Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/N1DYMjiJz9txoQNOYMws7UlVOwQ.roa
File: N1DYMjiJz9txoQNOYMws7UlVOwQ.roa (raw, json)
Hash identifier: DevbZWosUgSf3GFyEoEzR9UHG7iUtHg7+RXDcG3+ySw=
Subject key identifier: 37:50:D8:32:38:89:CF:DB:71:A1:03:4E:60:CC:2C:ED:49:55:3B:04
Certificate issuer: /CN=586b0182105bb27b0c8bcf2842bd3c1a85164bd1
Certificate serial: 019373FDC0A374FB0F9A716613CBC4320AE7
Authority key identifier: 58:6B:01:82:10:5B:B2:7B:0C:8B:CF:28:42:BD:3C:1A:85:16:4B:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGsBghBbsnsMi88oQr08GoUWS9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/N1DYMjiJz9txoQNOYMws7UlVOwQ.roa
Signing time: Thu 28 Nov 2024 18:17:09 +0000
ROA not before: Thu 28 Nov 2024 18:17:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 194.179.160.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Dec 2024 21:11:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:73:fd:c0:a3:74:fb:0f:9a:71:66:13:cb:c4:32:0a:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=586b0182105bb27b0c8bcf2842bd3c1a85164bd1
Validity
Not Before: Nov 28 18:17:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3750d8323889cfdb71a1034e60cc2ced49553b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:17:dc:31:70:90:fb:49:cd:31:4e:e1:0e:3c:
fd:ee:6f:71:96:87:69:e6:bd:35:da:af:c7:88:25:
eb:71:29:f1:07:66:4e:72:f6:66:f9:42:1c:92:7b:
a6:9c:d7:43:a4:79:2c:8f:a2:99:a1:15:57:68:6e:
fb:6f:b4:ce:7d:dc:ab:f9:ab:a5:5b:4f:04:38:48:
52:da:f1:02:35:e3:70:39:7f:9d:cd:63:69:79:53:
83:ab:2c:35:42:d8:a2:df:7a:85:2f:dd:51:da:d7:
8c:3e:44:a0:f3:7a:e5:a5:e1:49:6d:99:34:bc:96:
13:ed:fe:40:10:2c:b0:0c:bb:3a:da:98:b3:fc:ad:
ad:64:91:b2:bf:23:7a:e4:ff:35:df:c8:dd:8c:5b:
75:9b:09:62:3f:57:ac:97:e5:9b:cd:61:2e:c1:21:
a1:b6:9b:fb:0a:af:72:5a:4c:16:27:e9:eb:67:91:
4c:76:20:de:9c:39:05:07:27:c8:07:57:a4:89:82:
a3:77:2b:cc:8d:8f:7e:8a:82:a5:2f:a4:32:4f:65:
14:bc:86:37:38:18:15:2f:1e:5a:3a:2c:eb:3c:50:
da:3c:23:08:f3:6a:e8:04:75:56:07:bd:9b:fa:5c:
88:e0:63:23:d0:1b:11:eb:4d:3e:c9:11:11:dc:e9:
8e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:50:D8:32:38:89:CF:DB:71:A1:03:4E:60:CC:2C:ED:49:55:3B:04
X509v3 Authority Key Identifier:
keyid:58:6B:01:82:10:5B:B2:7B:0C:8B:CF:28:42:BD:3C:1A:85:16:4B:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGsBghBbsnsMi88oQr08GoUWS9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/N1DYMjiJz9txoQNOYMws7UlVOwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/WGsBghBbsnsMi88oQr08GoUWS9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.179.160.0/19
