Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/L9aNHEJI1p9XaxqUHgiH5IlKvow.roa
File: L9aNHEJI1p9XaxqUHgiH5IlKvow.roa (raw, json)
Hash identifier: Yq5LKXQzSaldwe0keq/ZBZNLeolQd1rM2dl+tC4e0/E=
Subject key identifier: 2F:D6:8D:1C:42:48:D6:9F:57:6B:1A:94:1E:08:87:E4:89:4A:BE:8C
Certificate issuer: /CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Certificate serial: 0194E17D6B81AB81047EF79D77E254C19704
Authority key identifier: 4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/L9aNHEJI1p9XaxqUHgiH5IlKvow.roa
Signing time: Fri 07 Feb 2025 17:38:00 +0000
ROA not before: Fri 07 Feb 2025 17:38:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207709
IP address blocks: 185.174.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Feb 2025 06:26:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e1:7d:6b:81:ab:81:04:7e:f7:9d:77:e2:54:c1:97:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Validity
Not Before: Feb 7 17:38:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2fd68d1c4248d69f576b1a941e0887e4894abe8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e4:ed:53:ab:14:74:e7:94:9f:82:16:c5:63:
d1:44:e4:f1:e7:88:c8:40:5c:cf:92:f7:6c:65:4e:
1a:1f:07:f8:7f:b2:95:ac:b6:f6:ce:84:6b:1f:b0:
b3:b4:8b:e0:95:b7:cb:d7:04:87:fa:56:49:aa:26:
f5:9a:5f:57:fd:28:12:e9:85:b1:1c:71:41:fc:90:
bf:6e:a7:75:5f:39:13:2f:93:fc:54:19:3d:1f:9e:
7a:b8:8d:18:2b:5f:d2:44:48:d1:e0:dc:ee:9d:5c:
c1:02:ac:b6:e9:e5:1c:67:e4:d0:eb:71:54:56:d4:
5a:89:20:32:3e:fd:d0:21:38:05:d9:f6:84:23:24:
cd:9b:28:f3:cc:6b:99:86:6b:0c:56:69:e4:03:df:
f8:81:11:98:09:81:a7:00:ff:c2:a7:b4:0c:4b:ba:
63:25:4b:76:59:df:e3:67:0e:d2:65:2b:75:5f:46:
6c:d7:2e:cd:e1:c3:0c:b9:3a:7a:b3:b2:c9:36:d1:
0f:d1:02:31:83:f0:11:ef:e4:62:4c:10:02:1d:4a:
88:5a:e9:3e:40:1d:6e:ad:ca:48:f4:72:be:08:3f:
6e:40:2a:fa:43:9e:09:a4:df:66:32:0e:82:fd:e2:
9e:83:25:4e:3f:45:b8:48:cf:77:10:ff:64:a3:4f:
65:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D6:8D:1C:42:48:D6:9F:57:6B:1A:94:1E:08:87:E4:89:4A:BE:8C
X509v3 Authority Key Identifier:
keyid:4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/L9aNHEJI1p9XaxqUHgiH5IlKvow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/TahNJHzjfNzPBuFXHSJqK4Vne80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.69.0/24
Signature Algorithm: sha256WithRSAEncryption
45:b5:86:6b:c1:1c:0a:41:44:9b:ea:69:11:93:34:09:bb:1e:
06:51:07:f5:0c:a1:40:18:41:26:be:ad:61:4a:47:ef:7b:a3:
