Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/VfYvtTaZqFzmtqZ_8NoPvUUS4Sw.roa
File: VfYvtTaZqFzmtqZ_8NoPvUUS4Sw.roa (raw, json)
Hash identifier: Gn6GRriGwhZSQrmF4GB02cUouRswMydQcwjKQcxPwm0=
Subject key identifier: 55:F6:2F:B5:36:99:A8:5C:E6:B6:A6:7F:F0:DA:0F:BD:45:12:E1:2C
Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89
Certificate serial: 0194F96B3EEF551EECCD814D744F55B56E73
Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/VfYvtTaZqFzmtqZ_8NoPvUUS4Sw.roa
Signing time: Wed 12 Feb 2025 09:09:02 +0000
ROA not before: Wed 12 Feb 2025 09:09:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203216
IP address blocks: 185.239.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 09:40:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f9:6b:3e:ef:55:1e:ec:cd:81:4d:74:4f:55:b5:6e:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89
Validity
Not Before: Feb 12 09:09:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55f62fb53699a85ce6b6a67ff0da0fbd4512e12c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:da:dc:91:cb:07:fe:0e:6d:27:16:ff:f8:2f:
02:09:b9:68:72:78:1f:de:33:1c:c4:b7:3f:d6:11:
2c:13:d3:96:d9:71:03:28:16:22:7a:7d:05:e4:7a:
50:8a:81:14:20:66:c2:ee:fa:67:fa:ef:b7:f5:b4:
fb:3e:4d:3b:ce:b2:cd:45:7f:51:6d:47:34:09:6b:
39:14:f8:3c:68:a8:f7:91:25:4e:4e:fb:5d:c4:5f:
a8:af:f5:52:25:3d:6b:76:fc:f4:27:d0:72:12:46:
03:ec:81:d3:8f:44:d8:21:36:23:eb:70:b8:03:82:
64:26:3d:35:eb:6f:23:80:16:24:86:4f:e5:04:02:
37:29:fd:70:05:44:9d:a2:d8:cc:80:e3:53:61:1f:
a8:54:05:5c:bd:6a:59:e4:fd:3b:c3:35:b9:dd:4f:
2b:80:e6:f7:ea:0f:1b:8d:6d:a5:86:dc:8e:64:9b:
fb:0b:37:a3:05:b9:8c:8a:de:ed:80:e3:7e:91:bf:
68:f6:4e:47:1a:28:ef:3d:cf:c1:d1:16:c0:50:97:
bb:b2:e6:98:c9:50:7a:14:95:56:b5:a4:b3:32:d6:
80:cd:eb:6e:39:26:29:8a:e3:0a:48:47:1b:68:b9:
92:dc:f9:37:52:93:7f:ce:93:19:d5:f0:b6:79:ac:
28:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F6:2F:B5:36:99:A8:5C:E6:B6:A6:7F:F0:DA:0F:BD:45:12:E1:2C
X509v3 Authority Key Identifier:
keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/VfYvtTaZqFzmtqZ_8NoPvUUS4Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.176.0/24
Signature Algorithm: sha256WithRSAEncryption
23:a2:98:13:40:48:84:68:70:b0:c9:8d:ea:48:b2:b3:70:ae:
62:5e:79:19:be:31:2d:c2:81:e7:db:95:e2:a7:61:77:04:62:
7a:b6:d7:ae:83:29:a7:5e:8b:50:01:52:7a:10:0a:29:bc:f2:
36:71:43:30:fb:77:b4:ac:77:20:3c:aa:10:69:b7:dc:ae:de:
a4:b7:5a:77:fd:4e:b7:ca:ac:ed:33:92:51:65:66:51:69:a4:
a8:28:ee:84:20:07:8b:6d:62:da:1f:d3:ed:08:1d:d5:4a:c1:
8e:87:2e:12:71:56:27:ad:77:17:1f:42:c0:c2:bc:28:b9:54:
b6:84:60:ea:12:3a:c4:60:c2:a2:e5:df:b9:4f:5f:c8:6f:3b:
a8:33:5e:69:82:bf:1b:bf:ea:51:09:b5:70:16:74:81:27:1d:
b0:3b:2f:2a:60:d5:ba:43:46:2c:69:bc:39:b3:27:7e:c4:50:
8c:81:32:76:e1:af:eb:0c:8f:2c:39:9e:a4:0f:1e:c4:3e:5a:
71:a4:41:b6:5c:c7:e9:49:e4:df:e7:8d:de:68:33:f5:76:bf:
81:7e:a0:0e:0a:4d:89:33:cd:c1:7c:77:a9:0f:4c:78:45:02:
a9:fe:95:d9:90:76:a6:b3:5d:0b:20:1f:87:a9:41:94:db:50:
d8:29:c4:10
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZT5az7vVR7szYFNdE9VtW5zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2
YjllODkwHhcNMjUwMjEyMDkwOTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NWY2MmZiNTM2OTlhODVjZTZiNmE2N2ZmMGRhMGZiZDQ1MTJlMTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA09rckcsH/g5tJxb/+C8CCblocngf
3jMcxLc/1hEsE9OW2XEDKBYien0F5HpQioEUIGbC7vpn+u+39bT7Pk07zrLNRX9R
bUc0CWs5FPg8aKj3kSVOTvtdxF+or/VSJT1rdvz0J9ByEkYD7IHTj0TYITYj63C4
A4JkJj01628jgBYkhk/lBAI3Kf1wBUSdotjMgONTYR+oVAVcvWpZ5P07wzW53U8r
gOb36g8bjW2lhtyOZJv7CzejBbmMit7tgON+kb9o9k5HGijvPc/B0RbAUJe7suaY
yVB6FJVWtaSzMtaAzetuOSYpiuMKSEcbaLmS3Pk3UpN/zpMZ1fC2eawoVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFX2L7U2mahc5ramf/DaD71FEuEsMB8GA1UdIwQY
MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt
ZDc1ODY5YzBjNzFlLzEvVmZZdnRUYVpxRnptdHFaXzhOb1B2VVVTNFN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl
LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue+wMA0G
CSqGSIb3DQEBCwUAA4IBAQAjopgTQEiEaHCwyY3qSLKzcK5iXnkZvjEtwoHn25Xi
p2F3BGJ6tteugymnXotQAVJ6EAopvPI2cUMw+3e0rHcgPKoQabfcrt6kt1p3/U63
yqztM5JRZWZRaaSoKO6EIAeLbWLaH9PtCB3VSsGOhy4ScVYnrXcXH0LAwrwouVS2
hGDqEjrEYMKi5d+5T1/IbzuoM15pgr8bv+pRCbVwFnSBJx2wOy8qYNW6Q0Ysabw5
syd+xFCMgTJ24a/rDI8sOZ6kDx7EPlpxpEG2XMfpSeTf543eaDP1dr+BfqAOCk2J
M83BfHepD0x4RQKp/pXZkHams10LIB+HqUGU21DYKcQQ
-----END CERTIFICATE-----
Generated at Mon Apr 28 15:12:45 2025 by rpki-client