Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/pggYLLWBayb5ra7PrToyc4Pnvx4.roa
File: pggYLLWBayb5ra7PrToyc4Pnvx4.roa (raw, json)
Hash identifier: 57xwjvb8F9imkdDdPk7CWM9wF1KcjP3XAP2rSZvdoko=
Subject key identifier: A6:08:18:2C:B5:81:6B:26:F9:AD:AE:CF:AD:3A:32:73:83:E7:BF:1E
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019735BD263FD3537F4C133DFEE259763AF1
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/pggYLLWBayb5ra7PrToyc4Pnvx4.roa
Signing time: Tue 03 Jun 2025 12:21:17 +0000
ROA not before: Tue 03 Jun 2025 12:21:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 395374
IP address blocks: 31.58.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jun 2025 07:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:35:bd:26:3f:d3:53:7f:4c:13:3d:fe:e2:59:76:3a:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 3 12:21:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a608182cb5816b26f9adaecfad3a327383e7bf1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:24:10:2a:73:ea:13:f4:db:26:dd:14:b2:3d:
39:2e:f6:3b:00:d5:b6:73:cc:03:57:0b:cc:c4:58:
61:79:60:3b:51:2d:1d:80:c6:c2:f0:66:88:2b:f2:
6c:da:01:01:0d:02:e9:fc:e2:a3:a3:6f:4c:ad:e5:
9d:30:4a:18:80:fd:4c:db:15:82:8d:7f:86:e3:96:
9c:c4:74:5d:3e:d5:63:06:a9:c0:65:10:88:23:e0:
ee:15:0a:e7:6b:93:e5:a3:5a:98:8a:d9:87:e5:dd:
57:ae:cf:50:8f:f2:0b:15:47:a7:11:fb:aa:d1:0f:
33:41:bb:52:04:b6:1a:dc:fb:7d:b4:95:44:24:36:
f7:fa:63:86:77:67:ef:6d:1c:14:d0:f0:67:d4:5f:
ea:9d:dd:46:97:77:0f:80:a2:af:3b:c5:10:40:f6:
03:d8:74:a4:96:3f:58:bd:ac:bf:94:21:7f:dc:a4:
e5:9b:82:4b:6b:79:03:c2:7e:03:e7:be:53:ae:32:
01:fb:72:2d:4c:d8:3d:dd:29:39:d3:7e:9e:1b:0a:
a7:69:65:51:dd:7a:c8:89:55:7a:0c:32:57:61:10:
d4:a9:d8:54:92:87:3b:5d:d7:9b:2b:59:bc:5b:54:
be:07:4d:75:26:7b:9a:17:1b:13:49:44:bc:17:03:
26:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:08:18:2C:B5:81:6B:26:F9:AD:AE:CF:AD:3A:32:73:83:E7:BF:1E
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/pggYLLWBayb5ra7PrToyc4Pnvx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.65.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:5e:2e:a3:3d:30:b4:f7:9f:3d:4f:50:77:87:81:09:fd:c1:
d3:5a:36:61:3d:50:75:9a:b9:36:c4:67:7a:b8:f9:8d:b8:c7:
ed:78:37:33:11:07:82:92:ba:61:4b:28:78:00:f3:7c:cb:e3:
33:22:f4:8a:3f:38:83:fd:f2:de:bb:de:aa:9d:f7:ee:69:36:
83:76:73:5d:68:11:45:5d:ac:98:76:e3:e8:70:4b:87:15:ba:
70:83:aa:a8:bd:d7:6e:c3:94:48:df:bc:5e:84:02:b8:ab:f7:
6e:35:c5:bf:b0:b4:f8:9b:5a:7f:59:e7:d9:a5:f2:da:47:53:
df:c2:de:84:d0:2a:e4:75:23:07:6a:5e:b3:97:e5:98:72:6b:
17:6a:68:ba:61:be:2b:5b:64:40:fe:9a:2a:2a:e1:4f:20:98:
96:5f:94:74:c4:6b:10:7a:50:58:c8:49:1e:d3:2f:c0:fb:2a:
f9:8c:5d:c1:56:03:46:c6:0e:03:a2:54:ee:5a:f6:26:c2:12:
5f:2e:f0:dd:f6:2d:06:68:69:e5:e3:b7:02:ac:56:5e:5d:54:
e5:63:26:13:38:f5:3b:e4:a6:4d:25:95:6b:be:c8:bc:a2:24:
b2:d7:f8:13:d6:07:d0:cc:80:44:93:6b:05:b0:c9:da:1d:98:
24:19:5b:d9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZc1vSY/01N/TBM9/uJZdjrxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwNjAzMTIyMTE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjA4MTgyY2I1ODE2YjI2ZjlhZGFlY2ZhZDNhMzI3MzgzZTdiZjFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzyQQKnPqE/TbJt0Usj05LvY7ANW2
c8wDVwvMxFhheWA7US0dgMbC8GaIK/Js2gEBDQLp/OKjo29MreWdMEoYgP1M2xWC
jX+G45acxHRdPtVjBqnAZRCII+DuFQrna5Plo1qYitmH5d1Xrs9Qj/ILFUenEfuq
0Q8zQbtSBLYa3Pt9tJVEJDb3+mOGd2fvbRwU0PBn1F/qnd1Gl3cPgKKvO8UQQPYD
2HSklj9Yvay/lCF/3KTlm4JLa3kDwn4D575TrjIB+3ItTNg93Sk5036eGwqnaWVR
3XrIiVV6DDJXYRDUqdhUkoc7XdebK1m8W1S+B011JnuaFxsTSUS8FwMmMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKYIGCy1gWsm+a2uz606MnOD578eMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvcGdnWUxMV0JheWI1cmE3UHJUb3ljNFBudng0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzpBMA0G
CSqGSIb3DQEBCwUAA4IBAQAaXi6jPTC09589T1B3h4EJ/cHTWjZhPVB1mrk2xGd6
uPmNuMfteDczEQeCkrphSyh4APN8y+MzIvSKPziD/fLeu96qnffuaTaDdnNdaBFF
XayYduPocEuHFbpwg6qovdduw5RI37xehAK4q/duNcW/sLT4m1p/WefZpfLaR1Pf
wt6E0CrkdSMHal6zl+WYcmsXami6Yb4rW2RA/poqKuFPIJiWX5R0xGsQelBYyEke
0y/A+yr5jF3BVgNGxg4DolTuWvYmwhJfLvDd9i0GaGnl47cCrFZeXVTlYyYTOPU7
5KZNJZVrvsi8oiSy1/gT1gfQzIBEk2sFsMnaHZgkGVvZ
-----END CERTIFICATE-----
Generated at Sat Jun 14 12:17:53 2025 by rpki-client