Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/GNZLn2tyr1oNhv5Dszu0-jyqLJo.roa
File: GNZLn2tyr1oNhv5Dszu0-jyqLJo.roa (raw, json)
Hash identifier: uzWmChjvjSeq/0wjcXcAua2nUzthla73Ss4Nmx8Fd2k=
Subject key identifier: 18:D6:4B:9F:6B:72:AF:5A:0D:86:FE:43:B3:3B:B4:FA:3C:AA:2C:9A
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0194F7E9CFA5998E344DDC47F7527C767758
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/GNZLn2tyr1oNhv5Dszu0-jyqLJo.roa
Signing time: Wed 12 Feb 2025 02:08:02 +0000
ROA not before: Wed 12 Feb 2025 02:08:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215081
IP address blocks: 193.22.158.0/24 maxlen: 32
Validation: Failed, certificate revoked on Wed 12 Feb 2025 06:40:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f7:e9:cf:a5:99:8e:34:4d:dc:47:f7:52:7c:76:77:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Feb 12 02:08:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=18d64b9f6b72af5a0d86fe43b33bb4fa3caa2c9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:51:e2:a1:8b:2d:b2:2e:5f:f1:b8:84:10:ea:
c9:dd:72:a0:6e:a4:40:b4:ca:dc:f6:06:df:c8:db:
fb:ce:4b:3b:ff:90:4b:3b:de:94:62:93:f3:04:8c:
83:b3:aa:1d:83:fc:8e:71:a7:4c:68:f5:18:4a:30:
8f:8e:9d:5b:67:bd:f8:cb:af:51:b5:77:61:3f:e0:
27:b1:4b:30:c6:dc:ec:6f:2b:a7:0c:66:54:34:66:
2c:25:71:ad:59:f9:5a:9d:22:2f:43:80:ac:bb:b5:
81:1e:49:6c:63:57:9b:9f:21:75:c7:de:c4:84:b0:
65:9c:7d:3f:78:39:00:a9:03:42:f3:79:1e:a9:d2:
cb:cf:68:fd:aa:86:2a:17:a7:16:f4:09:f9:fc:1b:
2a:19:7b:48:5f:9d:14:0f:5b:0a:7c:a3:d5:e4:c0:
22:60:df:10:c8:c5:45:d8:a6:d9:a4:de:33:ee:1c:
e3:0f:34:43:aa:0d:59:22:e2:10:33:3a:16:b0:eb:
90:94:24:d8:2d:28:62:70:04:43:4a:4e:d1:e5:7a:
ae:0d:a9:e1:77:b9:45:43:c1:8e:b0:39:db:d4:c0:
65:8d:9b:cb:53:c5:03:e0:c4:8e:c4:9e:54:86:45:
88:cd:ae:8e:06:d0:64:01:14:24:0b:11:0f:a7:74:
05:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D6:4B:9F:6B:72:AF:5A:0D:86:FE:43:B3:3B:B4:FA:3C:AA:2C:9A
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/GNZLn2tyr1oNhv5Dszu0-jyqLJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.158.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:0d:89:e8:5a:b0:47:e6:16:e1:58:79:0b:0a:e6:35:36:6e:
bc:98:05:62:41:e5:3f:fd:71:e8:e3:7e:a0:f4:a3:f0:d8:31:
8c:c3:a2:df:30:90:4b:4d:34:4b:73:29:a7:ed:0e:03:09:2a:
3f:9d:31:17:5d:0a:1f:e7:c0:6e:ee:17:f8:25:12:4d:12:af:
19:4c:d6:97:24:42:5e:39:ed:ee:e5:ef:6f:2a:0f:03:8e:e6:
d6:ea:94:70:ee:13:18:93:50:d8:23:cc:ea:73:c1:f2:33:4f:
45:95:a6:2e:8c:27:75:7b:23:01:ec:8c:bd:98:c2:96:84:f2:
02:87:b7:8b:af:50:94:de:db:32:fb:96:0e:b5:33:83:8e:fb:
bc:4a:92:b0:46:c1:cc:80:db:31:e4:f7:b6:ba:18:20:e9:7d:
ff:ec:28:5d:7e:2a:c4:2b:10:f4:d7:99:c6:ce:c8:91:50:56:
e6:2f:fc:a1:bf:89:76:c7:5b:df:d9:5b:f9:a3:6e:2a:e4:41:
b9:4a:a6:de:b9:da:a5:fb:a4:5d:27:10:65:51:85:b1:3a:42:
68:76:1f:d9:19:fe:76:1e:11:e2:19:0e:83:1b:0e:bd:94:28:
12:61:20:97:fc:3a:4d:49:9e:7b:74:b0:44:91:10:6f:e5:24:
d6:8c:cb:c6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZT36c+lmY40TdxH91J8dndYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi
YTU3NDUwHhcNMjUwMjEyMDIwODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOGQ2NGI5ZjZiNzJhZjVhMGQ4NmZlNDNiMzNiYjRmYTNjYWEyYzlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1HioYstsi5f8biEEOrJ3XKgbqRA
tMrc9gbfyNv7zks7/5BLO96UYpPzBIyDs6odg/yOcadMaPUYSjCPjp1bZ734y69R
tXdhP+AnsUswxtzsbyunDGZUNGYsJXGtWflanSIvQ4Csu7WBHklsY1ebnyF1x97E
hLBlnH0/eDkAqQNC83keqdLLz2j9qoYqF6cW9An5/BsqGXtIX50UD1sKfKPV5MAi
YN8QyMVF2KbZpN4z7hzjDzRDqg1ZIuIQMzoWsOuQlCTYLShicARDSk7R5XquDanh
d7lFQ8GOsDnb1MBljZvLU8UD4MSOxJ5UhkWIza6OBtBkARQkCxEPp3QFmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBjWS59rcq9aDYb+Q7M7tPo8qiyaMB8GA1UdIwQY
MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt
ZmVhYzI2ZWFlY2MyLzEvR05aTG4ydHlyMW9OaHY1RHN6dTAtanlxTEpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My
LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRaeMA0G
CSqGSIb3DQEBCwUAA4IBAQDBDYnoWrBH5hbhWHkLCuY1Nm68mAViQeU//XHo436g
9KPw2DGMw6LfMJBLTTRLcymn7Q4DCSo/nTEXXQof58Bu7hf4JRJNEq8ZTNaXJEJe
Oe3u5e9vKg8DjubW6pRw7hMYk1DYI8zqc8HyM09FlaYujCd1eyMB7Iy9mMKWhPIC
h7eLr1CU3tsy+5YOtTODjvu8SpKwRsHMgNsx5Pe2uhgg6X3/7ChdfirEKxD015nG
zsiRUFbmL/yhv4l2x1vf2Vv5o24q5EG5Sqbeudql+6RdJxBlUYWxOkJodh/ZGf52
HhHiGQ6DGw69lCgSYSCX/DpNSZ57dLBEkRBv5STWjMvG
-----END CERTIFICATE-----
Generated at Sun Jun 15 07:42:39 2025 by rpki-client