Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/rWWebebR4LnFMwRiAkIgG7YuX4M.roa
File: rWWebebR4LnFMwRiAkIgG7YuX4M.roa (raw, json)
Hash identifier: dBWexUR+50G5zcQ9hHr8yVasmmyWhOjZD8VrZRr1yI0=
Subject key identifier: AD:65:9E:6D:E6:D1:E0:B9:C5:33:04:62:02:42:20:1B:B6:2E:5F:83
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 0194221F7B6A306DE65AF3752EE002CA2528
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/rWWebebR4LnFMwRiAkIgG7YuX4M.roa
Signing time: Wed 01 Jan 2025 13:47:56 +0000
ROA not before: Wed 01 Jan 2025 13:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50939
IP address blocks: 93.174.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 20:11:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:7b:6a:30:6d:e6:5a:f3:75:2e:e0:02:ca:25:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 13:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad659e6de6d1e0b9c53304620242201bb62e5f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f4:94:04:6c:08:ac:40:b0:5b:51:e8:36:fa:
05:ec:bc:ee:61:01:4a:66:0d:2c:24:26:53:5b:f6:
23:12:3c:b8:a8:76:47:8c:5b:2f:df:79:ce:ee:30:
f8:11:5e:2c:40:e7:de:f4:f4:27:12:14:7a:9b:6f:
47:19:ab:37:f9:7c:bc:76:b1:ab:3f:e4:bd:32:7f:
42:9e:93:f7:ea:bc:5b:54:3a:82:25:53:17:c2:33:
b1:b4:cc:a0:e6:7f:63:cf:28:2e:e5:54:6a:36:25:
a0:6e:06:92:bd:69:74:7b:b5:f4:90:0e:70:c5:51:
22:4f:37:7c:4e:ab:2e:63:9e:c7:03:7e:7d:83:fa:
c9:5a:a8:bf:2b:c8:d5:08:9e:a4:67:32:8b:f9:d9:
09:dc:6a:dd:bc:f0:eb:7b:66:55:9b:d9:25:64:80:
57:94:bd:63:20:e6:a7:3a:1f:a2:99:d1:e8:1c:8b:
28:b0:d4:2c:bc:3a:c8:a6:2a:9f:37:ae:04:83:4d:
c7:65:25:9d:91:da:82:61:21:cb:b5:bd:ca:18:ff:
f5:d0:c8:0b:c7:50:26:b0:b9:b2:d4:b5:69:d0:f1:
eb:74:b3:32:04:a5:96:e0:ca:89:81:b8:fa:54:1a:
ec:82:7f:1b:dc:22:5e:57:8e:b4:74:57:30:fa:b0:
e9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:65:9E:6D:E6:D1:E0:B9:C5:33:04:62:02:42:20:1B:B6:2E:5F:83
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/rWWebebR4LnFMwRiAkIgG7YuX4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.174.166.0/24
Signature Algorithm: sha256WithRSAEncryption
86:7d:ea:19:c3:25:58:30:aa:ec:d1:5a:1a:23:47:cf:19:3c:
2a:91:90:69:45:9a:35:f7:92:d7:82:33:92:36:44:be:b4:ad:
6c:5b:6e:b4:00:45:77:b3:04:1b:6c:77:ee:dc:e2:e4:cf:be:
1b:fa:7f:0b:e4:be:bc:03:97:30:47:d3:db:7a:1b:77:3c:f9:
f0:c1:69:ee:35:50:fc:0a:1a:e7:7f:b0:f2:72:d6:e8:03:a1:
30:64:e5:f8:d0:3e:3e:5b:28:df:4e:41:ec:7d:96:1d:f3:e8:
7b:bf:c1:41:89:57:b6:c5:e2:9c:55:e9:aa:9b:9e:27:28:af:
0f:e4:18:cb:80:b5:17:11:19:c9:90:fc:8f:fa:72:37:ed:61:
84:15:fc:a1:d4:40:d0:10:96:87:67:68:89:af:6a:66:89:63:
59:61:74:10:bb:d1:dd:f7:98:ba:00:24:5e:af:c0:0b:d2:3d:
b7:4f:ad:35:e6:5f:b2:d3:cc:d8:ac:50:7b:d7:c0:65:f2:33:
51:5a:f9:ff:62:c1:e4:58:de:b8:1f:5c:de:da:ee:8b:64:cf:
3d:8c:9c:ed:a7:5d:14:3a:c6:70:32:cf:30:80:35:6b:05:e1:
f5:56:d6:32:f5:f8:93:55:5d:ec:bd:c5:77:f1:cf:df:df:18:
8c:9b:a4:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH3tqMG3mWvN1LuACyiUoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjZWY1OGQ0Y2ZhMzU1NDNmODQ4OGEyNzU2ZTY5MjRlNjQ3
YjQ1ODkwHhcNMjUwMTAxMTM0NzU2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDY1OWU2ZGU2ZDFlMGI5YzUzMzA0NjIwMjQyMjAxYmI2MmU1ZjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPSUBGwIrECwW1HoNvoF7LzuYQFK
Zg0sJCZTW/YjEjy4qHZHjFsv33nO7jD4EV4sQOfe9PQnEhR6m29HGas3+Xy8drGr
P+S9Mn9CnpP36rxbVDqCJVMXwjOxtMyg5n9jzygu5VRqNiWgbgaSvWl0e7X0kA5w
xVEiTzd8TqsuY57HA359g/rJWqi/K8jVCJ6kZzKL+dkJ3GrdvPDre2ZVm9klZIBX
lL1jIOanOh+imdHoHIsosNQsvDrIpiqfN64Eg03HZSWdkdqCYSHLtb3KGP/10MgL
x1AmsLmy1LVp0PHrdLMyBKWW4MqJgbj6VBrsgn8b3CJeV460dFcw+rDpOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK1lnm3m0eC5xTMEYgJCIBu2Ll+DMB8GA1UdIwQY
MBaAFNzvWNTPo1VD+EiKJ1bmkk5ke0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMt
MmVjZTA0ZTE4NWMyLzEvcldXZWJlYlI0TG5GTXdSaUFrSWdHN1l1WDRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMtMmVjZTA0ZTE4NWMy
LzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXa6mMA0G
CSqGSIb3DQEBCwUAA4IBAQCGfeoZwyVYMKrs0VoaI0fPGTwqkZBpRZo195LXgjOS
NkS+tK1sW260AEV3swQbbHfu3OLkz74b+n8L5L68A5cwR9Pbeht3PPnwwWnuNVD8
Chrnf7DyctboA6EwZOX40D4+WyjfTkHsfZYd8+h7v8FBiVe2xeKcVemqm54nKK8P
5BjLgLUXERnJkPyP+nI37WGEFfyh1EDQEJaHZ2iJr2pmiWNZYXQQu9Hd95i6ACRe
r8AL0j23T6015l+y08zYrFB718Bl8jNRWvn/YsHkWN64H1ze2u6LZM89jJztp10U
OsZwMs8wgDVrBeH1VtYy9fiTVV3svcV38c/f3xiMm6S/
-----END CERTIFICATE-----
Generated at Sat May 10 19:58:42 2025 by rpki-client