Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/1fef82-0ae8-48c6-9868-4a16ff9c795b/1/52CXbQvAgHyAtUBH_fxaDcm2UMs.roa
File: 52CXbQvAgHyAtUBH_fxaDcm2UMs.roa (raw, json)
Hash identifier: hAOa2htCYlPdiYw9yBvnNdAXqMvi8l+cGFySDoHSP1E=
Subject key identifier: E7:60:97:6D:0B:C0:80:7C:80:B5:40:47:FD:FC:5A:0D:C9:B6:50:CB
Certificate issuer: /CN=d18c49c6d7132224583eaf348ae41c50e61d9f45
Certificate serial: 018CC424813EE6EDFED0730EE3700AD71E27
Authority key identifier: D1:8C:49:C6:D7:13:22:24:58:3E:AF:34:8A:E4:1C:50:E6:1D:9F:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YxJxtcTIiRYPq80iuQcUOYdn0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/1fef82-0ae8-48c6-9868-4a16ff9c795b/1/52CXbQvAgHyAtUBH_fxaDcm2UMs.roa
Signing time: Mon 01 Jan 2024 08:29:35 +0000
ROA not before: Mon 01 Jan 2024 08:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210791
IP address blocks: 80.91.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 15:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:81:3e:e6:ed:fe:d0:73:0e:e3:70:0a:d7:1e:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18c49c6d7132224583eaf348ae41c50e61d9f45
Validity
Not Before: Jan 1 08:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e760976d0bc0807c80b54047fdfc5a0dc9b650cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:27:87:e3:c4:b6:75:06:b5:a5:44:a5:b0:c6:
f3:e4:81:dd:c9:0d:4c:e8:e6:47:ee:2d:ce:8f:f3:
ca:80:28:05:da:a3:4c:d5:ca:f5:f4:27:d6:fe:5c:
ec:aa:d8:c1:72:e4:c8:0d:04:51:15:5c:36:a4:a2:
7e:f0:0e:5b:e9:fd:61:c3:99:73:f8:c6:06:a9:ea:
3c:94:65:df:4e:72:b0:d5:b4:10:6b:6d:ed:9d:d9:
06:e5:88:3e:76:0d:16:a3:f2:24:b6:f8:88:0c:fa:
a8:03:39:9e:ec:bf:5a:98:f9:e3:dc:ce:87:b0:3b:
ab:a8:7e:d8:72:bd:be:42:c2:bd:46:38:59:9e:cb:
7a:95:f5:93:47:ca:a3:c9:45:67:eb:ce:6a:72:58:
b1:6d:b6:c8:65:81:53:2c:f2:84:9d:03:56:19:0c:
51:91:c6:08:d3:13:93:47:a2:81:98:85:7c:a2:77:
a6:bd:2b:39:bf:2f:7b:6c:24:91:8b:53:2f:a0:3b:
a0:61:57:38:59:02:2f:c1:1c:a3:60:cb:ea:84:8c:
31:17:e1:2e:ea:19:77:80:34:d8:bf:d6:08:eb:e2:
e0:60:50:8c:bb:a4:9e:5f:d8:18:fe:62:e7:9f:77:
65:89:d1:b7:89:5f:1b:68:cf:8a:59:c3:c4:14:c3:
bd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:60:97:6D:0B:C0:80:7C:80:B5:40:47:FD:FC:5A:0D:C9:B6:50:CB
X509v3 Authority Key Identifier:
keyid:D1:8C:49:C6:D7:13:22:24:58:3E:AF:34:8A:E4:1C:50:E6:1D:9F:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YxJxtcTIiRYPq80iuQcUOYdn0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/1fef82-0ae8-48c6-9868-4a16ff9c795b/1/52CXbQvAgHyAtUBH_fxaDcm2UMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/1fef82-0ae8-48c6-9868-4a16ff9c795b/1/0YxJxtcTIiRYPq80iuQcUOYdn0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.220.0/24
