Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/eeb177-36b9-43d3-9cfa-4debb1afa997/1/ByolqDGdmK4NciPdMWDdj94ef48.roa
File: ByolqDGdmK4NciPdMWDdj94ef48.roa (raw, json)
Hash identifier: 0545NMBoANRtosVIkDBWvauJKgHt/zAWXnyoWvmZjcc=
Subject key identifier: 07:2A:25:A8:31:9D:98:AE:0D:72:23:DD:31:60:DD:8F:DE:1E:7F:8F
Certificate issuer: /CN=916835a7860231d7bc1648d45f8e957f51505b28
Certificate serial: 0190D908EDBC9247D5046960D5C57B71246B
Authority key identifier: 91:68:35:A7:86:02:31:D7:BC:16:48:D4:5F:8E:95:7F:51:50:5B:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kWg1p4YCMde8FkjUX46Vf1FQWyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/eeb177-36b9-43d3-9cfa-4debb1afa997/1/ByolqDGdmK4NciPdMWDdj94ef48.roa
Signing time: Mon 22 Jul 2024 06:02:39 +0000
ROA not before: Mon 22 Jul 2024 06:02:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205559
IP address blocks: 185.206.32.0/23 maxlen: 23
185.206.32.0/24 maxlen: 24
185.206.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 06:20:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d9:08:ed:bc:92:47:d5:04:69:60:d5:c5:7b:71:24:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=916835a7860231d7bc1648d45f8e957f51505b28
Validity
Not Before: Jul 22 06:02:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=072a25a8319d98ae0d7223dd3160dd8fde1e7f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b5:db:e6:c8:f0:f2:2f:23:ca:bd:21:da:57:
c0:25:47:3a:d8:90:11:01:e8:fd:4a:32:52:c1:e4:
0a:5a:ef:50:54:86:17:ae:0a:0f:60:fa:7e:92:9a:
3e:63:6e:0f:8c:f2:ed:c3:a5:c8:8d:fc:43:56:db:
5b:d3:c7:89:77:98:4d:db:0a:99:08:c3:d4:e8:99:
0d:5a:2a:de:18:a3:b6:42:64:db:fb:5c:51:07:da:
35:24:87:95:ba:73:ad:3c:fd:42:b2:98:6c:59:36:
0c:b5:ee:5e:36:c2:76:4e:e5:d5:28:df:ac:a8:94:
89:c4:60:6b:e4:57:78:a5:1f:f6:26:17:cd:dd:51:
ee:12:65:76:f7:38:eb:da:f1:b6:92:09:25:93:73:
be:df:dd:b4:7f:8c:0e:11:59:2c:fc:87:b2:80:61:
f6:4d:d8:68:ba:f8:28:d3:60:9d:cf:41:df:d1:30:
79:5c:96:48:e4:42:a6:27:99:0d:0a:35:23:47:1a:
e7:20:26:f0:02:9a:21:ea:5d:77:2c:3e:2c:98:c0:
72:12:0e:a4:2b:c9:b0:55:39:a9:7f:b6:c2:d2:0e:
32:a6:bf:72:98:37:3b:fe:96:9e:16:b6:2c:a8:31:
19:e7:02:08:c5:a7:d4:fe:88:5a:a6:ed:88:17:51:
31:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:2A:25:A8:31:9D:98:AE:0D:72:23:DD:31:60:DD:8F:DE:1E:7F:8F
X509v3 Authority Key Identifier:
keyid:91:68:35:A7:86:02:31:D7:BC:16:48:D4:5F:8E:95:7F:51:50:5B:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kWg1p4YCMde8FkjUX46Vf1FQWyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/eeb177-36b9-43d3-9cfa-4debb1afa997/1/ByolqDGdmK4NciPdMWDdj94ef48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/eeb177-36b9-43d3-9cfa-4debb1afa997/1/kWg1p4YCMde8FkjUX46Vf1FQWyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.32.0/23
