Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/DoBSJ1fuji4--SL25Se_Xwh3y2Y.roa
File: DoBSJ1fuji4--SL25Se_Xwh3y2Y.roa (raw, json)
Hash identifier: A3O1oOExLJjRoqmP0C25NeQB90RZmJVIyhbEWhiFNrI=
Subject key identifier: 0E:80:52:27:57:EE:8E:2E:3E:F9:22:F6:E5:27:BF:5F:08:77:CB:66
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 01955D6A90CA8B3B7959F4E82A4FDC9EA277
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/DoBSJ1fuji4--SL25Se_Xwh3y2Y.roa
Signing time: Mon 03 Mar 2025 19:10:19 +0000
ROA not before: Mon 03 Mar 2025 19:10:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 31.186.180.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 22 Mar 2025 09:52:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5d:6a:90:ca:8b:3b:79:59:f4:e8:2a:4f:dc:9e:a2:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Mar 3 19:10:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e80522757ee8e2e3ef922f6e527bf5f0877cb66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d3:58:a9:a0:df:4e:1d:16:21:93:d7:7d:ce:
da:94:16:8d:c1:36:34:53:71:3a:ff:f6:23:0d:07:
c6:41:09:d5:20:e6:8a:44:d3:6b:4a:48:40:20:04:
0a:fd:dd:18:f0:db:26:23:9d:eb:a6:99:e1:87:36:
9e:47:b8:06:49:e1:38:25:91:01:69:f2:46:a5:8b:
65:a8:92:a7:cd:84:30:d2:4b:80:1e:95:3e:08:08:
1f:ba:fc:a7:9c:ad:4d:17:6f:16:55:09:fa:2a:b5:
0d:da:1a:b0:a8:03:31:4d:1b:a0:1b:98:29:d0:96:
80:e2:49:ec:45:3b:0a:c0:03:55:b9:21:2b:81:9f:
b9:58:72:ca:a6:48:e3:fd:3a:e8:4a:ef:87:25:1c:
f9:74:e2:62:e9:a4:cb:38:ca:ef:4e:34:49:f9:59:
c5:0c:6d:dd:b4:ba:40:fc:05:a4:da:db:de:2e:0a:
bb:04:ec:2f:74:3a:1b:1b:90:66:61:7a:1a:2e:1a:
45:c4:fe:ee:60:b1:4b:0a:00:30:ae:fa:f3:d5:83:
6e:24:15:4c:62:98:80:bf:f5:47:b1:2d:49:ff:dd:
6e:f2:b1:17:fb:6b:54:86:86:63:ed:c5:6e:59:fb:
55:32:ab:82:6e:a3:bf:28:5f:8e:77:f2:dc:13:1d:
35:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:80:52:27:57:EE:8E:2E:3E:F9:22:F6:E5:27:BF:5F:08:77:CB:66
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/DoBSJ1fuji4--SL25Se_Xwh3y2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.180.0/22
Signature Algorithm: sha256WithRSAEncryption
59:b1:df:50:68:7f:fa:7d:55:bb:2a:d9:4b:1b:1b:0f:46:3c:
d7:91:92:00:21:80:44:f0:6f:6d:03:0f:d4:90:20:ae:2f:d0:
5a:4f:25:78:45:74:bd:4c:16:44:2d:d5:09:a7:9a:e3:0e:da:
bc:c7:79:e8:73:c5:f5:5e:c1:d6:45:24:15:dc:29:ec:10:de:
8a:91:5b:40:49:bb:f7:50:11:77:f2:e1:08:cf:0b:3a:ea:c8:
b8:aa:df:2b:81:ab:cd:88:0e:85:8d:84:c1:18:ec:6c:3e:e4:
fb:18:ae:18:b1:45:08:b3:0e:4a:29:3b:d5:e2:81:f2:f2:39:
dd:a1:34:88:ec:39:52:76:61:ba:f1:ab:a5:34:da:84:f2:3f:
ba:df:24:6e:07:e1:75:84:5c:b3:3b:46:53:53:24:13:e0:5e:
9c:a2:8e:56:15:51:00:9c:b3:ea:41:d2:e9:dd:38:26:ef:b3:
4e:32:c8:eb:d0:10:ad:17:48:a2:8a:a5:27:d4:d2:d2:0c:c2:
ab:97:c5:89:4c:dd:eb:82:62:b8:ae:71:90:25:2e:0c:6d:86:
83:11:52:cb:91:1e:b9:74:a9:f7:94:9c:0e:84:27:5d:fc:0b:
ac:05:96:d8:85:7f:6e:d7:c7:22:26:e2:84:16:87:71:06:e9:
1e:58:33:9b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZVdapDKizt5WfToKk/cnqJ3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2NlMDZlNzBkZjk3MGQ5MGFiZmUzY2JlN2ZhODgyZjQ2
N2IxZTQwHhcNMjUwMzAzMTkxMDE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTgwNTIyNzU3ZWU4ZTJlM2VmOTIyZjZlNTI3YmY1ZjA4NzdjYjY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9NYqaDfTh0WIZPXfc7alBaNwTY0
U3E6//YjDQfGQQnVIOaKRNNrSkhAIAQK/d0Y8NsmI53rppnhhzaeR7gGSeE4JZEB
afJGpYtlqJKnzYQw0kuAHpU+CAgfuvynnK1NF28WVQn6KrUN2hqwqAMxTRugG5gp
0JaA4knsRTsKwANVuSErgZ+5WHLKpkjj/TroSu+HJRz5dOJi6aTLOMrvTjRJ+VnF
DG3dtLpA/AWk2tveLgq7BOwvdDobG5BmYXoaLhpFxP7uYLFLCgAwrvrz1YNuJBVM
YpiAv/VHsS1J/91u8rEX+2tUhoZj7cVuWftVMquCbqO/KF+Od/LcEx013wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA6AUidX7o4uPvki9uUnv18Id8tmMB8GA1UdIwQY
MBaAFIbM4G5w35cNkKv+PL5/qIL0Z7HkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2Ut
ODk3MTRhN2U4ZDU4LzEvRG9CU0oxZnVqaTQtLVNMMjVTZV9Yd2gzeTJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82NmYwNWMtNzQxYy00NzIwLWJjN2UtODk3MTRhN2U4ZDU4
LzEvaHN6Z2JuRGZsdzJRcV80OHZuLW9ndlJuc2VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCH7q0MA0G
CSqGSIb3DQEBCwUAA4IBAQBZsd9QaH/6fVW7KtlLGxsPRjzXkZIAIYBE8G9tAw/U
kCCuL9BaTyV4RXS9TBZELdUJp5rjDtq8x3noc8X1XsHWRSQV3CnsEN6KkVtASbv3
UBF38uEIzws66si4qt8rgavNiA6FjYTBGOxsPuT7GK4YsUUIsw5KKTvV4oHy8jnd
oTSI7DlSdmG68aulNNqE8j+63yRuB+F1hFyzO0ZTUyQT4F6coo5WFVEAnLPqQdLp
3Tgm77NOMsjr0BCtF0iiiqUn1NLSDMKrl8WJTN3rgmK4rnGQJS4MbYaDEVLLkR65
dKn3lJwOhCdd/AusBZbYhX9u18ciJuKEFodxBukeWDOb
-----END CERTIFICATE-----
Generated at Sun May 11 21:01:34 2025 by rpki-client