Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/lcK4fN-_WeixMdeu8RKASBsytOM.roa
File: lcK4fN-_WeixMdeu8RKASBsytOM.roa (raw, json)
Hash identifier: bP3NvifmZSCgFYC4gRZ3ExDJ9oVOPg6gflDRHygewlY=
Subject key identifier: 95:C2:B8:7C:DF:BF:59:E8:B1:31:D7:AE:F1:12:80:48:1B:32:B4:E3
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0195243F9A57F03CB81C8D5ABC27B9E47386
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/lcK4fN-_WeixMdeu8RKASBsytOM.roa
Signing time: Thu 20 Feb 2025 16:45:02 +0000
ROA not before: Thu 20 Feb 2025 16:45:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 5.180.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Feb 2025 08:57:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:24:3f:9a:57:f0:3c:b8:1c:8d:5a:bc:27:b9:e4:73:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Feb 20 16:45:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=95c2b87cdfbf59e8b131d7aef11280481b32b4e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:46:c9:f1:17:68:de:d1:45:6a:12:a6:9d:11:
48:06:4f:a4:64:33:5e:13:1b:c7:32:16:57:7f:3c:
9f:e9:7e:74:d2:5d:15:da:e4:fa:26:72:7d:7c:6d:
59:71:88:0a:fb:d1:d0:44:85:6f:fa:f5:e7:44:68:
a6:f8:7b:e1:e6:4a:01:48:5d:0b:21:89:56:60:31:
1f:dc:01:2a:94:c2:dc:d5:e5:bc:9f:44:e2:ee:96:
fa:57:49:d8:e4:2e:50:aa:9d:88:a6:30:b8:ba:c2:
5c:d4:fd:c5:a0:a3:dc:fe:c0:65:25:12:c5:45:92:
8e:d0:77:34:c5:70:6f:8c:2e:4a:52:e4:49:7a:d9:
4a:2b:37:d0:73:a2:af:01:9e:90:50:b6:45:8c:a8:
0f:29:10:6e:53:c8:be:6b:74:cc:45:21:10:d8:d2:
23:63:13:42:56:54:fc:a6:b2:23:76:43:4b:fc:f8:
e2:10:1e:31:1f:72:41:7f:ab:36:72:4d:b4:3d:5a:
f9:ec:62:88:dd:9b:d5:65:98:09:db:56:6e:c2:a7:
ed:21:63:04:e1:5d:10:29:6e:70:74:f9:04:b1:c3:
13:4d:18:f0:14:b9:eb:a1:91:e0:53:f1:56:cd:fd:
b6:60:2a:47:b7:06:27:dd:48:9e:a0:4e:ad:8b:38:
de:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:C2:B8:7C:DF:BF:59:E8:B1:31:D7:AE:F1:12:80:48:1B:32:B4:E3
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/lcK4fN-_WeixMdeu8RKASBsytOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.33.0/24
Signature Algorithm: sha256WithRSAEncryption
52:75:50:db:1d:53:bb:42:4c:17:d3:ab:25:23:c4:5b:10:29:
47:ec:27:88:f8:0e:26:d2:68:16:be:85:dd:73:45:75:91:16:
00:d7:fd:a7:ee:20:1f:99:eb:75:32:d5:86:a1:0d:3d:f2:e8:
f5:96:b9:60:cf:3f:07:3a:7d:cc:38:bf:a1:f6:d4:26:ae:a0:
92:6e:bb:a7:dd:87:58:bf:98:94:4a:29:16:c3:e6:5f:fb:f8:
33:ee:1c:2d:2b:bc:85:3c:57:81:bc:b1:6a:97:10:06:22:00:
f9:8d:78:a1:ca:69:34:51:c7:3f:44:4c:f4:41:b6:28:eb:80:
b4:43:bb:61:ba:56:98:6c:59:b5:c3:60:8a:03:6a:03:52:79:
37:da:68:f1:ae:2c:60:df:ff:39:9e:0d:ac:bc:6a:b4:4c:e0:
f1:e8:88:d3:9c:98:1a:39:b9:cc:d6:3f:c3:42:6a:d6:9f:09:
70:2e:e8:62:de:54:c9:f7:aa:bc:dd:a6:cc:f1:a7:ba:83:5a:
81:03:d4:86:7c:75:ca:2b:3a:0e:7e:83:7d:98:59:bf:18:8f:
67:81:a4:4a:17:f1:ed:23:28:51:5b:39:b8:c0:94:7f:b5:59:
f3:a3:f0:b0:1f:81:b8:3a:55:57:ff:96:1a:c5:89:c4:95:c5:
d2:f6:f8:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUkP5pX8Dy4HI1avCe55HOGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjUwMjIwMTY0NTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NWMyYjg3Y2RmYmY1OWU4YjEzMWQ3YWVmMTEyODA0ODFiMzJiNGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoEbJ8Rdo3tFFahKmnRFIBk+kZDNe
ExvHMhZXfzyf6X500l0V2uT6JnJ9fG1ZcYgK+9HQRIVv+vXnRGim+Hvh5koBSF0L
IYlWYDEf3AEqlMLc1eW8n0Ti7pb6V0nY5C5Qqp2IpjC4usJc1P3FoKPc/sBlJRLF
RZKO0Hc0xXBvjC5KUuRJetlKKzfQc6KvAZ6QULZFjKgPKRBuU8i+a3TMRSEQ2NIj
YxNCVlT8prIjdkNL/PjiEB4xH3JBf6s2ck20PVr57GKI3ZvVZZgJ21ZuwqftIWME
4V0QKW5wdPkEscMTTRjwFLnroZHgU/FWzf22YCpHtwYn3UieoE6tizjeIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJXCuHzfv1nosTHXrvESgEgbMrTjMB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvbGNLNGZOLV9XZWl4TWRldThSS0FTQnN5dE9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbQhMA0G
CSqGSIb3DQEBCwUAA4IBAQBSdVDbHVO7QkwX06slI8RbEClH7CeI+A4m0mgWvoXd
c0V1kRYA1/2n7iAfmet1MtWGoQ098uj1lrlgzz8HOn3MOL+h9tQmrqCSbrun3YdY
v5iUSikWw+Zf+/gz7hwtK7yFPFeBvLFqlxAGIgD5jXihymk0Ucc/REz0QbYo64C0
Q7thulaYbFm1w2CKA2oDUnk32mjxrixg3/85ng2svGq0TODx6IjTnJgaObnM1j/D
QmrWnwlwLuhi3lTJ96q83abM8ae6g1qBA9SGfHXKKzoOfoN9mFm/GI9ngaRKF/Ht
IyhRWzm4wJR/tVnzo/CwH4G4OlVX/5YaxYnElcXS9vir
-----END CERTIFICATE-----
Generated at Tue May 13 02:41:22 2025 by rpki-client