Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/iRXZf4rfO6lqz8bJHBkSrXCLTp4.roa
File: iRXZf4rfO6lqz8bJHBkSrXCLTp4.roa (raw, json)
Hash identifier: syb13CvMqTpWToNrerYFOS2MvbPs9/Q+FM6QDo0aAuw=
Subject key identifier: 89:15:D9:7F:8A:DF:3B:A9:6A:CF:C6:C9:1C:19:12:AD:70:8B:4E:9E
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018FD7996E4B82AA09628A343113E66B6F55
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/iRXZf4rfO6lqz8bJHBkSrXCLTp4.roa
Signing time: Sun 02 Jun 2024 06:18:27 +0000
ROA not before: Sun 02 Jun 2024 06:18:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215480
IP address blocks: 178.239.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Jun 2024 13:28:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d7:99:6e:4b:82:aa:09:62:8a:34:31:13:e6:6b:6f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jun 2 06:18:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8915d97f8adf3ba96acfc6c91c1912ad708b4e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6f:9f:50:17:ef:f0:6b:0b:b7:2b:ea:a9:64:
75:64:f2:06:6d:c7:20:f4:ff:ca:49:44:0a:7f:4f:
58:cd:c8:8f:29:e7:47:0b:44:b6:76:f5:bd:11:bb:
2f:75:cf:95:b7:b6:ee:51:c0:05:b5:fa:4a:c7:4c:
27:d1:0a:77:6d:5b:79:62:58:b0:57:62:fb:c3:29:
04:6d:6f:6b:c1:42:5f:0a:b7:b9:7d:39:25:f8:03:
00:28:a6:c6:f3:8b:a7:d1:a0:b4:af:4f:0d:2a:a5:
d7:12:9f:76:09:5b:88:36:8b:31:f9:6b:51:5f:a4:
fa:d9:4e:49:14:fc:c2:9e:79:c1:70:01:be:31:33:
27:cd:0f:ef:ad:99:9f:d1:d8:75:0a:df:29:9d:3e:
5b:ac:33:16:5a:1c:dd:c4:e2:ff:9c:18:8a:b8:f6:
af:e6:14:89:86:47:58:20:58:4c:8d:06:d2:7c:c9:
d5:a9:e8:cb:66:94:40:63:0e:1a:d6:bf:02:55:21:
40:95:e6:ea:fe:4a:84:3d:82:18:00:af:e3:63:01:
20:9f:c2:3a:ae:0d:82:fd:e3:0e:ac:a4:7c:e0:4b:
9e:bb:6a:a7:98:5d:71:ba:be:da:8a:d9:18:d5:aa:
ff:b4:2e:d1:31:6e:06:7d:f7:bf:81:75:eb:b4:6a:
32:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:15:D9:7F:8A:DF:3B:A9:6A:CF:C6:C9:1C:19:12:AD:70:8B:4E:9E
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/iRXZf4rfO6lqz8bJHBkSrXCLTp4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.144.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b1:3d:8e:e9:e7:e9:89:5f:e2:a6:00:22:c4:aa:27:c6:52:
74:08:b0:57:90:33:8b:cb:98:9d:a6:88:ac:d7:01:b2:17:2b:
fe:07:0a:19:cd:63:cd:f5:08:8b:9d:ef:fb:61:28:4b:d9:f5:
18:f9:b6:e3:6e:23:9f:80:5c:f8:78:5c:c2:ab:d8:1c:42:95:
31:b8:27:46:64:2c:6c:2c:14:0e:88:8b:04:22:4d:fd:02:52:
ee:6e:f0:40:9a:85:39:b1:2c:a5:17:c0:6f:50:ac:15:1e:a4:
2c:51:1c:87:74:b6:5c:f1:af:c9:3d:44:a1:30:ff:5d:3c:a7:
97:6c:1d:73:7e:8b:7c:67:ea:28:86:ad:70:9b:2a:f9:ea:ab:
d7:c1:b6:3b:ac:a5:61:da:ae:f6:24:cc:61:a4:82:06:d6:02:
53:df:b1:4d:e1:2b:5c:de:b5:b4:10:3c:e1:a4:db:58:04:19:
fd:7d:39:57:15:63:9f:d5:3c:8e:11:34:fc:a1:2a:8d:7a:2c:
82:6e:8d:c3:39:f3:a6:6a:1e:11:88:89:b9:ba:f2:b2:60:cf:
fe:7e:57:27:e5:6f:e4:e1:f6:31:7c:6d:e7:aa:78:96:0e:44:
c9:08:8d:3c:bd:21:85:ac:c6:25:cf:24:5f:70:e2:b4:92:0e:
ab:1d:cf:d1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY/XmW5LgqoJYoo0MRPma29VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxMzUzMzM5OWY1NWViNTJlNmIyMjAwYzdjYWU0MjcyYjc0
ZDY0NjQwHhcNMjQwNjAyMDYxODI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTE1ZDk3ZjhhZGYzYmE5NmFjZmM2YzkxYzE5MTJhZDcwOGI0ZTllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi2+fUBfv8GsLtyvqqWR1ZPIGbccg
9P/KSUQKf09YzciPKedHC0S2dvW9Ebsvdc+Vt7buUcAFtfpKx0wn0Qp3bVt5Yliw
V2L7wykEbW9rwUJfCre5fTkl+AMAKKbG84un0aC0r08NKqXXEp92CVuINosx+WtR
X6T62U5JFPzCnnnBcAG+MTMnzQ/vrZmf0dh1Ct8pnT5brDMWWhzdxOL/nBiKuPav
5hSJhkdYIFhMjQbSfMnVqejLZpRAYw4a1r8CVSFAlebq/kqEPYIYAK/jYwEgn8I6
rg2C/eMOrKR84Eueu2qnmF1xur7aitkY1ar/tC7RMW4Gffe/gXXrtGoyGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIkV2X+K3zupas/GyRwZEq1wi06eMB8GA1UdIwQY
MBaAFPE1MzmfVetS5rIgDHyuQnK3TWRkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEt
OTg5MTY2ODgxOTY5LzEvaVJYWmY0cmZPNmxxejhiSkhCa1NyWENMVHA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEtOTg5MTY2ODgxOTY5
LzEvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsu+QMA0G
CSqGSIb3DQEBCwUAA4IBAQAusT2O6efpiV/ipgAixKonxlJ0CLBXkDOLy5idpois
1wGyFyv+BwoZzWPN9QiLne/7YShL2fUY+bbjbiOfgFz4eFzCq9gcQpUxuCdGZCxs
LBQOiIsEIk39AlLubvBAmoU5sSylF8BvUKwVHqQsURyHdLZc8a/JPUShMP9dPKeX
bB1zfot8Z+oohq1wmyr56qvXwbY7rKVh2q72JMxhpIIG1gJT37FN4Stc3rW0EDzh
pNtYBBn9fTlXFWOf1TyOETT8oSqNeiyCbo3DOfOmah4RiIm5uvKyYM/+flcn5W/k
4fYxfG3nqniWDkTJCI08vSGFrMYlzyRfcOK0kg6rHc/R
-----END CERTIFICATE-----
Generated at Tue May 13 22:36:53 2025 by rpki-client