Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/kEBkf-REVw-mWg3wbNN-AW8kZVc.roa
File: kEBkf-REVw-mWg3wbNN-AW8kZVc.roa (raw, json)
Hash identifier: 6+itvBrj+II6Vh96krTtaHZ9y1DbFISs2gpQx4HPn2M=
Subject key identifier: 90:40:64:7F:E4:44:57:0F:A6:5A:0D:F0:6C:D3:7E:01:6F:24:65:57
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018A754294E23C9E39C130F0A5393D8171A6
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/kEBkf-REVw-mWg3wbNN-AW8kZVc.roa
Signing time: Fri 08 Sep 2023 14:46:52 +0000
ROA not before: Fri 08 Sep 2023 14:46:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200590
IP address blocks: 81.25.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Sep 2023 09:32:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:75:42:94:e2:3c:9e:39:c1:30:f0:a5:39:3d:81:71:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Sep 8 14:46:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9040647fe444570fa65a0df06cd37e016f246557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:0a:42:78:e4:88:13:e3:38:f3:88:61:81:3f:
f2:d5:5a:db:f4:6d:6a:2a:ed:1e:ef:d5:ed:83:01:
01:ea:75:91:2d:80:d3:79:3c:8c:15:1a:1f:68:32:
2a:3f:a5:39:28:8f:5d:74:52:d5:32:c9:ef:a6:14:
50:2e:90:b5:d3:c0:f9:45:c3:76:69:22:d9:9b:dc:
39:1c:f2:74:1c:cc:c2:b4:0a:24:56:c8:a4:68:ab:
02:63:32:b0:c3:cf:7f:19:4a:ca:19:c6:bd:5b:e3:
50:a7:7d:a6:1a:aa:90:4d:d5:c9:e0:42:04:a1:63:
eb:2b:eb:c6:8a:74:ca:c0:75:0a:60:14:8c:68:77:
55:9e:54:82:a4:37:c6:30:35:49:d3:b3:b6:e9:6b:
09:d3:ce:94:a2:1a:79:06:a4:fa:59:6f:97:87:3b:
61:51:1d:2a:54:d0:4f:93:ba:bf:06:59:cf:d4:09:
7e:e4:1d:6c:d3:69:f7:3b:6a:bf:a7:9d:4f:3b:14:
d3:67:0c:3c:c8:26:6d:90:b1:6e:30:cb:7b:d7:0e:
43:25:2b:12:3f:9c:ba:57:2b:47:1a:60:df:0d:53:
39:62:7e:93:76:34:a6:89:2a:7c:60:f2:73:6d:54:
b5:d6:09:22:37:fb:6a:53:c3:fe:d9:06:ce:7f:c1:
a5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:40:64:7F:E4:44:57:0F:A6:5A:0D:F0:6C:D3:7E:01:6F:24:65:57
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/kEBkf-REVw-mWg3wbNN-AW8kZVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.25.68.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:27:ed:f2:fb:4c:72:8e:4b:d8:4d:b1:df:82:80:c0:a5:a7:
33:5f:e6:5e:cf:61:16:76:09:40:8f:9e:78:8c:c6:46:2b:6a:
2c:14:16:9b:15:38:fb:66:82:0b:af:07:65:8f:61:54:36:61:
43:6b:64:52:7b:4f:14:c2:f8:0f:8d:37:24:d7:d3:61:c9:b9:
55:48:c3:5f:f4:b7:60:ad:25:4b:48:1c:86:20:f7:0d:a9:b3:
6f:fc:e8:06:3d:f2:89:64:32:67:24:55:72:4e:dd:30:d0:3f:
d4:fb:aa:92:af:40:b0:20:eb:78:62:ac:9e:aa:30:61:ff:18:
d9:62:fa:da:fb:1f:d1:51:11:de:e8:f8:37:22:51:ed:61:82:
fd:4c:88:fd:0d:40:0e:74:d7:bd:b8:67:bd:e3:11:52:49:07:
eb:60:39:ab:68:f6:10:0a:e6:f0:4f:5e:11:c7:b8:58:7b:f6:
f6:9a:0b:f8:d9:3c:f7:44:20:8c:b8:28:90:de:24:2e:c4:ea:
d7:51:28:e6:7f:b2:a3:35:cd:82:f8:98:0e:2a:53:73:c6:e0:
97:78:f9:85:e1:ec:1e:d5:89:0f:d5:28:30:7a:91:7b:b9:00:
06:8c:f3:e6:ba:1a:4a:00:d1:a0:9f:e7:25:af:1c:da:a2:43:
7e:99:10:44
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYp1QpTiPJ45wTDwpTk9gXGmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjMwOTA4MTQ0NjUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDQwNjQ3ZmU0NDQ1NzBmYTY1YTBkZjA2Y2QzN2UwMTZmMjQ2NTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6wpCeOSIE+M484hhgT/y1Vrb9G1q
Ku0e79XtgwEB6nWRLYDTeTyMFRofaDIqP6U5KI9ddFLVMsnvphRQLpC108D5RcN2
aSLZm9w5HPJ0HMzCtAokVsikaKsCYzKww89/GUrKGca9W+NQp32mGqqQTdXJ4EIE
oWPrK+vGinTKwHUKYBSMaHdVnlSCpDfGMDVJ07O26WsJ086Uohp5BqT6WW+Xhzth
UR0qVNBPk7q/BlnP1Al+5B1s02n3O2q/p51POxTTZww8yCZtkLFuMMt71w5DJSsS
P5y6VytHGmDfDVM5Yn6TdjSmiSp8YPJzbVS11gkiN/tqU8P+2QbOf8Gl/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJBAZH/kRFcPploN8GzTfgFvJGVXMB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEva0VCa2YtUkVWdy1tV2czd2JOTi1BVzhrWlZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURlEMA0G
CSqGSIb3DQEBCwUAA4IBAQCoJ+3y+0xyjkvYTbHfgoDApaczX+Zez2EWdglAj554
jMZGK2osFBabFTj7ZoILrwdlj2FUNmFDa2RSe08UwvgPjTck19NhyblVSMNf9Ldg
rSVLSByGIPcNqbNv/OgGPfKJZDJnJFVyTt0w0D/U+6qSr0CwIOt4YqyeqjBh/xjZ
Yvra+x/RURHe6Pg3IlHtYYL9TIj9DUAOdNe9uGe94xFSSQfrYDmraPYQCubwT14R
x7hYe/b2mgv42Tz3RCCMuCiQ3iQuxOrXUSjmf7KjNc2C+JgOKlNzxuCXePmF4ewe
1YkP1SgwepF7uQAGjPPmuhpKANGgn+clrxzaokN+mRBE
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org