Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/56f526-53de-4c9d-b401-abf0b594646f/1/llvSUwwWO-ie4ESkQiwaZIQxopA.roa
File: llvSUwwWO-ie4ESkQiwaZIQxopA.roa (raw, json)
Hash identifier: CBW54YW3uSgySS3QzA0IIWEiq5cfYUODpsFX55C6DEM=
Subject key identifier: 96:5B:D2:53:0C:16:3B:E8:9E:E0:44:A4:42:2C:1A:64:84:31:A2:90
Certificate issuer: /CN=03364fcedd691357733cd5ccd7029db8e61d1e3a
Certificate serial: 01965529944B76095599917DD8BBAE42063B
Authority key identifier: 03:36:4F:CE:DD:69:13:57:73:3C:D5:CC:D7:02:9D:B8:E6:1D:1E:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AzZPzt1pE1dzPNXM1wKduOYdHjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/56f526-53de-4c9d-b401-abf0b594646f/1/llvSUwwWO-ie4ESkQiwaZIQxopA.roa
Signing time: Sun 20 Apr 2025 21:45:10 +0000
ROA not before: Sun 20 Apr 2025 21:45:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201150
IP address blocks: 185.84.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Apr 2025 12:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:29:94:4b:76:09:55:99:91:7d:d8:bb:ae:42:06:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03364fcedd691357733cd5ccd7029db8e61d1e3a
Validity
Not Before: Apr 20 21:45:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=965bd2530c163be89ee044a4422c1a648431a290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e1:82:d2:73:97:de:8b:e0:72:75:9f:94:5d:
97:f8:ae:94:bf:ad:f7:af:3a:25:71:1a:de:81:49:
97:ae:c1:c9:b8:1c:00:86:65:89:e3:4c:6b:27:30:
52:5f:69:9f:15:29:47:d6:bb:88:07:56:ed:d0:1d:
1c:c8:aa:b6:5f:0d:11:34:4f:52:e8:02:15:c8:3c:
a2:24:a1:9f:fd:e9:cd:e2:0b:01:fc:bf:4c:1d:17:
45:08:cc:d7:0e:64:31:0a:5c:a4:01:ec:0d:04:c0:
be:5b:d0:d2:c9:3a:c7:5a:bd:80:9d:e8:3f:67:e3:
b7:7f:c3:26:51:eb:4b:37:e0:ba:df:a3:33:b3:f9:
07:dc:d7:7c:c8:a9:ae:28:4e:2d:0d:74:40:07:c6:
f9:df:61:47:92:f0:12:54:07:0c:aa:9a:75:2b:ca:
2d:6c:d1:5c:d7:24:d1:31:05:50:17:ef:d8:9a:14:
1b:b1:5d:89:05:90:ed:0f:ac:82:5f:1b:a8:ac:ac:
ea:fe:a5:07:1e:b1:b1:86:bc:7c:0a:7c:33:4d:ea:
88:a7:51:e4:1d:b8:8e:3d:26:7a:4d:ef:21:f3:ad:
39:f8:14:f9:02:2e:d5:36:55:6a:67:26:9e:0b:12:
b3:f5:c8:dd:9b:76:6f:dd:f6:2e:b5:a8:4e:e3:9c:
69:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:5B:D2:53:0C:16:3B:E8:9E:E0:44:A4:42:2C:1A:64:84:31:A2:90
X509v3 Authority Key Identifier:
keyid:03:36:4F:CE:DD:69:13:57:73:3C:D5:CC:D7:02:9D:B8:E6:1D:1E:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AzZPzt1pE1dzPNXM1wKduOYdHjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/56f526-53de-4c9d-b401-abf0b594646f/1/llvSUwwWO-ie4ESkQiwaZIQxopA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/56f526-53de-4c9d-b401-abf0b594646f/1/AzZPzt1pE1dzPNXM1wKduOYdHjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.156.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:9c:04:ff:93:80:4d:0a:e7:80:3b:3a:e0:de:87:17:74:b5:
