Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/DugBfGX9zdj-t4NiQQVfRJuQOsM.roa
File: DugBfGX9zdj-t4NiQQVfRJuQOsM.roa (raw, json)
Hash identifier: VfaThryKGmiRqW0uy5WZ5Gsk5jz8jwLGDDWBnuxtjmc=
Subject key identifier: 0E:E8:01:7C:65:FD:CD:D8:FE:B7:83:62:41:05:5F:44:9B:90:3A:C3
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018C67AFD762645A31307AD346B4C8C97B73
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/DugBfGX9zdj-t4NiQQVfRJuQOsM.roa
Signing time: Thu 14 Dec 2023 09:37:06 +0000
ROA not before: Thu 14 Dec 2023 09:37:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396356
IP address blocks: 89.251.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:af:d7:62:64:5a:31:30:7a:d3:46:b4:c8:c9:7b:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Dec 14 09:37:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ee8017c65fdcdd8feb7836241055f449b903ac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ed:b7:8e:7e:c3:b1:24:b3:ab:77:85:d2:2f:
f0:10:0c:c5:14:45:0d:28:95:b3:e2:15:99:5d:a8:
38:0d:d1:a4:15:56:f6:8c:9b:66:0c:81:89:b0:bc:
36:3a:fd:bc:93:e6:57:e6:f7:03:8f:cb:51:da:9d:
30:2c:0d:cc:d4:c7:bd:e3:07:4f:8f:6c:0b:da:ec:
65:76:7f:87:af:ee:df:8a:41:3d:70:d0:6d:83:da:
4d:42:99:c1:e3:15:f9:06:4d:aa:0f:cf:74:1d:e4:
6b:af:73:1d:fa:d0:ef:1a:44:21:46:db:e6:03:8e:
3b:15:80:2d:7b:b5:98:9b:b8:ab:b0:cb:51:6f:b4:
1b:6b:73:3c:6b:bf:7a:ca:6e:ac:2c:44:de:21:1f:
af:11:93:0a:62:24:4e:c0:4f:be:01:83:87:78:6b:
8b:ea:ed:35:17:3f:2b:7b:08:3a:e9:cf:fa:e1:bd:
45:10:cc:7c:08:63:a6:22:a0:d0:94:65:9b:98:c9:
a5:cd:5c:50:05:07:8d:7c:fa:39:36:12:33:7d:05:
44:ea:63:5c:35:d4:08:29:ce:89:e4:b0:2e:cc:fe:
1a:f5:5d:78:9b:80:3c:11:7c:cc:6c:cf:9f:cf:34:
3d:a4:97:a8:a1:21:ad:b2:65:6f:8d:0b:cf:1c:1d:
f4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E8:01:7C:65:FD:CD:D8:FE:B7:83:62:41:05:5F:44:9B:90:3A:C3
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/DugBfGX9zdj-t4NiQQVfRJuQOsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.25.0/24
Signature Algorithm: sha256WithRSAEncryption
57:14:ad:a2:f6:ef:db:22:e9:1f:b7:4a:21:4c:4b:ab:28:b1:
35:63:a1:a5:47:31:72:31:20:c1:af:48:60:79:7c:f6:52:6f:
9e:92:1d:22:c0:70:25:c7:26:47:d2:50:1b:97:00:f2:49:85:
89:66:51:88:2a:bc:e0:25:d1:c4:88:2d:37:c4:fc:03:db:2e:
a8:79:e5:b2:6f:99:91:b4:29:e0:13:e4:a7:7e:f8:40:7c:17:
eb:3c:fb:c3:43:fa:d9:c7:61:35:67:cb:ca:79:da:f5:13:ea:
22:5c:53:aa:9b:c8:e0:d7:ba:f5:90:9b:56:23:3f:b2:5d:02:
0e:9f:60:1f:0e:7e:9a:f7:fb:0f:9a:ba:a5:08:cc:de:f2:2b:
17:d5:ac:17:72:04:cb:86:b4:09:e5:34:95:cc:c5:6d:39:c8:
52:9b:57:12:a5:c1:74:7f:ca:c9:f8:21:18:2a:7c:c9:27:08:
aa:8d:2a:35:c4:b5:fc:af:88:fe:74:f7:12:f1:aa:ca:7c:b3:
75:f5:7b:9e:44:3a:76:4d:44:4e:d8:3b:72:01:f9:6b:45:20:
12:84:ba:45:42:66:8c:e0:6f:d9:cc:61:b2:3c:09:8e:a6:8d:
47:c8:96:43:51:6b:6b:95:31:bb:c9:0b:b2:f7:0c:7d:38:63:
83:54:8d:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxnr9diZFoxMHrTRrTIyXtzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjMxMjE0MDkzNzA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZWU4MDE3YzY1ZmRjZGQ4ZmViNzgzNjI0MTA1NWY0NDliOTAzYWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAje23jn7DsSSzq3eF0i/wEAzFFEUN
KJWz4hWZXag4DdGkFVb2jJtmDIGJsLw2Ov28k+ZX5vcDj8tR2p0wLA3M1Me94wdP
j2wL2uxldn+Hr+7fikE9cNBtg9pNQpnB4xX5Bk2qD890HeRrr3Md+tDvGkQhRtvm
A447FYAte7WYm7irsMtRb7Qba3M8a796ym6sLETeIR+vEZMKYiROwE++AYOHeGuL
6u01Fz8rewg66c/64b1FEMx8CGOmIqDQlGWbmMmlzVxQBQeNfPo5NhIzfQVE6mNc
NdQIKc6J5LAuzP4a9V14m4A8EXzMbM+fzzQ9pJeooSGtsmVvjQvPHB302wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA7oAXxl/c3Y/reDYkEFX0SbkDrDMB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvRHVnQmZHWDl6ZGotdDROaVFRVmZSSnVRT3NNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWfsZMA0G
CSqGSIb3DQEBCwUAA4IBAQBXFK2i9u/bIukft0ohTEurKLE1Y6GlRzFyMSDBr0hg
eXz2Um+ekh0iwHAlxyZH0lAblwDySYWJZlGIKrzgJdHEiC03xPwD2y6oeeWyb5mR
tCngE+SnfvhAfBfrPPvDQ/rZx2E1Z8vKedr1E+oiXFOqm8jg17r1kJtWIz+yXQIO
n2AfDn6a9/sPmrqlCMze8isX1awXcgTLhrQJ5TSVzMVtOchSm1cSpcF0f8rJ+CEY
KnzJJwiqjSo1xLX8r4j+dPcS8arKfLN19XueRDp2TURO2DtyAflrRSAShLpFQmaM
4G/ZzGGyPAmOpo1HyJZDUWtrlTG7yQuy9wx9OGODVI0N
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org