Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/1fBDX9S2pjk1vkU9eOw__2mLDio.roa
File: 1fBDX9S2pjk1vkU9eOw__2mLDio.roa (raw, json)
Hash identifier: HRgmv3LCJIXmuoK/5+m/CzQTSJ8I3rPl0aFALfmU7qU=
Subject key identifier: D5:F0:43:5F:D4:B6:A6:39:35:BE:45:3D:78:EC:3F:FF:69:8B:0E:2A
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 01914D24BF7EAC5139EA31CC232E96AC1D4D
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/1fBDX9S2pjk1vkU9eOw__2mLDio.roa
Signing time: Tue 13 Aug 2024 19:08:59 +0000
ROA not before: Tue 13 Aug 2024 19:08:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 79.135.102.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 08:41:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4d:24:bf:7e:ac:51:39:ea:31:cc:23:2e:96:ac:1d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Aug 13 19:08:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5f0435fd4b6a63935be453d78ec3fff698b0e2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7c:8b:2e:ec:f9:00:2c:44:a1:3a:55:a0:71:
9f:e6:db:41:ee:83:48:17:ab:c5:b6:63:af:6b:0b:
b1:12:ad:23:70:29:b6:ed:3c:f1:32:8c:06:e8:8f:
1e:c2:d8:9d:3c:ab:ff:61:54:77:88:6f:a5:12:e9:
98:46:38:79:c4:55:ba:e5:f3:1d:60:e4:e3:b4:22:
8e:53:00:20:f0:be:7b:72:23:74:0a:1a:40:c6:00:
3b:97:14:24:8b:3b:f2:19:22:de:16:37:9e:8c:3c:
8c:39:ee:42:df:0b:8e:d6:43:5c:b8:6a:2d:fe:df:
17:26:4b:6f:6f:9a:48:50:83:52:17:d2:9e:c8:ce:
cb:03:d4:0b:03:c2:81:8c:be:d8:bb:49:5a:1c:af:
d2:eb:ed:7d:06:ed:d4:1b:43:28:b6:c0:4d:81:68:
82:e2:e5:ad:95:0d:90:bb:5e:d7:ea:be:64:0a:d5:
74:95:35:41:e7:7e:db:13:12:72:ac:c8:92:f5:d6:
75:81:38:ac:c6:e7:48:b6:bb:c1:2f:88:bd:96:e2:
14:48:f0:4a:11:39:3c:65:9e:ea:05:7c:c1:e5:58:
9d:4b:d0:36:2b:ba:e9:b0:5f:f6:f7:cb:bd:b3:6e:
d3:9b:ac:68:38:70:be:06:b2:0d:ba:16:74:5a:9f:
67:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F0:43:5F:D4:B6:A6:39:35:BE:45:3D:78:EC:3F:FF:69:8B:0E:2A
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/1fBDX9S2pjk1vkU9eOw__2mLDio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.135.102.0/23
Signature Algorithm: sha256WithRSAEncryption
69:81:ae:ba:07:72:43:9f:94:2b:74:58:05:a2:c4:ac:49:ad:
ed:36:56:c2:44:2a:f7:83:16:4b:d2:76:26:f3:d0:fa:26:50:
37:a1:2f:d3:0b:27:99:6c:e7:24:45:ce:c5:8e:ba:bc:a2:36:
86:f4:3f:c9:7d:88:4c:2a:d7:87:3a:c1:00:4d:eb:5e:74:19:
8e:bc:37:d0:e8:e8:0d:16:66:8b:d3:8c:6c:a8:ae:ec:5f:cb:
72:45:51:22:f9:12:91:9e:64:a3:68:5e:e9:1f:35:89:23:d5:
ea:07:e2:d2:32:22:cf:e6:2f:64:dd:cf:93:04:2c:62:ed:07:
3c:fc:6c:ee:12:ed:6e:ab:8c:e2:e2:35:28:be:7a:8a:cf:46:
6b:6d:fe:18:0f:be:c0:77:f6:94:dc:11:d4:91:77:22:92:bd:
f5:0d:c3:98:84:58:9a:88:06:fe:3f:8a:0b:55:06:87:68:17:
85:fa:39:32:3e:93:1d:76:06:2f:4c:c0:e9:e6:b2:4f:31:28:
6a:f0:75:7f:d9:88:70:9b:35:21:54:85:77:b2:6a:df:f4:ab:
fc:1f:8c:e8:d4:82:99:25:03:61:fe:30:e2:f6:fd:ac:d6:ee:
ec:75:27:99:0c:36:51:39:b4:8a:74:f2:80:c8:94:3f:8d:c3:
17:03:f6:98
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFNJL9+rFE56jHMIy6WrB1NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiMGQ0ZTg1OTM3YjdhMGYyNzEwNTRkMjg2MTRmMjkzNGQ0
ZWE1MDAwHhcNMjQwODEzMTkwODU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNWYwNDM1ZmQ0YjZhNjM5MzViZTQ1M2Q3OGVjM2ZmZjY5OGIwZTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuXyLLuz5ACxEoTpVoHGf5ttB7oNI
F6vFtmOvawuxEq0jcCm27TzxMowG6I8ewtidPKv/YVR3iG+lEumYRjh5xFW65fMd
YOTjtCKOUwAg8L57ciN0ChpAxgA7lxQkizvyGSLeFjeejDyMOe5C3wuO1kNcuGot
/t8XJktvb5pIUINSF9KeyM7LA9QLA8KBjL7Yu0laHK/S6+19Bu3UG0MotsBNgWiC
4uWtlQ2Qu17X6r5kCtV0lTVB537bExJyrMiS9dZ1gTisxudItrvBL4i9luIUSPBK
ETk8ZZ7qBXzB5VidS9A2K7rpsF/298u9s27Tm6xoOHC+BrINuhZ0Wp9nAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNXwQ1/UtqY5Nb5FPXjsP/9piw4qMB8GA1UdIwQY
MBaAFLsNToWTe3oPJxBU0oYU8pNNTqUAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXcxT2haTjdlZzhuRUZUU2hoVHlrMDFPcFFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9kMTc1MjctY2Y5OC00ZDM3LTg2NmYt
OGU5Yjk4YTk5Y2RiLzEvMWZCRFg5UzJwamsxdmtVOWVPd19fMm1MRGlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9kMTc1MjctY2Y5OC00ZDM3LTg2NmYtOGU5Yjk4YTk5Y2Ri
LzEvdXcxT2haTjdlZzhuRUZUU2hoVHlrMDFPcFFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBT4dmMA0G
CSqGSIb3DQEBCwUAA4IBAQBpga66B3JDn5QrdFgFosSsSa3tNlbCRCr3gxZL0nYm
89D6JlA3oS/TCyeZbOckRc7Fjrq8ojaG9D/JfYhMKteHOsEATetedBmOvDfQ6OgN
FmaL04xsqK7sX8tyRVEi+RKRnmSjaF7pHzWJI9XqB+LSMiLP5i9k3c+TBCxi7Qc8
/GzuEu1uq4zi4jUovnqKz0Zrbf4YD77Ad/aU3BHUkXcikr31DcOYhFiaiAb+P4oL
VQaHaBeF+jkyPpMddgYvTMDp5rJPMShq8HV/2YhwmzUhVIV3smrf9Kv8H4zo1IKZ
JQNh/jDi9v2s1u7sdSeZDDZRObSKdPKAyJQ/jcMXA/aY
-----END CERTIFICATE-----
Generated at Thu Aug 15 12:59:25 2024 by rpki-client on console-fra.rpki-client.org