Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/413P_MIiaVYUBNlGDZOzzd_MK8o.roa
File: 413P_MIiaVYUBNlGDZOzzd_MK8o.roa (raw, json)
Hash identifier: tZ0SBL63QOHrvCrdPk85YTUXF84senpYVXkp05b9Ycw=
Subject key identifier: E3:5D:CF:FC:C2:22:69:56:14:04:D9:46:0D:93:B3:CD:DF:CC:2B:CA
Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Certificate serial: 0196784290B6C10F0B637717012A11537D55
Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/413P_MIiaVYUBNlGDZOzzd_MK8o.roa
Signing time: Sun 27 Apr 2025 17:19:10 +0000
ROA not before: Sun 27 Apr 2025 17:19:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 87.229.8.0/22 maxlen: 22
87.229.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Apr 2025 06:17:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:42:90:b6:c1:0f:0b:63:77:17:01:2a:11:53:7d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497
Validity
Not Before: Apr 27 17:19:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e35dcffcc22269561404d9460d93b3cddfcc2bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:61:c9:d9:e7:ca:4d:ce:c2:11:0a:5a:0e:fe:
fc:c2:a3:d8:1e:18:bc:1f:6d:e2:7d:c5:70:cc:2d:
6c:64:80:dc:f6:9d:89:66:a4:b5:f5:0c:78:dc:4b:
13:62:ad:a0:35:05:8a:a9:ab:bf:57:3f:18:5e:87:
af:ec:ac:3f:0c:d8:5d:40:24:67:59:44:dc:8f:d5:
4b:c6:f9:17:38:63:c1:4f:df:0c:10:75:03:5e:32:
55:07:9a:a4:50:8a:66:0e:fe:a0:ce:81:18:2b:72:
4d:18:4c:05:bd:b1:0c:eb:08:9e:61:06:c5:e4:0e:
81:e6:2b:c7:fd:78:e9:9d:1b:38:42:33:9a:18:8c:
3e:c6:60:21:ce:38:04:60:94:d2:ef:b3:71:ca:f4:
42:f7:43:fb:fd:21:86:b4:fa:ae:0a:e0:27:86:e8:
8c:01:b2:41:19:4e:03:10:00:0a:25:4e:39:43:82:
5f:ae:a9:22:24:77:0b:fc:32:07:2f:7a:e3:47:e2:
5e:ac:1a:90:71:3e:a1:bb:a7:6a:5d:d3:f9:21:56:
83:1e:c5:1b:e3:a4:a1:59:89:a1:fb:86:97:84:77:
e5:97:65:7f:f8:13:c1:05:2d:39:98:38:ef:59:e4:
61:b0:2a:e6:91:23:a5:22:6d:41:35:e5:ba:10:db:
5b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:5D:CF:FC:C2:22:69:56:14:04:D9:46:0D:93:B3:CD:DF:CC:2B:CA
X509v3 Authority Key Identifier:
keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/413P_MIiaVYUBNlGDZOzzd_MK8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.229.8.0/22
87.229.64.0/24
Signature Algorithm: sha256WithRSAEncryption
86:df:27:b0:4e:d7:7e:69:85:e3:9a:f4:33:0f:1b:65:7e:35:
f5:2f:bb:a8:bf:61:32:21:6e:0c:f9:d2:c2:65:5c:4d:46:26:
ac:77:ea:09:14:91:17:2e:37:41:2e:0a:4f:16:1f:12:b0:97:
b0:66:fd:ef:b6:cd:b4:1e:b5:1b:81:53:46:71:17:1b:ac:ab:
fd:13:14:0a:fd:0f:93:bb:ad:60:70:4e:67:db:90:91:d3:8c:
b1:70:07:41:f0:e7:7b:60:73:be:cd:3e:06:49:ab:d4:be:c5:
fd:f3:22:8d:82:9f:e7:6f:c7:e7:46:02:54:4d:cb:83:c0:0c:
30:44:7e:18:21:a0:be:f8:86:dd:17:1a:0a:92:03:f6:c1:57:
40:5b:b2:a2:34:9f:cf:39:3d:34:fa:83:a3:eb:e5:0b:8d:8c:
52:b4:7e:53:c8:88:01:8c:93:f7:2e:6e:40:de:8c:f6:c9:df:
cc:4d:da:14:76:aa:20:f2:33:c3:c6:77:ac:09:b4:c6:f0:b2:
0c:45:2d:2e:fd:c8:32:80:c8:39:9b:5a:8e:33:29:45:55:b5:
85:b4:e1:74:f0:1c:64:16:d2:63:3b:3b:f1:38:54:2f:8a:45:
51:72:06:40:61:7e:be:fc:6f:78:3e:af:b6:50:a3:b1:07:6e:
ad:f3:4e:2f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZZ4QpC2wQ8LY3cXASoRU31VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2
NDI0OTcwHhcNMjUwNDI3MTcxOTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzVkY2ZmY2MyMjI2OTU2MTQwNGQ5NDYwZDkzYjNjZGRmY2MyYmNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2HJ2efKTc7CEQpaDv78wqPYHhi8
H23ifcVwzC1sZIDc9p2JZqS19Qx43EsTYq2gNQWKqau/Vz8YXoev7Kw/DNhdQCRn
WUTcj9VLxvkXOGPBT98MEHUDXjJVB5qkUIpmDv6gzoEYK3JNGEwFvbEM6wieYQbF
5A6B5ivH/XjpnRs4QjOaGIw+xmAhzjgEYJTS77NxyvRC90P7/SGGtPquCuAnhuiM
AbJBGU4DEAAKJU45Q4JfrqkiJHcL/DIHL3rjR+JerBqQcT6hu6dqXdP5IVaDHsUb
46ShWYmh+4aXhHfll2V/+BPBBS05mDjvWeRhsCrmkSOlIm1BNeW6ENtb/wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFONdz/zCImlWFATZRg2Ts83fzCvKMB8GA1UdIwQY
MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt
OTU5M2E0ODhhZmNjLzEvNDEzUF9NSWlhVllVQk5sR0RaT3p6ZF9NSzhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj
LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCV+UIAwQA
V+VAMA0GCSqGSIb3DQEBCwUAA4IBAQCG3yewTtd+aYXjmvQzDxtlfjX1L7uov2Ey
IW4M+dLCZVxNRiasd+oJFJEXLjdBLgpPFh8SsJewZv3vts20HrUbgVNGcRcbrKv9
ExQK/Q+Tu61gcE5n25CR04yxcAdB8Od7YHO+zT4GSavUvsX98yKNgp/nb8fnRgJU
TcuDwAwwRH4YIaC++IbdFxoKkgP2wVdAW7KiNJ/POT00+oOj6+ULjYxStH5TyIgB
jJP3Lm5A3oz2yd/MTdoUdqog8jPDxnesCbTG8LIMRS0u/cgygMg5m1qOMylFVbWF
tOF08BxkFtJjOzvxOFQvikVRcgZAYX6+/G94Pq+2UKOxB26t804v
-----END CERTIFICATE-----
Generated at Sun May 11 06:37:21 2025 by rpki-client