Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2-8s81sflpxzoh34St6K1bAcSTw.roa
File: 2-8s81sflpxzoh34St6K1bAcSTw.roa (raw, json)
Hash identifier: HAExXYJbNx/AMDwLpJBMVYnF4g7prCPldeFD3Tovvto=
Subject key identifier: DB:EF:2C:F3:5B:1F:96:9C:73:A2:1D:F8:4A:DE:8A:D5:B0:1C:49:3C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01934AABC0F6DA82C61399C514DD45982B3D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2-8s81sflpxzoh34St6K1bAcSTw.roa
Signing time: Wed 20 Nov 2024 17:43:10 +0000
ROA not before: Wed 20 Nov 2024 17:43:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62880
IP address blocks: 5.175.236.0/24 maxlen: 24
77.90.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Nov 2024 18:23:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4a:ab:c0:f6:da:82:c6:13:99:c5:14:dd:45:98:2b:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 20 17:43:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dbef2cf35b1f969c73a21df84ade8ad5b01c493c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:22:f1:38:30:1b:3e:e5:2a:75:da:4c:a9:d8:
df:66:9a:7a:22:53:84:a9:07:54:14:1c:b3:57:54:
ee:1e:c3:24:7d:82:58:12:6f:6b:1d:13:69:de:fe:
9f:74:62:6e:72:a5:40:01:aa:fe:42:06:31:f5:54:
96:b3:32:ed:73:5c:35:f5:a6:0b:ec:d9:75:fd:ce:
f7:0b:f7:6f:75:42:33:22:67:9d:9d:7a:88:02:5b:
0f:df:44:9d:e6:88:fe:d3:1a:a6:89:2c:e9:ed:f2:
de:94:ed:f9:4b:2e:ee:25:31:74:63:7f:f7:e9:a4:
83:43:ce:e5:ba:2c:10:79:9a:c1:d5:8c:fe:78:95:
5c:89:0e:10:6a:be:30:03:d4:7d:c6:4a:94:d4:86:
a9:27:75:10:09:6b:0d:4b:89:b3:0f:9f:ac:da:e0:
4e:f5:ea:38:79:6e:8b:bb:95:d7:f4:86:dc:30:bc:
1d:9a:08:e5:12:63:99:66:7d:2a:c4:5b:5d:39:60:
b2:45:a8:b7:74:b0:c7:58:ad:e5:3c:37:6d:08:3a:
36:c2:80:c4:60:d8:b4:5b:5b:5a:9e:ce:24:d5:6f:
cf:e1:2e:c8:12:89:63:5b:05:73:89:c9:86:44:08:
e6:58:6c:e0:f0:44:b9:ee:da:48:76:44:2e:77:46:
ea:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:EF:2C:F3:5B:1F:96:9C:73:A2:1D:F8:4A:DE:8A:D5:B0:1C:49:3C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/2-8s81sflpxzoh34St6K1bAcSTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.236.0/24
77.90.60.0/24
Signature Algorithm: sha256WithRSAEncryption
89:57:ee:df:d8:42:dd:c3:49:5e:9f:ba:4e:32:05:0e:c6:1f:
40:21:c6:e3:fc:11:14:4f:01:0b:b1:90:c2:85:88:fa:33:d9:
7a:c2:a1:d0:ef:09:33:5e:3f:51:cf:64:f4:37:94:79:9f:9a:
2e:bb:81:1b:46:34:23:ca:35:ee:86:f4:ad:01:07:0b:88:87:
6d:00:d5:ba:f5:ae:c2:3a:23:07:34:67:5a:d9:7a:e2:64:bf:
f8:4f:cc:bc:65:33:70:d8:c6:6a:a4:df:1b:94:75:50:9d:fa:
94:de:8e:df:ec:1e:22:68:55:f3:ed:a4:18:83:55:bb:96:41:
a2:64:ed:b7:cd:db:67:62:93:76:ad:10:ac:4d:c6:44:d0:76:
75:9d:6b:2e:1c:7f:08:bc:19:f4:ef:9a:ab:f1:a6:f4:7f:02:
ba:7d:89:29:2d:b1:10:95:2a:46:a5:32:5a:ff:6a:ba:dd:8b:
ae:14:7f:bf:6d:77:cb:94:d2:5e:25:8c:21:ef:27:9d:e7:02:
51:de:11:c5:3c:60:45:d7:fb:67:89:62:96:b8:7f:31:d9:4f:
77:3a:a1:59:d0:d3:cb:4b:fe:9a:2e:ca:76:57:87:8d:df:0d:
bb:73:7a:d8:43:1d:53:af:89:39:2d:7d:d1:63:dc:04:3e:99:
5a:d1:bc:83
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZNKq8D22oLGE5nFFN1FmCs9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQxMTIwMTc0MzEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYmVmMmNmMzViMWY5NjljNzNhMjFkZjg0YWRlOGFkNWIwMWM0OTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAySLxODAbPuUqddpMqdjfZpp6IlOE
qQdUFByzV1TuHsMkfYJYEm9rHRNp3v6fdGJucqVAAar+QgYx9VSWszLtc1w19aYL
7Nl1/c73C/dvdUIzImednXqIAlsP30Sd5oj+0xqmiSzp7fLelO35Sy7uJTF0Y3/3
6aSDQ87luiwQeZrB1Yz+eJVciQ4Qar4wA9R9xkqU1IapJ3UQCWsNS4mzD5+s2uBO
9eo4eW6Lu5XX9IbcMLwdmgjlEmOZZn0qxFtdOWCyRai3dLDHWK3lPDdtCDo2woDE
YNi0W1tans4k1W/P4S7IEoljWwVzicmGRAjmWGzg8ES57tpIdkQud0bqXQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNvvLPNbH5acc6Id+EreitWwHEk8MB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvMi04czgxc2ZscHh6b2gzNFN0NksxYkFjU1R3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABa/sAwQA
TVo8MA0GCSqGSIb3DQEBCwUAA4IBAQCJV+7f2ELdw0len7pOMgUOxh9AIcbj/BEU
TwELsZDChYj6M9l6wqHQ7wkzXj9Rz2T0N5R5n5ouu4EbRjQjyjXuhvStAQcLiIdt
ANW69a7COiMHNGda2XriZL/4T8y8ZTNw2MZqpN8blHVQnfqU3o7f7B4iaFXz7aQY
g1W7lkGiZO23zdtnYpN2rRCsTcZE0HZ1nWsuHH8IvBn075qr8ab0fwK6fYkpLbEQ
lSpGpTJa/2q63YuuFH+/bXfLlNJeJYwh7yed5wJR3hHFPGBF1/tniWKWuH8x2U93
OqFZ0NPLS/6aLsp2V4eN3w27c3rYQx1Tr4k5LX3RY9wEPpla0byD
-----END CERTIFICATE-----
Generated at Wed Nov 20 20:46:12 2024 by rpki-client on console-fra.rpki-client.org