:b2:72:0b:8b:90:16:a1:b9:7e:6e:6d:39:fc:
a5:e7:dd:e5:92:24:9b:2f:89:a8:87:c9:dd:54:fa:
1d:24:16:33:a6:9f:17:9a:96:f4:0c:69:ab:20:31:
d0:72:09:de:7a:0d:0b:53:09:ea:ea:7f:fd:58:34:
ed:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:28:87:A2:EE:0E:64:69:AB:EB:2B:C0:21:9A:20:18:C3:EF:8D:31
X509v3 Authority Key Identifier:
keyid:03:E5:3D:18:F5:F2:12:AE:08:02:A1:7E:E5:99:4C:33:31:A4:35:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-U9GPXyEq4IAqF-5ZlMMzGkNSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ddd9f1-0f2e-4d5f-857d-02bab9f6f955/1/FyiHou4OZGmr6yvAIZogGMPvjTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ddd9f1-0f2e-4d5f-857d-02bab9f6f955/1/A-U9GPXyEq4IAqF-5ZlMMzGkNSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.54.0/24
5.83.64.0/21
5.83.88.0/24
5.83.95.0/24
185.3.116.0/22
185.67.106.0/23
212.85.240.0-212.85.245.255
Signature Algorithm: sha256WithRSAEncryption
5b:b0:84:65:2f:d4:88:80:b7:7d:f0:c4:da:38:0e:a8:fe:e0:
fe:36:44:f7:26:72:b4:bd:83:0f:3b:c2:07:e3:ac:06:77:73:
3f:48:3e:56:6a:12:a7:ff:46:55:8d:44:23:5b:80:e5:ca:be:
ab:09:22:74:44:28:1b:b5:ad:3b:5b:cd:80:02:b1:2b:74:61:
b2:ec:7d:5e:b2:71:40:d1:08:6d:b2:d6:60:2b:cd:1d:66:44:
62:fc:e3:7b:3d:d2:45:7f:bf:25:c8:49:4d:10:fc:fe:5b:5a:
9b:9b:88:04:5a:a1:73:54:7c:3c:87:f1:c0:35:12:0e:1b:38:
28:43:ca:15:7d:11:71:bc:0a:4b:f6:2a:0c:d2:68:5e:28:74:
95:01:80:a1:fc:a6:47:e6:e6:3b:76:4c:a7:c5:ab:ec:87:71:
06:aa:62:09:43:82:a9:ba:63:1b:9f:b6:d3:54:15:47:fe:e2:
69:3f:7d:88:6c:0f:bf:71:60:90:99:74:3e:ca:c6:4a:36:04:
8d:ec:b8:6b:78:67:d0:5c:67:06:9f:db:9d:6c:45:01:9a:3e:
54:c6:90:4a:e6:ca:9e:2f:c5:84:1f:0b:a5:cb:b1:11:4f:05:
9c:22:97:ab:14:f9:39:8d:56:f1:ec:52:41:e2:06:bf:b9:64:
42:e5:9f:d7
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgISAYzFAN2+xR8Cjmhl5BjGT5n3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZTUzZDE4ZjVmMjEyYWUwODAyYTE3ZWU1OTk0YzMzMzFh
NDM1MjQwHhcNMjQwMTAxMTIzMDE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzI4ODdhMmVlMGU2NDY5YWJlYjJiYzAyMTlhMjAxOGMzZWY4ZDMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+WT4NZbz8zE0MXKmdgUN7Vo2fH1
SqCEeEkHSgMtlLabYl1MwurRktoaEXfPuhlUNNslVD1yj4b0raM4MynhRZVIzC0N
lNe+tT2+7jqEdMW6Log1k7/kZQShLU9uKIduaE6HI4ngvOSK6W220NhGc8ifXZVs
dwhw4VZ6fTbfzLHlJNni1NMWbBYgJov33v0fLg+lwN881LxZwZYQ0+EGU1oaxim6
o0b1E5cx3hbFRgkCO99QmWxfuN1bfmeXkGorIwKwUbJyC4uQFqG5fm5tOfyl593l
kiSbL4moh8ndVPodJBYzpp8Xmpb0DGmrIDHQcgneeg0LUwnq6n/9WDTtwwIDAQAB
o4ICNTCCAjEwHQYDVR0OBBYEFBcoh6LuDmRpq+srwCGaIBjD740xMB8GA1UdIwQY
MBaAFAPlPRj18hKuCAKhfuWZTDMxpDUkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQS1VOUdQWHlFcTRJQXFGLTVabE1NekdrTlNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi9kZGQ5ZjEtMGYyZS00ZDVmLTg1N2Qt
MDJiYWI5ZjZmOTU1LzEvRnlpSG91NE9aR21yNnl2QUlab2dHTVB2alRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi9kZGQ5ZjEtMGYyZS00ZDVmLTg1N2QtMDJiYWI5ZjZmOTU1
LzEvQS1VOUdQWHlFcTRJQXFGLTVabE1NekdrTlNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQABVM2AwQD
BVNAAwQABVNYAwQABVNfAwQCuQN0AwQBuUNqMAwDBATUVfADBAHUVfQwDQYJKoZI
hvcNAQELBQADggEBAFuwhGUv1IiAt33wxNo4Dqj+4P42RPcmcrS9gw87wgfjrAZ3
cz9IPlZqEqf/RlWNRCNbgOXKvqsJInREKBu1rTtbzYACsSt0YbLsfV6ycUDRCG2y
1mArzR1mRGL843s90kV/vyXISU0Q/P5bWpubiARaoXNUfDyH8cA1Eg4bOChDyhV9
EXG8Ckv2KgzSaF4odJUBgKH8pkfm5jt2TKfFq+yHcQaqYglDgqm6YxufttNUFUf+
4mk/fYhsD79xYJCZdD7Kxko2BI3suGt4Z9BcZwaf251sRQGaPlTGkErmyp4vxYQf
C6XLsRFPBZwil6sU+TmNVvHsUkHiBr+5ZELln9c=
-----END CERTIFICATE-----
Generated at Sun Apr 27 21:21:08 2025 by rpki-client