32:cc:e5:01:97:3a:ac:93:c8:f8:f1:18:b6:c0:66:9e:15:b5:
d4:88:97:a8:95:72:07:1c:22:e2:bb:43:60:f1:41:e6:c3:dc:
e0:6c:5a:6e:f1:13:c7:6c:94:53:66:88:22:a1:ee:41:d8:16:
df:78:87:48:33:ef:47:45:08:16:89:06:6f:ec:ab:b1:16:9b:
61:ac:ad:d2:b7:1c:d4:06:fa:f9:b4:a2:43:24:73:49:5a:5c:
d6:99:34:a4:ee:bb:2b:f7:58:2d:5a:6d:ae:12:20:7f:9d:df:
8b:22:4a:8e:e3:a9:4d:ec:fd:5b:49:3e:65:69:94:3f:17:fa:
15:0c:27:d2:c0:58:75:2e:d0:41:14:5c:c4:e4:61:72:dc:fc:
33:55:5a:d8:a9:d8:1f:87:db:80:dd:99:f2:71:c5:35:32:82:
e4:ce:30:53:11:4a:22:fc:bd:e2:88:28:4a:43:04:32:0a:a6:
a8:45:fb:24:0e:53:dc:11:3d:e4:bf:02:50:86:32:70:34:06:
78:9b:63:5e:9a:79:94:06:51:e4:ce:c1:c7:7d:8b:07:82:f6:
b4:9d:1f:38:e6:a4:cc:c9:c9:9a:38:bd:9d:6e:db:35:b9:ea:
22:5f:e4:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZZVKZRLdglVmZF92LuuQgY7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzMzY0ZmNlZGQ2OTEzNTc3MzNjZDVjY2Q3MDI5ZGI4ZTYx
ZDFlM2EwHhcNMjUwNDIwMjE0NTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NjViZDI1MzBjMTYzYmU4OWVlMDQ0YTQ0MjJjMWE2NDg0MzFhMjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0uGC0nOX3ovgcnWflF2X+K6Uv633
rzolcRregUmXrsHJuBwAhmWJ40xrJzBSX2mfFSlH1ruIB1bt0B0cyKq2Xw0RNE9S
6AIVyDyiJKGf/enN4gsB/L9MHRdFCMzXDmQxClykAewNBMC+W9DSyTrHWr2Aneg/
Z+O3f8MmUetLN+C636Mzs/kH3Nd8yKmuKE4tDXRAB8b532FHkvASVAcMqpp1K8ot
bNFc1yTRMQVQF+/YmhQbsV2JBZDtD6yCXxuorKzq/qUHHrGxhrx8CnwzTeqIp1Hk
HbiOPSZ6Te8h8605+BT5Ai7VNlVqZyaeCxKz9cjdm3Zv3fYutahO45xp4wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJZb0lMMFjvonuBEpEIsGmSEMaKQMB8GA1UdIwQY
MBaAFAM2T87daRNXczzVzNcCnbjmHR46MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXpaUHp0MXBFMWR6UE5YTTF3S2R1T1lkSGpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi81NmY1MjYtNTNkZS00YzlkLWI0MDEt
YWJmMGI1OTQ2NDZmLzEvbGx2U1V3d1dPLWllNEVTa1Fpd2FaSVF4b3BBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi81NmY1MjYtNTNkZS00YzlkLWI0MDEtYWJmMGI1OTQ2NDZm
LzEvQXpaUHp0MXBFMWR6UE5YTTF3S2R1T1lkSGpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVScMA0G
CSqGSIb3DQEBCwUAA4IBAQCanAT/k4BNCueAOzrg3ocXdLUyzOUBlzqsk8j48Ri2
wGaeFbXUiJeolXIHHCLiu0Ng8UHmw9zgbFpu8RPHbJRTZogioe5B2BbfeIdIM+9H
RQgWiQZv7KuxFpthrK3StxzUBvr5tKJDJHNJWlzWmTSk7rsr91gtWm2uEiB/nd+L
IkqO46lN7P1bST5laZQ/F/oVDCfSwFh1LtBBFFzE5GFy3PwzVVrYqdgfh9uA3Zny
ccU1MoLkzjBTEUoi/L3iiChKQwQyCqaoRfskDlPcET3kvwJQhjJwNAZ4m2NemnmU
BlHkzsHHfYsHgva0nR845qTMycmaOL2dbts1ueoiX+SD
-----END CERTIFICATE-----
Generated at Wed May 7 13:30:59 2025 by rpki-client