63:c7:b8:12:ac:dc:8f:aa:92:39:76:24:31:36:6d:99:66:cc:
62:fa:ed:4a:dc:30:3e:47:82:00:66:37:3c:8e:b4:05:80:70:
6a:cc:09:73:cb:79:6c:05:a7:a9:4b:05:d9:06:e7:09:d8:fe:
37:07:15:e0:3e:71:1d:31:1b:b1:31:83:73:12:ab:ab:f4:f7:
81:f5:74:bf:d5:a0:32:1f:3f:27:fc:b1:1c:aa:71:3d:34:27:
fb:d2:0e:5a:32:53:e0:38:68:21:2e:c0:ac:e2:0d:52:c3:a7:
48:ef:b2:1e:f9:5a:af:e8:ab:5e:2b:21:ef:3b:14:8e:da:a7:
f7:0f:b5:9f:51:b2:47:ef:c6:2d:99:98:3e:b0:ec:dc:46:32:
c1:a2:82:8b:8c:d4:e6:0c:a5:b0:c4:18:cb:cd:a8:29:17:74:
f6:0c:d5:ef:ee:41:ba:a5:2a:76:db:de:9b:0d:5c:56:27:3d:
72:ab:95:7a:55:6d:e0:cf:9e:3a:27:d0:54:1f:31:ff:58:b7:
78:ab:64:8f:c3:53:4d:e9:54:3b:ed:c4:54:69:fc:f2:7e:96:
2d:d0:10:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZThfWuBq4EEfvedd+JUwZcEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkYTg0ZDI0N2NlMzdjZGNjZjA2ZTE1NzFkMjI2YTJiODU2
NzdiY2QwHhcNMjUwMjA3MTczODAwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmQ2OGQxYzQyNDhkNjlmNTc2YjFhOTQxZTA4ODdlNDg5NGFiZThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuTtU6sUdOeUn4IWxWPRROTx54jI
QFzPkvdsZU4aHwf4f7KVrLb2zoRrH7CztIvglbfL1wSH+lZJqib1ml9X/SgS6YWx
HHFB/JC/bqd1XzkTL5P8VBk9H556uI0YK1/SREjR4NzunVzBAqy26eUcZ+TQ63FU
VtRaiSAyPv3QITgF2faEIyTNmyjzzGuZhmsMVmnkA9/4gRGYCYGnAP/Cp7QMS7pj
JUt2Wd/jZw7SZSt1X0Zs1y7N4cMMuTp6s7LJNtEP0QIxg/AR7+RiTBACHUqIWuk+
QB1urcpI9HK+CD9uQCr6Q54JpN9mMg6C/eKegyVOP0W4SM93EP9ko09lewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC/WjRxCSNafV2salB4Ih+SJSr6MMB8GA1UdIwQY
MBaAFE2oTSR843zczwbhVx0iaiuFZ3vNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGFoTkpIempmTnpQQnVGWEhTSnFLNFZuZTgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC8yMTBmYmItYWE2ZS00OWM5LTkxOGIt
NTU1OGE4YjUzZTNkLzEvTDlhTkhFSkkxcDlYYXhxVUhnaUg1SWxLdm93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC8yMTBmYmItYWE2ZS00OWM5LTkxOGItNTU1OGE4YjUzZTNk
LzEvVGFoTkpIempmTnpQQnVGWEhTSnFLNFZuZTgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAua5FMA0G
CSqGSIb3DQEBCwUAA4IBAQBFtYZrwRwKQUSb6mkRkzQJux4GUQf1DKFAGEEmvq1h
Skfve6Njx7gSrNyPqpI5diQxNm2ZZsxi+u1K3DA+R4IAZjc8jrQFgHBqzAlzy3ls
BaepSwXZBucJ2P43BxXgPnEdMRuxMYNzEqur9PeB9XS/1aAyHz8n/LEcqnE9NCf7
0g5aMlPgOGghLsCs4g1Sw6dI77Ie+Vqv6KteKyHvOxSO2qf3D7WfUbJH78YtmZg+
sOzcRjLBooKLjNTmDKWwxBjLzagpF3T2DNXv7kG6pSp2296bDVxWJz1yq5V6VW3g
z546J9BUHzH/WLd4q2SPw1NN6VQ77cRUafzyfpYt0BAr
-----END CERTIFICATE-----
Generated at Wed Apr 30 00:55:35 2025 by rpki-client