Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/e62f95-abbd-430d-8160-04ac17881aa9/1/EWb9_Jj5y6Ar8gnecX4dJ-lvrPk.roa
File: EWb9_Jj5y6Ar8gnecX4dJ-lvrPk.roa (raw, json)
Hash identifier: Lvn8EdeWyFBM7vNRw6RbnizvfDpwKVrWgPfdN6a74k0=
Subject key identifier: 11:66:FD:FC:98:F9:CB:A0:2B:F2:09:DE:71:7E:1D:27:E9:6F:AC:F9
Certificate issuer: /CN=844969780141824cd0acbfa5a784611eeb0a7ddb
Certificate serial: 0193D3CA2D7E98168ED6C371BFB063DC6C9D
Authority key identifier: 84:49:69:78:01:41:82:4C:D0:AC:BF:A5:A7:84:61:1E:EB:0A:7D:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hElpeAFBgkzQrL-lp4RhHusKfds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/e62f95-abbd-430d-8160-04ac17881aa9/1/EWb9_Jj5y6Ar8gnecX4dJ-lvrPk.roa
Signing time: Tue 17 Dec 2024 08:44:22 +0000
ROA not before: Tue 17 Dec 2024 08:44:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216192
IP address blocks: 194.177.14.0/24 maxlen: 24
2a13:f6c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d3:ca:2d:7e:98:16:8e:d6:c3:71:bf:b0:63:dc:6c:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=844969780141824cd0acbfa5a784611eeb0a7ddb
Validity
Not Before: Dec 17 08:44:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1166fdfc98f9cba02bf209de717e1d27e96facf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:88:70:6a:6f:8b:0e:5d:c3:4b:4c:da:fd:2b:
d7:25:67:8a:f0:f2:a2:c5:60:e8:b6:d1:5d:b9:38:
6b:89:b4:c1:8f:1c:5e:71:a2:bd:96:0b:bf:1c:b5:
be:3c:97:69:06:2c:ef:87:da:08:76:74:22:80:36:
46:d7:08:d0:d5:52:fa:a2:15:86:6a:be:fb:cc:f6:
ab:29:f9:9d:00:75:29:85:32:ed:ff:f7:04:58:41:
d4:b7:29:74:64:5e:96:49:2a:b8:8c:2a:1a:02:cf:
0e:85:e7:19:b7:0a:6e:58:90:d9:d9:f0:51:61:29:
f7:45:64:02:f4:37:79:31:2c:4c:7f:22:86:54:3f:
d5:a3:a9:ab:d7:e8:2b:77:50:34:b4:9f:64:a5:8d:
f9:68:0c:76:9e:c8:a2:bf:a8:9d:6f:ad:c7:24:19:
90:ba:42:99:98:66:d6:42:9b:ca:e9:e6:07:51:01:
64:93:8b:32:37:dc:cf:8b:1a:1e:7b:42:15:57:c5:
8a:e5:0d:79:f6:42:8a:6a:b8:04:c2:43:52:22:e6:
89:3b:56:1b:bc:93:4f:d0:41:03:cc:a0:ee:e6:d1:
67:30:5c:11:39:0e:2e:81:b1:3c:b3:a3:12:4b:f5:
48:70:93:9b:df:5c:4a:98:44:e4:b0:0b:ae:00:55:
26:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:66:FD:FC:98:F9:CB:A0:2B:F2:09:DE:71:7E:1D:27:E9:6F:AC:F9
X509v3 Authority Key Identifier:
keyid:84:49:69:78:01:41:82:4C:D0:AC:BF:A5:A7:84:61:1E:EB:0A:7D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hElpeAFBgkzQrL-lp4RhHusKfds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e62f95-abbd-430d-8160-04ac17881aa9/1/EWb9_Jj5y6Ar8gnecX4dJ-lvrPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/e62f95-abbd-430d-8160-04ac17881aa9/1/hElpeAFBgkzQrL-lp4RhHusKfds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.177.14.0/24
