Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/UDuMJ-NgPvtfD4MA3ZduSfPkkbs.roa
File: UDuMJ-NgPvtfD4MA3ZduSfPkkbs.roa (raw, json)
Hash identifier: a9rl64KSrP/7qN9p6YMcN53Nq2X7aEf73quatm9EX1Y=
Subject key identifier: 50:3B:8C:27:E3:60:3E:FB:5F:0F:83:00:DD:97:6E:49:F3:E4:91:BB
Certificate issuer: /CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Certificate serial: 01932F9934D80ED03B4F86258735A941E78E
Authority key identifier: AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/UDuMJ-NgPvtfD4MA3ZduSfPkkbs.roa
Signing time: Fri 15 Nov 2024 11:33:09 +0000
ROA not before: Fri 15 Nov 2024 11:33:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207645
IP address blocks: 80.249.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2f:99:34:d8:0e:d0:3b:4f:86:25:87:35:a9:41:e7:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Validity
Not Before: Nov 15 11:33:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=503b8c27e3603efb5f0f8300dd976e49f3e491bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7a:9b:db:84:fd:b1:88:ba:08:30:08:a6:32:
94:34:e5:2b:e8:88:ac:46:f6:0b:89:03:c3:78:a5:
b0:d8:ce:33:8d:d8:76:0f:f7:e7:ff:f5:d4:96:4a:
e4:fa:8d:a1:fe:5f:62:33:5e:c6:0a:68:d5:c0:4a:
c0:40:86:07:ba:36:a9:c4:dd:4f:e9:05:1d:3a:c8:
72:7d:c1:0b:c1:c6:13:87:af:55:7c:04:77:aa:eb:
83:7f:75:20:f0:b5:a3:18:2d:f0:39:fe:aa:67:d3:
d0:03:ef:dd:2c:e7:10:10:35:69:cd:c7:33:67:b5:
2d:f8:fd:a2:c5:93:32:ac:63:ef:ed:86:e9:c4:21:
0b:eb:20:ae:31:69:43:28:12:e5:c6:63:6d:c6:76:
4b:89:75:cd:04:57:d2:19:22:95:4b:ec:25:77:63:
22:83:b7:40:f7:a8:9f:31:35:a4:76:18:c0:02:a2:
ea:e9:88:d5:7d:dc:c2:13:91:8e:c4:13:c0:6f:89:
7a:e4:3f:9b:17:f3:89:93:17:22:3c:1e:61:b5:a4:
d4:84:9d:4a:60:ab:ba:5d:21:d6:6f:af:7d:d2:2d:
f2:f8:81:95:29:99:04:8c:01:98:ca:63:8d:b2:1d:
b5:ba:cd:37:13:cc:7d:68:66:e6:23:1f:dd:f1:33:
fb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:3B:8C:27:E3:60:3E:FB:5F:0F:83:00:DD:97:6E:49:F3:E4:91:BB
X509v3 Authority Key Identifier:
keyid:AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/UDuMJ-NgPvtfD4MA3ZduSfPkkbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.249.128.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:bc:59:58:24:75:cf:28:b6:14:5b:fc:26:5c:a4:3c:43:fc:
28:27:7b:4f:89:07:df:9f:46:78:17:c6:77:08:c7:1b:eb:5f:
5d:03:63:d2:a7:cd:a8:8d:af:2a:72:66:9a:39:a3:25:4c:fc:
97:11:ec:8b:2d:34:9c:1e:f2:0e:ff:d5:5d:91:8d:2c:c0:00:
e2:21:29:50:fd:34:70:14:99:28:09:39:22:04:78:3f:f8:27:
b0:ac:d6:04:cb:b3:c0:9a:94:3f:9f:bf:f7:0f:99:80:d8:c1:
ee:9c:f3:b6:f6:ae:f6:82:f4:89:2b:6d:39:c3:7a:eb:01:cd:
c3:86:7d:2b:c1:22:9d:f7:df:23:e7:d0:19:da:7a:9d:b6:75:
a1:38:3b:36:ff:2d:83:28:8e:90:77:e5:d5:7b:e6:a0:4e:6b:
ec:37:88:f7:6d:5f:93:69:80:e6:6d:c3:5a:88:41:e7:e7:bf:
df:d5:5f:fb:bc:ef:87:41:63:94:51:3a:5d:00:cd:59:dd:60:
47:32:be:18:e8:04:94:11:e0:ea:a7:98:4e:20:b2:a2:57:20:
15:ab:f9:24:1e:70:bd:3b:4a:ec:25:67:22:e9:9d:04:00:43:
15:25:21:46:19:49:1d:4d:9e:f2:68:3d:0a:16:99:71:0d:92:
26:16:20:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZMvmTTYDtA7T4YlhzWpQeeOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlOTNjYzhjY2E4MWZhMDBkYzUzZTdiODA3OGU5MWI1YzEx
YmEyZWYwHhcNMjQxMTE1MTEzMzA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDNiOGMyN2UzNjAzZWZiNWYwZjgzMDBkZDk3NmU0OWYzZTQ5MWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13qb24T9sYi6CDAIpjKUNOUr6Iis
RvYLiQPDeKWw2M4zjdh2D/fn//XUlkrk+o2h/l9iM17GCmjVwErAQIYHujapxN1P
6QUdOshyfcELwcYTh69VfAR3quuDf3Ug8LWjGC3wOf6qZ9PQA+/dLOcQEDVpzccz
Z7Ut+P2ixZMyrGPv7YbpxCEL6yCuMWlDKBLlxmNtxnZLiXXNBFfSGSKVS+wld2Mi
g7dA96ifMTWkdhjAAqLq6YjVfdzCE5GOxBPAb4l65D+bF/OJkxciPB5htaTUhJ1K
YKu6XSHWb6990i3y+IGVKZkEjAGYymONsh21us03E8x9aGbmIx/d8TP7lQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFA7jCfjYD77Xw+DAN2Xbknz5JG7MB8GA1UdIwQY
MBaAFK6TzIzKgfoA3FPnuAeOkbXBG6LvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnBQTWpNcUItZ0RjVS1lNEI0NlJ0Y0Vib3U4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8xNzk4OTEtNDFjYy00YWEwLWFiNjgt
ZjQwNmM4M2IzZmJhLzEvVUR1TUotTmdQdnRmRDRNQTNaZHVTZlBra2JzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS8xNzk4OTEtNDFjYy00YWEwLWFiNjgtZjQwNmM4M2IzZmJh
LzEvcnBQTWpNcUItZ0RjVS1lNEI0NlJ0Y0Vib3U4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUPmAMA0G
CSqGSIb3DQEBCwUAA4IBAQCKvFlYJHXPKLYUW/wmXKQ8Q/woJ3tPiQffn0Z4F8Z3
CMcb619dA2PSp82oja8qcmaaOaMlTPyXEeyLLTScHvIO/9VdkY0swADiISlQ/TRw
FJkoCTkiBHg/+CewrNYEy7PAmpQ/n7/3D5mA2MHunPO29q72gvSJK205w3rrAc3D
hn0rwSKd998j59AZ2nqdtnWhODs2/y2DKI6Qd+XVe+agTmvsN4j3bV+TaYDmbcNa
iEHn57/f1V/7vO+HQWOUUTpdAM1Z3WBHMr4Y6ASUEeDqp5hOILKiVyAVq/kkHnC9
O0rsJWci6Z0EAEMVJSFGGUkdTZ7yaD0KFplxDZImFiCl
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:26:14 2025 by rpki-client