Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/si-TrbaAmYy_EvdsmRp7WNp8QGY.roa
File: si-TrbaAmYy_EvdsmRp7WNp8QGY.roa (raw, json)
Hash identifier: 1/JAQZKuxrCGvVHQndZpgGMajcyZYYAPyKgp0KUAZKs=
Subject key identifier: B2:2F:93:AD:B6:80:99:8C:BF:12:F7:6C:99:1A:7B:58:DA:7C:40:66
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 0192668E835EB1B53D16853E8EE9F024FD12
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/si-TrbaAmYy_EvdsmRp7WNp8QGY.roa
Signing time: Mon 07 Oct 2024 10:37:48 +0000
ROA not before: Mon 07 Oct 2024 10:37:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7203
IP address blocks: 212.42.197.0/24 maxlen: 24
212.42.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:53:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:66:8e:83:5e:b1:b5:3d:16:85:3e:8e:e9:f0:24:fd:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Oct 7 10:37:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b22f93adb680998cbf12f76c991a7b58da7c4066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6f:5d:7e:1b:76:c8:61:a4:14:fd:9a:04:9b:
27:0b:0d:ff:24:12:08:9c:5a:7b:5a:ec:61:95:be:
9f:cb:04:f9:8c:58:90:41:3d:4b:54:0c:a9:e9:ba:
66:0a:e8:25:75:b6:47:8c:85:36:14:3d:55:11:b3:
c6:04:e7:68:3e:ca:11:9a:68:95:59:70:b4:73:c8:
af:60:6d:1c:83:f7:fb:11:ee:15:d3:5a:1b:0e:82:
ee:f5:95:56:57:c0:46:fe:cc:38:dc:01:d4:2d:f1:
80:fe:09:00:90:81:72:6f:97:73:fa:f1:46:67:84:
e5:f2:f0:9d:de:99:44:2a:2d:b7:3f:0e:48:d1:08:
c9:6b:10:f9:4c:48:66:31:1b:ed:ec:2e:4d:c3:9d:
5e:44:ae:68:18:75:da:ad:e0:7f:61:e3:93:a8:d6:
64:f5:e4:2d:e0:6f:39:ba:6e:7b:73:ff:9c:65:e2:
3b:f3:2e:e0:6c:91:7e:23:70:b0:8c:a4:b9:cf:80:
74:fc:65:ef:78:bd:6a:f7:d0:bf:f7:3f:ab:5e:18:
6d:4e:63:8b:e7:cd:9d:a9:13:1d:47:fb:68:85:17:
f3:6a:16:89:f5:f1:45:85:f7:07:86:54:9a:61:97:
1b:26:70:ab:61:40:dd:0f:b7:0e:32:18:1b:d9:49:
9f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:2F:93:AD:B6:80:99:8C:BF:12:F7:6C:99:1A:7B:58:DA:7C:40:66
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/si-TrbaAmYy_EvdsmRp7WNp8QGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.42.197.0/24
212.42.205.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:af:52:b3:1c:26:51:b8:fd:5e:d5:c5:e1:e8:24:81:f0:b1:
38:47:22:f5:98:58:4f:19:22:5a:ba:80:24:ef:71:83:e8:07:
70:26:67:47:30:03:d6:01:d4:cd:cb:4a:6c:0f:ac:e6:3a:95:
2c:44:53:9a:a3:16:f7:73:eb:e9:00:c6:48:97:48:ea:52:be:
3b:2c:d6:fb:cb:d1:48:3e:2d:47:b6:25:92:2d:1c:d8:ba:ba:
b2:78:50:66:a6:85:12:f6:0e:28:00:d0:cc:90:42:c3:ab:b4:
bd:b9:54:de:c2:a0:1c:1b:7e:74:ba:76:56:c1:6f:53:b3:22:
63:ad:53:e2:89:64:49:e3:f3:04:2f:b5:31:eb:15:7f:a7:e1:
d9:88:b0:ad:72:59:f6:be:f9:40:d0:3a:e4:a5:14:fb:e1:70:
d6:dd:dc:d8:fc:af:50:b7:90:01:48:5a:91:d6:e0:5f:3f:74:
28:77:36:8b:53:7a:d5:3a:27:7b:83:63:dc:b1:ac:99:ee:8b:
54:be:60:b3:bd:3e:6e:06:02:24:08:5e:2e:0b:f1:a5:83:b1:
85:dc:5a:b0:de:5f:4a:2f:4b:fe:21:eb:0c:18:5c:e6:de:1e:
aa:11:00:b2:b3:3f:b8:ee:17:9d:3d:47:df:70:85:18:1d:d5:
ac:6a:8a:11
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZJmjoNesbU9FoU+junwJP0SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNzIyZTQ1MTNhMzk2NzhkOGFiMjNiMmQ2NDk3NzUzNDA1
MThjYjkwHhcNMjQxMDA3MTAzNzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjJmOTNhZGI2ODA5OThjYmYxMmY3NmM5OTFhN2I1OGRhN2M0MDY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwm9dfht2yGGkFP2aBJsnCw3/JBII
nFp7Wuxhlb6fywT5jFiQQT1LVAyp6bpmCugldbZHjIU2FD1VEbPGBOdoPsoRmmiV
WXC0c8ivYG0cg/f7Ee4V01obDoLu9ZVWV8BG/sw43AHULfGA/gkAkIFyb5dz+vFG
Z4Tl8vCd3plEKi23Pw5I0QjJaxD5TEhmMRvt7C5Nw51eRK5oGHXareB/YeOTqNZk
9eQt4G85um57c/+cZeI78y7gbJF+I3CwjKS5z4B0/GXveL1q99C/9z+rXhhtTmOL
582dqRMdR/tohRfzahaJ9fFFhfcHhlSaYZcbJnCrYUDdD7cOMhgb2UmfbwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLIvk622gJmMvxL3bJkae1jafEBmMB8GA1UdIwQY
MBaAFA1yLkUTo5Z42KsjstZJd1NAUYy5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDIt
MzQyNWIxMjVlYWE3LzEvc2ktVHJiYUFtWXlfRXZkc21ScDdXTnA4UUdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8xYzA4NGMtOTgyZC00MDk4LWFmNDItMzQyNWIxMjVlYWE3
LzEvRFhJdVJST2psbmpZcXlPeTFrbDNVMEJSakxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1CrFAwQA
1CrNMA0GCSqGSIb3DQEBCwUAA4IBAQC1r1KzHCZRuP1e1cXh6CSB8LE4RyL1mFhP
GSJauoAk73GD6AdwJmdHMAPWAdTNy0psD6zmOpUsRFOaoxb3c+vpAMZIl0jqUr47
LNb7y9FIPi1HtiWSLRzYurqyeFBmpoUS9g4oANDMkELDq7S9uVTewqAcG350unZW
wW9TsyJjrVPiiWRJ4/MEL7Ux6xV/p+HZiLCtcln2vvlA0DrkpRT74XDW3dzY/K9Q
t5ABSFqR1uBfP3QodzaLU3rVOid7g2PcsayZ7otUvmCzvT5uBgIkCF4uC/Glg7GF
3Fqw3l9KL0v+IesMGFzm3h6qEQCysz+47hedPUffcIUYHdWsaooR
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:04 2025 by rpki-client