Signature Algorithm: sha256WithRSAEncryption
25:88:f8:db:5a:55:74:0c:3b:57:85:7d:dc:68:45:8a:a6:3e:
32:a1:10:98:f4:af:44:6e:62:fc:df:95:d1:14:12:ab:df:48:
63:f3:86:22:98:2f:1f:1c:98:be:82:2b:11:82:b1:9e:76:7a:
18:26:01:d9:1b:51:43:6e:f3:52:c7:87:d4:c0:81:97:0d:71:
af:ad:2b:bc:8e:17:a3:86:07:1c:12:37:ed:25:85:4f:a6:b2:
ad:13:33:db:6f:e9:cd:c3:bb:01:89:88:75:1d:36:00:10:92:
fe:c7:8e:0a:31:e0:53:ec:1e:78:c5:6a:44:74:3b:70:09:81:
47:83:d7:e1:4f:29:27:f3:1e:07:70:7f:10:38:fc:b0:47:17:
5b:54:2a:35:95:db:34:c2:91:94:44:c5:35:8e:b4:3f:c5:03:
97:36:f3:db:bd:20:f0:18:d1:18:6d:88:2e:e0:22:e3:22:99:
d0:e3:fe:11:97:94:a3:d2:f4:d0:09:82:d5:d3:bc:33:44:96:
ed:52:6e:4b:3f:69:76:fe:cc:a3:01:6a:5a:14:c7:53:7e:87:
ed:a1:03:94:dd:26:b5:9e:73:03:6c:a2:f3:d3:24:ce:b1:72:
6e:c7:1a:8e:29:8c:06:ac:0d:66:90:07:02:d9:84:d9:f0:84:
a1:0e:d8:6b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJIE+5u3+0HMO43AK1x4nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxOGM0OWM2ZDcxMzIyMjQ1ODNlYWYzNDhhZTQxYzUwZTYx
ZDlmNDUwHhcNMjQwMTAxMDgyOTM1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzYwOTc2ZDBiYzA4MDdjODBiNTQwNDdmZGZjNWEwZGM5YjY1MGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkieH48S2dQa1pUSlsMbz5IHdyQ1M
6OZH7i3Oj/PKgCgF2qNM1cr19CfW/lzsqtjBcuTIDQRRFVw2pKJ+8A5b6f1hw5lz
+MYGqeo8lGXfTnKw1bQQa23tndkG5Yg+dg0Wo/IktviIDPqoAzme7L9amPnj3M6H
sDurqH7Ycr2+QsK9RjhZnst6lfWTR8qjyUVn685qclixbbbIZYFTLPKEnQNWGQxR
kcYI0xOTR6KBmIV8onemvSs5vy97bCSRi1MvoDugYVc4WQIvwRyjYMvqhIwxF+Eu
6hl3gDTYv9YI6+LgYFCMu6SeX9gY/mLnn3dlidG3iV8baM+KWcPEFMO96QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOdgl20LwIB8gLVAR/38Wg3JtlDLMB8GA1UdIwQY
MBaAFNGMScbXEyIkWD6vNIrkHFDmHZ9FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFl4Snh0Y1RJaVJZUHE4MGl1UWNVT1lkbjBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy8xZmVmODItMGFlOC00OGM2LTk4Njgt
NGExNmZmOWM3OTViLzEvNTJDWGJRdkFnSHlBdFVCSF9meGFEY20yVU1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy8xZmVmODItMGFlOC00OGM2LTk4NjgtNGExNmZmOWM3OTVi
LzEvMFl4Snh0Y1RJaVJZUHE4MGl1UWNVT1lkbjBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUFvcMA0G
CSqGSIb3DQEBCwUAA4IBAQAliPjbWlV0DDtXhX3caEWKpj4yoRCY9K9EbmL835XR
FBKr30hj84YimC8fHJi+gisRgrGednoYJgHZG1FDbvNSx4fUwIGXDXGvrSu8jhej
hgccEjftJYVPprKtEzPbb+nNw7sBiYh1HTYAEJL+x44KMeBT7B54xWpEdDtwCYFH
g9fhTykn8x4HcH8QOPywRxdbVCo1lds0wpGURMU1jrQ/xQOXNvPbvSDwGNEYbYgu
4CLjIpnQ4/4Rl5Sj0vTQCYLV07wzRJbtUm5LP2l2/syjAWpaFMdTfoftoQOU3Sa1
nnMDbKLz0yTOsXJuxxqOKYwGrA1mkAcC2YTZ8IShDthr
-----END CERTIFICATE-----
Generated at Mon Mar 4 19:50:27 2024 by rpki-client on console-ams.rpki-client.org