Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/9i2ou-v_2fkYqiNrhyBbdVfiK8U.roa
File: 9i2ou-v_2fkYqiNrhyBbdVfiK8U.roa (raw, json)
Hash identifier: VXDv1eRQCUYR11kq09LJ0iwp/VZcFb9kq7meFJCE0z8=
Subject key identifier: F6:2D:A8:BB:EB:FF:D9:F9:18:AA:23:6B:87:20:5B:75:57:E2:2B:C5
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EE18582B32204330506F8DE2C140AF6BD
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/9i2ou-v_2fkYqiNrhyBbdVfiK8U.roa
Signing time: Mon 15 Apr 2024 11:30:07 +0000
ROA not before: Mon 15 Apr 2024 11:30:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34974
IP address blocks: 77.82.0.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 15 Apr 2024 11:36:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e1:85:82:b3:22:04:33:05:06:f8:de:2c:14:0a:f6:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 15 11:30:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f62da8bbebffd9f918aa236b87205b7557e22bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:69:e1:a8:c1:14:d1:58:22:14:5e:9e:19:5b:
b1:15:40:d3:5b:70:1e:9f:49:fa:ee:cc:5a:50:89:
23:01:19:a3:bb:88:30:36:a9:ed:dd:fc:14:37:d5:
ab:a0:e1:96:7b:7f:fe:20:09:02:3a:f4:2b:b0:9d:
8e:2b:d8:4d:a4:c5:f7:0c:95:1f:c5:11:8b:ee:ba:
80:29:4d:a0:65:97:d1:03:a3:a1:89:f9:a7:c0:94:
b8:2c:9e:9e:c5:eb:c2:5c:b5:09:31:5b:96:56:97:
94:ef:f2:86:a0:65:4f:ac:b6:7c:c5:bd:f3:d8:95:
0c:cc:bf:34:2f:63:4a:f5:b9:35:51:a6:1d:ef:aa:
fc:3a:88:c2:19:40:58:2b:f3:87:a9:f4:5d:f6:3b:
d6:89:86:9e:96:be:3c:2d:43:8f:62:24:9b:01:5b:
9d:fd:f7:4c:dc:37:a7:53:07:ac:9e:0c:54:7e:be:
ad:63:e8:8b:b9:6f:44:f4:9e:46:80:42:84:d8:d6:
92:72:86:62:77:61:92:ed:90:bc:ca:53:6d:29:0b:
6c:e5:e8:ee:8c:eb:11:fc:43:cd:2f:cc:d0:33:09:
bd:c9:85:cb:7f:e3:fd:d2:de:70:df:38:aa:8c:df:
8d:5d:7b:c7:46:b4:50:94:72:da:57:74:f9:bc:de:
fa:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:2D:A8:BB:EB:FF:D9:F9:18:AA:23:6B:87:20:5B:75:57:E2:2B:C5
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/9i2ou-v_2fkYqiNrhyBbdVfiK8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.82.0.0/20
Signature Algorithm: sha256WithRSAEncryption
3b:4b:8b:b2:3f:8a:d3:fe:09:f7:73:90:ff:04:07:7d:7f:13:
c1:ff:6e:68:1f:7b:a7:f8:c2:4c:0c:72:1d:a9:8d:02:3b:e4:
af:15:cf:0c:d1:b6:8f:1d:4f:26:32:67:39:2f:3e:b4:09:df:
28:a8:02:d3:f2:45:16:7d:da:05:b8:22:a2:01:94:ec:31:d5:
ab:92:c6:94:a7:69:24:64:60:46:73:d3:18:88:af:e2:2b:91:
91:5c:45:a8:e9:03:6b:16:18:3c:17:f5:d7:a3:ca:75:6d:f5:
3d:0b:02:93:ff:cf:7b:9e:37:7d:cb:61:43:03:ca:8e:11:7f:
bb:18:ea:4f:06:a5:7a:5f:94:a2:18:3f:d5:4c:b6:e4:34:99:
bc:2c:2b:4b:97:a3:02:8b:ba:f3:af:73:1a:5c:f0:34:f9:76:
09:c7:3e:e8:be:df:1e:82:5f:8c:a7:74:c7:3c:64:20:67:fd:
6c:7e:4d:84:3b:08:30:8b:9d:f8:49:96:b0:2a:27:5f:42:f0:
a1:74:bf:aa:d8:52:9e:02:9d:b0:cf:16:77:b3:ad:a8:43:83:
97:da:e2:24:15:4d:91:23:4d:73:9a:da:1e:a1:f5:c2:f8:7a:
30:3f:85:2b:b0:0e:95:12:e5:8b:13:e5:2b:48:5b:bf:e1:91:
5d:5f:fe:a4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY7hhYKzIgQzBQb43iwUCva9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjQwNDE1MTEzMDA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjJkYThiYmViZmZkOWY5MThhYTIzNmI4NzIwNWI3NTU3ZTIyYmM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGnhqMEU0VgiFF6eGVuxFUDTW3Ae
n0n67sxaUIkjARmju4gwNqnt3fwUN9WroOGWe3/+IAkCOvQrsJ2OK9hNpMX3DJUf
xRGL7rqAKU2gZZfRA6OhifmnwJS4LJ6exevCXLUJMVuWVpeU7/KGoGVPrLZ8xb3z
2JUMzL80L2NK9bk1UaYd76r8OojCGUBYK/OHqfRd9jvWiYaelr48LUOPYiSbAVud
/fdM3DenUwesngxUfr6tY+iLuW9E9J5GgEKE2NaScoZid2GS7ZC8ylNtKQts5eju
jOsR/EPNL8zQMwm9yYXLf+P90t5w3ziqjN+NXXvHRrRQlHLaV3T5vN764wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPYtqLvr/9n5GKoja4cgW3VX4ivFMB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvOWkyb3Utdl8yZmtZcWlOcmh5QmJkVmZpSzhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQETVIAMA0G
CSqGSIb3DQEBCwUAA4IBAQA7S4uyP4rT/gn3c5D/BAd9fxPB/25oH3un+MJMDHId
qY0CO+SvFc8M0baPHU8mMmc5Lz60Cd8oqALT8kUWfdoFuCKiAZTsMdWrksaUp2kk
ZGBGc9MYiK/iK5GRXEWo6QNrFhg8F/XXo8p1bfU9CwKT/897njd9y2FDA8qOEX+7
GOpPBqV6X5SiGD/VTLbkNJm8LCtLl6MCi7rzr3MaXPA0+XYJxz7ovt8egl+Mp3TH
PGQgZ/1sfk2EOwgwi534SZawKidfQvChdL+q2FKeAp2wzxZ3s62oQ4OX2uIkFU2R
I01zmtoeofXC+HowP4UrsA6VEuWLE+UrSFu/4ZFdX/6k
-----END CERTIFICATE-----
Generated at Thu Jun 19 23:46:21 2025 by rpki-client