Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/aK0B4DOuBTo0x0JB7VH0NLIzSW8.roa
File: aK0B4DOuBTo0x0JB7VH0NLIzSW8.roa (raw, json)
Hash identifier: 3+9F1gixPa6qjN/FT8NRmfCQXIBmYi48znJbZy2YSUM=
Subject key identifier: 68:AD:01:E0:33:AE:05:3A:34:C7:42:41:ED:51:F4:34:B2:33:49:6F
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 01945A40EAE968571DD74DDE7036B31D0834
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/aK0B4DOuBTo0x0JB7VH0NLIzSW8.roa
Signing time: Sun 12 Jan 2025 11:23:11 +0000
ROA not before: Sun 12 Jan 2025 11:23:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56486
IP address blocks: 37.202.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Jan 2025 12:24:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5a:40:ea:e9:68:57:1d:d7:4d:de:70:36:b3:1d:08:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Jan 12 11:23:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68ad01e033ae053a34c74241ed51f434b233496f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:53:1a:c0:d1:27:9f:87:7c:74:5a:9c:d3:d1:
bf:1c:ed:b4:b5:8f:2b:bb:71:01:2f:26:6e:a2:57:
13:90:5f:1d:5e:fa:02:78:e2:50:8d:49:ad:48:bd:
00:52:cb:c5:8f:94:45:a3:15:0b:ea:de:66:3b:f6:
90:dc:76:84:c8:2d:3e:80:e8:b3:85:4d:ca:62:84:
12:b7:37:ee:b5:49:c5:72:c1:b5:c5:5e:10:e8:e3:
70:df:39:a5:d3:74:9f:bc:68:20:a1:26:ac:a0:ce:
d9:f5:27:af:98:24:28:da:88:46:67:e4:44:77:ca:
42:6a:09:c7:60:67:a2:d6:0b:ff:2b:e1:e2:1f:0a:
60:c9:56:5d:9b:c3:f1:b0:6b:f8:c2:e4:3e:8b:a3:
32:ab:d2:f4:1d:df:9a:0f:1d:04:53:78:55:cb:27:
9b:09:64:c8:49:13:0f:f2:10:bc:3b:22:66:10:33:
46:61:fb:f1:d5:3d:c4:16:f1:06:a0:60:a1:d4:dd:
35:39:5b:0a:b9:46:10:d7:0e:03:2f:f7:70:08:eb:
83:c6:92:d0:ef:e4:7f:90:f7:10:ba:5c:8c:0e:ca:
dd:4d:04:de:67:33:fb:2a:09:e8:3f:ff:47:82:42:
b2:52:1c:21:85:45:d6:14:c5:fc:dc:38:f5:03:60:
53:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:AD:01:E0:33:AE:05:3A:34:C7:42:41:ED:51:F4:34:B2:33:49:6F
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/aK0B4DOuBTo0x0JB7VH0NLIzSW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.243.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:f5:ff:6c:b1:c3:79:54:e9:d3:6c:1d:f5:ba:3d:f6:fe:ff:
7e:b3:06:b8:30:da:b9:49:b0:e3:4b:a3:d2:6e:41:7b:da:89:
56:5b:26:32:80:eb:95:36:3f:58:d9:f1:08:16:2a:a6:a4:9c:
58:95:5c:b8:15:08:92:55:9a:88:a9:71:8e:43:cb:d5:e5:4d:
a5:24:7a:ae:96:36:01:b6:71:8c:02:04:87:09:a8:5f:e6:53:
06:65:96:73:95:88:38:bb:b4:e9:8f:3f:99:79:4c:67:ea:16:
e3:33:99:00:2d:3f:36:13:58:76:b7:49:66:a5:9d:c0:d9:fc:
70:dd:4c:c7:88:fb:4e:31:0d:85:3c:75:8b:72:47:10:03:55:
d3:9a:c2:6e:65:f4:e0:4c:90:02:5f:c6:7d:2b:55:1f:c6:87:
cf:36:49:3b:98:94:b4:71:a9:df:21:23:3a:8c:73:cd:95:85:
00:7e:89:ac:15:79:33:55:c7:54:b4:11:77:e6:66:55:c4:c6:
9f:e1:3f:d6:68:e8:95:6a:cb:26:21:cc:ec:9a:e6:2b:ab:aa:
62:80:35:61:09:a2:76:0f:f5:8b:9c:28:37:2c:18:b8:bd:c6:
2e:73:90:f4:de:6c:c9:ae:b6:59:f8:66:8c:4d:02:63:5a:9e:
1e:7b:d2:29
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZRaQOrpaFcd103ecDazHQg0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZjQ5MTQ4OGE3Y2Q4NDQ4YTQyMDk0NTg3MWMwYjk5Njcy
ZGM2NmUwHhcNMjUwMTEyMTEyMzExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OGFkMDFlMDMzYWUwNTNhMzRjNzQyNDFlZDUxZjQzNGIyMzM0OTZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlMawNEnn4d8dFqc09G/HO20tY8r
u3EBLyZuolcTkF8dXvoCeOJQjUmtSL0AUsvFj5RFoxUL6t5mO/aQ3HaEyC0+gOiz
hU3KYoQStzfutUnFcsG1xV4Q6ONw3zml03SfvGggoSasoM7Z9SevmCQo2ohGZ+RE
d8pCagnHYGei1gv/K+HiHwpgyVZdm8PxsGv4wuQ+i6Myq9L0Hd+aDx0EU3hVyyeb
CWTISRMP8hC8OyJmEDNGYfvx1T3EFvEGoGCh1N01OVsKuUYQ1w4DL/dwCOuDxpLQ
7+R/kPcQulyMDsrdTQTeZzP7KgnoP/9HgkKyUhwhhUXWFMX83Dj1A2BTgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGitAeAzrgU6NMdCQe1R9DSyM0lvMB8GA1UdIwQY
MBaAFK30kUiKfNhEikIJRYccC5lnLcZuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmZTUlNJcDgyRVNLUWdsRmh4d0xtV2N0eG00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi83MTVkMTUtMjgxMC00ODI3LThkYmQt
MGJlZTA2MTI2YjFhLzEvYUswQjRET3VCVG8weDBKQjdWSDBOTEl6U1c4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi83MTVkMTUtMjgxMC00ODI3LThkYmQtMGJlZTA2MTI2YjFh
LzEvcmZTUlNJcDgyRVNLUWdsRmh4d0xtV2N0eG00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJcrzMA0G
CSqGSIb3DQEBCwUAA4IBAQB99f9sscN5VOnTbB31uj32/v9+swa4MNq5SbDjS6PS
bkF72olWWyYygOuVNj9Y2fEIFiqmpJxYlVy4FQiSVZqIqXGOQ8vV5U2lJHquljYB
tnGMAgSHCahf5lMGZZZzlYg4u7Tpjz+ZeUxn6hbjM5kALT82E1h2t0lmpZ3A2fxw
3UzHiPtOMQ2FPHWLckcQA1XTmsJuZfTgTJACX8Z9K1UfxofPNkk7mJS0canfISM6
jHPNlYUAfomsFXkzVcdUtBF35mZVxMaf4T/WaOiVassmIczsmuYrq6pigDVhCaJ2
D/WLnCg3LBi4vcYuc5D03mzJrrZZ+GaMTQJjWp4ee9Ip
-----END CERTIFICATE-----
Generated at Sat May 10 23:13:36 2025 by rpki-client