Signature Algorithm: sha256WithRSAEncryption
d9:69:31:a0:7a:fd:4d:91:63:68:e9:51:5e:62:02:d1:7e:4f:
f5:25:8d:4a:25:a8:f2:a9:ca:ab:f8:69:98:14:a6:7b:9a:b6:
b3:b1:e5:63:31:0c:dd:cb:1a:b8:bf:ea:cb:22:a8:f4:b6:52:
67:75:ba:3b:e1:ca:b3:bb:0e:93:55:94:d5:6e:f6:9c:91:c0:
69:48:b3:b1:da:14:dd:7f:f9:49:ea:30:75:65:dc:6b:49:67:
fc:75:fc:fb:0f:49:08:e3:2a:75:41:3f:32:49:bb:de:98:7e:
d5:ab:f4:22:df:de:dd:95:ba:b0:ec:f2:3d:66:d0:79:97:65:
2c:2d:e4:c9:9b:af:a9:24:15:39:c3:07:1d:d9:9e:8d:a7:ee:
64:b6:a7:29:15:2e:94:70:1b:58:b0:2b:fb:69:fa:3a:64:b0:
83:2c:7f:78:f7:c5:c9:e0:e1:54:9f:dd:a7:e7:45:d1:51:55:
3c:2d:51:89:81:d8:9c:c2:e4:8c:de:be:78:35:36:46:36:ac:
31:38:b2:a5:53:e0:9f:b0:2f:b0:6f:a0:2b:d9:3d:8c:c3:9e:
34:ae:21:ef:9c:be:9f:13:9f:49:4f:98:5d:28:1c:8a:f6:76:
5d:cb:8d:d8:6a:25:ba:a9:70:fa:4c:ba:b1:24:6a:7e:45:66:
eb:d4:fd:62
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNz/cCjdPsPmnFmE8vEMgrnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4NmIwMTgyMTA1YmIyN2IwYzhiY2YyODQyYmQzYzFhODUx
NjRiZDEwHhcNMjQxMTI4MTgxNzA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNzUwZDgzMjM4ODljZmRiNzFhMTAzNGU2MGNjMmNlZDQ5NTUzYjA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRfcMXCQ+0nNMU7hDjz97m9xlodp
5r012q/HiCXrcSnxB2ZOcvZm+UIcknumnNdDpHksj6KZoRVXaG77b7TOfdyr+aul
W08EOEhS2vECNeNwOX+dzWNpeVODqyw1Qtii33qFL91R2teMPkSg83rlpeFJbZk0
vJYT7f5AECywDLs62piz/K2tZJGyvyN65P8138jdjFt1mwliP1esl+WbzWEuwSGh
tpv7Cq9yWkwWJ+nrZ5FMdiDenDkFByfIB1ekiYKjdyvMjY9+ioKlL6QyT2UUvIY3
OBgVLx5aOizrPFDaPCMI82roBHVWB72b+lyI4GMj0BsR600+yRER3OmOuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDdQ2DI4ic/bcaEDTmDMLO1JVTsEMB8GA1UdIwQY
MBaAFFhrAYIQW7J7DIvPKEK9PBqFFkvRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0dzQmdoQmJzbnNNaTg4b1FyMDhHb1VXUzlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS81MmI0ODEtZjMwMy00YTk2LTk3ZGQt
NzM3MGZkODBkZjZjLzEvTjFEWU1qaUp6OXR4b1FOT1lNd3M3VWxWT3dRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS81MmI0ODEtZjMwMy00YTk2LTk3ZGQtNzM3MGZkODBkZjZj
LzEvV0dzQmdoQmJzbnNNaTg4b1FyMDhHb1VXUzlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFwrOgMA0G
CSqGSIb3DQEBCwUAA4IBAQDZaTGgev1NkWNo6VFeYgLRfk/1JY1KJajyqcqr+GmY
FKZ7mrazseVjMQzdyxq4v+rLIqj0tlJndbo74cqzuw6TVZTVbvackcBpSLOx2hTd
f/lJ6jB1ZdxrSWf8dfz7D0kI4yp1QT8ySbvemH7Vq/Qi397dlbqw7PI9ZtB5l2Us
LeTJm6+pJBU5wwcd2Z6Np+5ktqcpFS6UcBtYsCv7afo6ZLCDLH9498XJ4OFUn92n
50XRUVU8LVGJgdicwuSM3r54NTZGNqwxOLKlU+CfsC+wb6Ar2T2Mw540riHvnL6f
E59JT5hdKByK9nZdy43YaiW6qXD6TLqxJGp+RWbr1P1i
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:56 2025 by rpki-client