IPv6:
2a13:f6c0::/29
Signature Algorithm: sha256WithRSAEncryption
49:90:c8:c4:da:9a:34:7d:8d:1c:e3:e0:dd:dc:f1:70:b9:b9:
b9:d2:56:d1:f8:67:a4:98:ec:56:50:31:6b:6c:3f:e3:c4:b1:
d2:f5:ca:cd:56:2d:29:04:94:96:38:cf:f2:8c:87:79:37:b8:
72:cb:4d:6c:3c:6a:b5:49:a4:f2:14:67:63:fb:b0:f3:31:8c:
5a:9b:34:1e:84:f1:26:ef:79:ca:f3:b2:b2:90:0c:8a:3c:34:
f1:c6:87:c4:51:36:67:6d:e9:2e:6c:2b:75:fa:57:9a:dd:69:
c4:64:49:d7:67:f9:b7:c4:8f:66:05:d7:61:35:57:df:5a:db:
a4:63:10:99:4b:df:4c:09:20:09:4e:74:55:80:d4:ab:5b:5c:
da:c8:37:ca:fc:d2:92:ac:02:66:8d:ae:c8:23:65:d1:99:91:
01:9e:33:95:bc:5d:2f:80:b5:53:8d:28:54:22:a8:58:96:8d:
c9:28:3d:c2:ff:d6:be:b5:d0:26:1d:e8:8a:41:93:a0:5e:c7:
34:1f:18:6e:2a:cf:ac:07:d8:f9:6a:a8:ee:e3:f1:a1:43:3d:
8f:5b:2d:e8:bb:89:3b:a5:05:e4:fd:83:43:77:d3:ac:bd:97:
fe:66:b0:d6:96:cd:a5:50:78:8c:38:b1:89:1d:73:f9:97:63:
3f:b7:53:5f
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZPTyi1+mBaO1sNxv7Bj3GydMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0NDk2OTc4MDE0MTgyNGNkMGFjYmZhNWE3ODQ2MTFlZWIw
YTdkZGIwHhcNMjQxMjE3MDg0NDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTY2ZmRmYzk4ZjljYmEwMmJmMjA5ZGU3MTdlMWQyN2U5NmZhY2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsohwam+LDl3DS0za/SvXJWeK8PKi
xWDottFduThribTBjxxecaK9lgu/HLW+PJdpBizvh9oIdnQigDZG1wjQ1VL6ohWG
ar77zParKfmdAHUphTLt//cEWEHUtyl0ZF6WSSq4jCoaAs8OhecZtwpuWJDZ2fBR
YSn3RWQC9Dd5MSxMfyKGVD/Vo6mr1+grd1A0tJ9kpY35aAx2nsiiv6idb63HJBmQ
ukKZmGbWQpvK6eYHUQFkk4syN9zPixoee0IVV8WK5Q159kKKargEwkNSIuaJO1Yb
vJNP0EEDzKDu5tFnMFwROQ4ugbE8s6MSS/VIcJOb31xKmETksAuuAFUmCwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBFm/fyY+cugK/IJ3nF+HSfpb6z5MB8GA1UdIwQY
MBaAFIRJaXgBQYJM0Ky/paeEYR7rCn3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEVscGVBRkJna3pRckwtbHA0UmhIdXNLZmRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9lNjJmOTUtYWJiZC00MzBkLTgxNjAt
MDRhYzE3ODgxYWE5LzEvRVdiOV9KajV5NkFyOGduZWNYNGRKLWx2clBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi9lNjJmOTUtYWJiZC00MzBkLTgxNjAtMDRhYzE3ODgxYWE5
LzEvaEVscGVBRkJna3pRckwtbHA0UmhIdXNLZmRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwrEOMA0E
AgACMAcDBQMqE/bAMA0GCSqGSIb3DQEBCwUAA4IBAQBJkMjE2po0fY0c4+Dd3PFw
ubm50lbR+GekmOxWUDFrbD/jxLHS9crNVi0pBJSWOM/yjId5N7hyy01sPGq1SaTy
FGdj+7DzMYxamzQehPEm73nK87KykAyKPDTxxofEUTZnbekubCt1+lea3WnEZEnX
Z/m3xI9mBddhNVffWtukYxCZS99MCSAJTnRVgNSrW1zayDfK/NKSrAJmja7II2XR
mZEBnjOVvF0vgLVTjShUIqhYlo3JKD3C/9a+tdAmHeiKQZOgXsc0HxhuKs+sB9j5
aqju4/GhQz2PWy3ou4k7pQXk/YNDd9OsvZf+ZrDWls2lUHiMOLGJHXP5l2M/t1Nf
-----END CERTIFICATE-----
Generated at Mon May 12 03:42:44 2025 by rpki-client