Signature Algorithm: sha256WithRSAEncryption
14:f6:f7:2b:ea:57:64:22:a9:32:52:b1:a7:7f:2b:e1:b5:52:
ec:92:60:d5:6e:37:3c:9f:48:06:a3:6d:86:b8:15:c8:e9:ff:
42:6e:63:7c:55:a5:20:5d:c8:44:a6:8c:be:49:f1:cf:12:42:
0e:26:25:74:4c:7b:af:d2:cc:2e:9d:63:0b:9f:93:5b:fa:c2:
60:73:09:e3:4b:3c:5c:71:3d:fe:74:bc:d9:b8:de:8b:72:54:
85:a8:4e:50:4a:5b:b9:8b:93:58:cf:ad:bb:18:d7:6b:96:c7:
b1:ef:c4:7a:79:e9:63:d2:9f:14:94:ba:2c:00:d5:89:ca:91:
b0:48:51:79:d8:b9:ba:7a:ef:f8:47:79:ca:6d:83:f0:80:d9:
50:ad:8b:07:88:89:3e:24:33:ff:e9:de:a8:3d:58:ca:59:a6:
75:47:5e:89:37:4e:f8:5d:5b:1d:59:a1:64:48:d0:fa:b3:da:
46:69:3f:fb:a9:ed:dd:dc:05:88:84:4c:d2:50:81:9f:8e:84:
26:d4:f3:c8:2d:7c:52:27:5c:f8:5c:4e:89:0c:c3:a7:14:83:
52:3e:8a:d3:fe:f1:7a:2d:36:c8:3d:d7:2c:e5:68:20:21:22:
af:3e:e6:c0:72:49:b2:eb:e2:e9:10:4f:17:3d:1e:72:40:a4:
b8:8d:93:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZDZCO28kkfVBGlg1cV7cSRrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxNjgzNWE3ODYwMjMxZDdiYzE2NDhkNDVmOGU5NTdmNTE1
MDViMjgwHhcNMjQwNzIyMDYwMjM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzJhMjVhODMxOWQ5OGFlMGQ3MjIzZGQzMTYwZGQ4ZmRlMWU3ZjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbXb5sjw8i8jyr0h2lfAJUc62JAR
Aej9SjJSweQKWu9QVIYXrgoPYPp+kpo+Y24PjPLtw6XIjfxDVttb08eJd5hN2wqZ
CMPU6JkNWireGKO2QmTb+1xRB9o1JIeVunOtPP1CsphsWTYMte5eNsJ2TuXVKN+s
qJSJxGBr5Fd4pR/2JhfN3VHuEmV29zjr2vG2kgklk3O+3920f4wOEVks/IeygGH2
Tdhouvgo02Cdz0Hf0TB5XJZI5EKmJ5kNCjUjRxrnICbwApoh6l13LD4smMByEg6k
K8mwVTmpf7bC0g4ypr9ymDc7/paeFrYsqDEZ5wIIxafU/ohapu2IF1ExdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAcqJagxnZiuDXIj3TFg3Y/eHn+PMB8GA1UdIwQY
MBaAFJFoNaeGAjHXvBZI1F+OlX9RUFsoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1dnMXA0WUNNZGU4RmtqVVg0NlZmMUZRV3lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9lZWIxNzctMzZiOS00M2QzLTljZmEt
NGRlYmIxYWZhOTk3LzEvQnlvbHFER2RtSzROY2lQZE1XRGRqOTRlZjQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9lZWIxNzctMzZiOS00M2QzLTljZmEtNGRlYmIxYWZhOTk3
LzEva1dnMXA0WUNNZGU4RmtqVVg0NlZmMUZRV3lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuc4gMA0G
CSqGSIb3DQEBCwUAA4IBAQAU9vcr6ldkIqkyUrGnfyvhtVLskmDVbjc8n0gGo22G
uBXI6f9CbmN8VaUgXchEpoy+SfHPEkIOJiV0THuv0swunWMLn5Nb+sJgcwnjSzxc
cT3+dLzZuN6LclSFqE5QSlu5i5NYz627GNdrlsex78R6eelj0p8UlLosANWJypGw
SFF52Lm6eu/4R3nKbYPwgNlQrYsHiIk+JDP/6d6oPVjKWaZ1R16JN074XVsdWaFk
SND6s9pGaT/7qe3d3AWIhEzSUIGfjoQm1PPILXxSJ1z4XE6JDMOnFINSPorT/vF6
LTbIPdcs5WggISKvPubAckmy6+LpEE8XPR5yQKS4jZPU
-----END CERTIFICATE-----
Generated at Sun Jun 15 04:12:01 2025 by rpki-client