Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Vk3xR_mtg_NinDumPB2Hod81Og0.roa
File: Vk3xR_mtg_NinDumPB2Hod81Og0.roa (raw, json)
Hash identifier: /CUL9W4cAPWNn6ngJOKbzxx45HUPgbZcxgZ3KyxGCMk=
Subject key identifier: 56:4D:F1:47:F9:AD:83:F3:62:9C:3B:A6:3C:1D:87:A1:DF:35:3A:0D
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019242FADA87EDE0ABAA86694CEF6161CB2E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Vk3xR_mtg_NinDumPB2Hod81Og0.roa
Signing time: Mon 30 Sep 2024 12:49:49 +0000
ROA not before: Mon 30 Sep 2024 12:49:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207083
IP address blocks: 2.59.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:42:fa:da:87:ed:e0:ab:aa:86:69:4c:ef:61:61:cb:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 30 12:49:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=564df147f9ad83f3629c3ba63c1d87a1df353a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:de:e5:97:84:90:0a:18:25:f8:ab:7b:6d:f7:
50:31:8f:80:9d:16:6e:3e:ef:8d:3e:aa:1b:94:00:
3b:2b:2a:dc:cb:46:34:fd:2a:b7:6c:ae:01:4e:d7:
a1:53:e8:19:1a:82:d8:30:2f:1c:3c:2f:a5:9b:4e:
e6:32:3e:bb:8b:48:f1:92:8d:9e:c4:14:bb:59:c6:
18:93:5d:23:28:ed:72:1a:29:1e:65:dc:c4:84:2f:
f6:cc:7d:c2:a7:eb:11:a6:ec:73:23:23:f6:9c:94:
35:57:cc:87:17:12:9c:ad:30:27:93:d7:29:ae:8f:
72:13:98:2b:f2:8e:2a:5a:a2:e9:5a:ca:96:d6:e4:
99:99:0b:47:35:7f:ec:2b:2a:e7:51:5e:2b:f4:68:
76:74:6c:db:82:fd:34:36:32:6a:b0:92:16:aa:f2:
7b:67:dc:47:08:a5:2f:d7:5f:33:4a:e5:b3:a9:59:
b8:69:29:d1:5d:33:88:4b:2b:7b:9a:e6:c3:aa:a2:
ae:f0:6a:70:e3:50:89:f6:b8:04:74:24:c8:14:2a:
6e:52:6f:ad:20:8e:72:fd:48:8d:c1:0e:fd:7e:fa:
2c:9e:70:67:b6:53:79:70:6b:3a:c0:bd:26:e5:77:
d0:c1:c6:95:4d:68:3e:cb:b0:b5:4d:17:e0:73:b0:
24:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:4D:F1:47:F9:AD:83:F3:62:9C:3B:A6:3C:1D:87:A1:DF:35:3A:0D
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Vk3xR_mtg_NinDumPB2Hod81Og0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.254.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:db:33:bf:ce:b8:2c:ea:dd:fe:e2:dd:71:9f:98:0c:03:97:
5b:48:a5:67:ff:5b:f1:88:37:9f:29:e8:ac:53:af:0a:8a:36:
e1:5f:2d:3a:10:d3:eb:6c:e6:82:96:b9:0d:aa:98:9f:4b:4f:
f4:07:5f:0e:30:d0:2a:14:ad:c6:6c:a6:2d:7a:e7:59:97:df:
8a:20:25:1a:04:5c:b1:ed:1e:2d:4b:a0:87:2c:4b:8c:52:9d:
55:59:78:23:b1:33:f1:fb:a3:73:55:69:92:d1:fd:5c:c6:97:
6f:4c:f0:c7:df:a2:db:35:bc:74:22:4d:14:93:d4:3a:7b:b8:
db:b3:d0:ad:21:b5:37:e3:56:90:d2:4d:5c:7f:15:47:64:70:
1e:d9:5f:86:ec:09:e4:33:7c:7b:01:c2:b3:db:d4:a0:ac:9e:
2d:7d:3d:18:9d:2b:05:91:85:e0:09:08:59:e4:5f:32:4e:80:
79:f1:72:6b:57:ab:33:a2:62:ff:4c:91:99:04:af:e9:1a:a5:
5d:8e:4c:fe:df:b7:30:9f:fc:eb:6d:d3:15:18:38:d8:bb:f6:
2d:d8:43:69:8e:a9:7d:9f:58:b1:f4:5a:98:25:98:50:d1:b3:
f2:9b:2a:5b:f8:6e:8c:0c:c0:52:91:06:1c:82:b6:47:09:59:
e0:9e:97:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJC+tqH7eCrqoZpTO9hYcsuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwOTMwMTI0OTQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjRkZjE0N2Y5YWQ4M2YzNjI5YzNiYTYzYzFkODdhMWRmMzUzYTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAut7ll4SQChgl+Kt7bfdQMY+AnRZu
Pu+NPqoblAA7Kyrcy0Y0/Sq3bK4BTtehU+gZGoLYMC8cPC+lm07mMj67i0jxko2e
xBS7WcYYk10jKO1yGikeZdzEhC/2zH3Cp+sRpuxzIyP2nJQ1V8yHFxKcrTAnk9cp
ro9yE5gr8o4qWqLpWsqW1uSZmQtHNX/sKyrnUV4r9Gh2dGzbgv00NjJqsJIWqvJ7
Z9xHCKUv118zSuWzqVm4aSnRXTOISyt7mubDqqKu8Gpw41CJ9rgEdCTIFCpuUm+t
II5y/UiNwQ79fvosnnBntlN5cGs6wL0m5XfQwcaVTWg+y7C1TRfgc7AkmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFZN8Uf5rYPzYpw7pjwdh6HfNToNMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvVmszeFJfbXRnX05pbkR1bVBCMkhvZDgxT2cwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjv+MA0G
CSqGSIb3DQEBCwUAA4IBAQCu2zO/zrgs6t3+4t1xn5gMA5dbSKVn/1vxiDefKeis
U68KijbhXy06ENPrbOaClrkNqpifS0/0B18OMNAqFK3GbKYteudZl9+KICUaBFyx
7R4tS6CHLEuMUp1VWXgjsTPx+6NzVWmS0f1cxpdvTPDH36LbNbx0Ik0Uk9Q6e7jb
s9CtIbU341aQ0k1cfxVHZHAe2V+G7AnkM3x7AcKz29SgrJ4tfT0YnSsFkYXgCQhZ
5F8yToB58XJrV6szomL/TJGZBK/pGqVdjkz+37cwn/zrbdMVGDjYu/Yt2ENpjql9
n1ix9FqYJZhQ0bPymypb+G6MDMBSkQYcgrZHCVngnpcM
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:54 2025 by rpki-client