Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/AIDa3VUOGnrTzAGGXuLl02gBysk.roa
File: AIDa3VUOGnrTzAGGXuLl02gBysk.roa (raw, json)
Hash identifier: Y0cQJzk67dx3D/xyBiqDWrW3fPJJ7fwBomwh6FCs0xg=
Subject key identifier: 00:80:DA:DD:55:0E:1A:7A:D3:CC:01:86:5E:E2:E5:D3:68:01:CA:C9
Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c
Certificate serial: 01856E0B16B9718F8C80E7A3AD64C3BEC785
Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/AIDa3VUOGnrTzAGGXuLl02gBysk.roa
Signing time: Sun 01 Jan 2023 15:54:58 +0000
ROA not before: Sun 01 Jan 2023 15:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59605
IP address blocks: 80.231.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:16:b9:71:8f:8c:80:e7:a3:ad:64:c3:be:c7:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c
Validity
Not Before: Jan 1 15:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0080dadd550e1a7ad3cc01865ee2e5d36801cac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d4:94:da:20:34:c0:e7:a9:87:0f:18:4f:0d:
03:14:be:e2:f9:e7:a0:c5:83:3c:21:06:02:60:51:
31:be:13:fb:93:b6:62:80:0f:dc:e5:41:9e:83:17:
77:8a:8b:e2:da:d2:ab:a8:11:d4:f9:9a:17:21:83:
a1:4d:53:0e:10:0c:57:31:51:83:3c:fe:62:1a:63:
be:61:5d:bb:ae:cf:1a:2e:9d:7a:fd:c8:93:1b:fb:
93:0a:63:01:f9:cb:f3:e2:6b:20:d4:0f:16:65:eb:
0b:46:86:69:07:48:91:5f:84:5a:62:b4:8b:7a:a3:
1c:82:e6:91:e7:05:2a:1d:c6:8c:5f:bf:92:ed:11:
9a:64:1a:8d:4b:7e:b1:ce:ec:ab:4d:69:92:67:90:
49:aa:82:af:de:96:5b:61:f7:45:19:5c:12:c7:c3:
aa:8d:c9:d7:cf:b2:4b:43:f4:67:83:68:b7:ef:4a:
10:29:0f:f3:8d:9e:e6:23:fc:53:c9:bf:38:64:60:
e9:ad:25:c7:67:a2:ef:b6:11:ae:61:4e:e3:2c:d3:
0f:38:c4:32:d3:61:e0:68:a5:9d:73:0a:4a:53:47:
d8:7a:10:de:72:5a:70:0a:ea:ff:47:f0:6b:4a:40:
7e:8f:47:15:15:2c:29:31:86:b9:dc:26:31:17:3a:
66:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:80:DA:DD:55:0E:1A:7A:D3:CC:01:86:5E:E2:E5:D3:68:01:CA:C9
X509v3 Authority Key Identifier:
keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/AIDa3VUOGnrTzAGGXuLl02gBysk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.231.213.0/24
Signature Algorithm: sha256WithRSAEncryption
e3:36:5f:c6:05:ca:95:0a:41:de:3a:dd:e1:a4:04:b4:a5:07:
7a:9f:ff:d6:ca:74:d8:1c:89:91:b3:ff:80:36:de:6c:df:6c:
2a:c2:5a:50:0c:ea:49:04:b1:7c:82:17:65:05:6e:b7:21:17:
a1:f3:fe:f8:e8:73:d5:24:36:eb:ca:37:e3:f2:f6:84:ac:0c:
9a:91:ba:ef:b9:b5:a2:d3:22:87:36:7c:06:98:29:8e:7d:96:
d2:3a:b7:d8:a1:12:69:91:21:6d:a0:5e:ab:c0:5d:c7:c7:3d:
bc:63:f4:73:6f:f2:5a:6b:30:e8:89:f9:4f:07:dd:4f:d0:d0:
cf:26:8f:d6:48:e2:ef:57:af:23:be:e3:bb:c1:c8:42:24:25:
be:a3:e6:77:44:3d:91:5f:41:8e:8a:45:32:4f:11:9b:f7:3c:
0c:e5:54:62:e3:26:fb:e8:b8:2a:a7:2d:6e:77:bd:38:a1:bd:
a8:ed:c2:55:d6:e8:cd:50:2f:c0:f2:11:13:aa:8b:84:f0:1a:
07:2b:1f:42:7c:84:28:dd:5c:84:d6:c4:ee:71:be:60:d9:fc:
2d:61:d7:fe:46:4b:ba:82:f9:07:82:bb:56:41:83:8d:27:f3:
01:14:ad:a0:be:11:75:0a:c0:11:86:50:5b:b7:3b:52:ec:08:
e8:4e:59:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuCxa5cY+MgOejrWTDvseFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkZDFiMjU4NzQ5MGFkMDYxY2IyMDcxNzZiZGVlYzgxYTUz
MTU4OGMwHhcNMjMwMTAxMTU1NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDgwZGFkZDU1MGUxYTdhZDNjYzAxODY1ZWUyZTVkMzY4MDFjYWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdSU2iA0wOephw8YTw0DFL7i+eeg
xYM8IQYCYFExvhP7k7ZigA/c5UGegxd3iovi2tKrqBHU+ZoXIYOhTVMOEAxXMVGD
PP5iGmO+YV27rs8aLp16/ciTG/uTCmMB+cvz4msg1A8WZesLRoZpB0iRX4RaYrSL
eqMcguaR5wUqHcaMX7+S7RGaZBqNS36xzuyrTWmSZ5BJqoKv3pZbYfdFGVwSx8Oq
jcnXz7JLQ/Rng2i370oQKQ/zjZ7mI/xTyb84ZGDprSXHZ6LvthGuYU7jLNMPOMQy
02HgaKWdcwpKU0fYehDeclpwCur/R/BrSkB+j0cVFSwpMYa53CYxFzpm2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFACA2t1VDhp608wBhl7i5dNoAcrJMB8GA1UdIwQY
MBaAFE3Rslh0kK0GHLIHF2ve7IGlMViMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGRHeVdIU1FyUVljc2djWGE5N3NnYVV4V0l3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wMWQyYWYtMWYyMS00YjgwLWI2NjUt
ZGI0NjNjNWZiMGI0LzEvQUlEYTNWVU9HbnJUekFHR1h1TGwwMmdCeXNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8wMWQyYWYtMWYyMS00YjgwLWI2NjUtZGI0NjNjNWZiMGI0
LzEvVGRHeVdIU1FyUVljc2djWGE5N3NnYVV4V0l3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUOfVMA0G
CSqGSIb3DQEBCwUAA4IBAQDjNl/GBcqVCkHeOt3hpAS0pQd6n//WynTYHImRs/+A
Nt5s32wqwlpQDOpJBLF8ghdlBW63IReh8/746HPVJDbryjfj8vaErAyakbrvubWi
0yKHNnwGmCmOfZbSOrfYoRJpkSFtoF6rwF3Hxz28Y/Rzb/JaazDoiflPB91P0NDP
Jo/WSOLvV68jvuO7wchCJCW+o+Z3RD2RX0GOikUyTxGb9zwM5VRi4yb76Lgqpy1u
d704ob2o7cJV1ujNUC/A8hETqouE8BoHKx9CfIQo3VyE1sTucb5g2fwtYdf+Rku6
gvkHgrtWQYONJ/MBFK2gvhF1CsARhlBbtztS7AjoTlmf
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:19 2024 by rpki-client on console-ams.rpki-client.org