Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/q0Q29PnAp24NVzWAdEUw3iK-YzQ.roa
File: q0Q29PnAp24NVzWAdEUw3iK-YzQ.roa (raw, json)
Hash identifier: r434XAyIlcVvDZ4V4rKx/5FSCgRwHVyVnq9TF0CTSK8=
Subject key identifier: AB:44:36:F4:F9:C0:A7:6E:0D:57:35:80:74:45:30:DE:22:BE:63:34
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0193BD4B827633414FC970F1AB7C3E2162C1
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/q0Q29PnAp24NVzWAdEUw3iK-YzQ.roa
Signing time: Thu 12 Dec 2024 23:54:22 +0000
ROA not before: Thu 12 Dec 2024 23:54:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207388
IP address blocks: 80.244.15.0/24 maxlen: 24
212.46.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bd:4b:82:76:33:41:4f:c9:70:f1:ab:7c:3e:21:62:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Dec 12 23:54:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab4436f4f9c0a76e0d573580744530de22be6334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7a:fe:5f:f3:e9:13:9c:b0:97:ce:81:d9:07:
e9:44:ea:18:91:45:b4:09:3b:71:d9:6f:91:b9:18:
42:c8:c7:07:68:07:5c:04:78:a0:e7:aa:59:74:b1:
01:48:4f:1d:10:a6:56:1a:46:40:f4:de:df:26:ea:
47:55:5f:b9:91:1b:8d:d9:76:73:9a:c4:b2:0f:49:
74:16:1c:c2:d9:30:46:37:d6:1f:9c:b3:81:ef:54:
63:86:f4:5a:26:0a:65:e8:3c:e7:8e:09:25:0f:ae:
f4:be:b3:21:52:2a:36:06:05:13:30:0e:e8:c5:4b:
fb:c3:0c:c7:a0:1f:71:de:5c:1c:f2:20:3b:c5:39:
b9:c5:e0:bd:9f:e5:c2:05:37:8e:55:cb:f6:a7:1d:
0c:ce:80:91:36:9f:48:91:3b:90:b9:06:72:a8:03:
48:b2:04:1f:12:c1:ea:16:be:65:8f:fa:77:44:03:
79:d4:b1:6c:87:1e:1b:c9:88:97:c3:99:62:4c:e7:
d0:63:85:15:2d:72:ff:45:3d:f4:8c:6d:18:89:f2:
e5:45:b4:38:39:c2:3a:72:8b:8b:40:64:c0:73:61:
38:21:27:3d:33:b5:17:6e:94:c6:d9:cd:b8:8f:f9:
5d:96:75:f0:33:da:51:5d:ba:62:57:6a:09:5f:74:
43:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:44:36:F4:F9:C0:A7:6E:0D:57:35:80:74:45:30:DE:22:BE:63:34
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/q0Q29PnAp24NVzWAdEUw3iK-YzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.244.15.0/24
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
97:18:b9:fc:0d:45:d1:6c:d1:c0:fb:a2:a1:5f:01:90:4c:05:
7b:e3:1c:f9:11:02:48:f6:27:df:1b:3a:17:4d:4c:c5:97:33:
77:4f:7d:54:cb:6b:ad:65:c4:99:87:4a:a3:56:6f:5a:da:16:
c4:cf:03:1c:17:ff:5e:5c:90:b2:01:49:23:1f:20:e0:e3:7d:
90:d9:80:b8:00:de:a8:38:74:80:28:a0:27:9e:4a:f9:af:af:
3d:0a:3d:a5:f5:55:48:ef:8d:e7:57:39:e5:f9:c2:ee:71:03:
37:be:3a:a6:df:74:8b:4f:14:77:26:f7:f9:10:cd:c1:d7:5b:
39:d7:f6:70:df:4c:d5:bf:eb:a1:6a:3f:15:08:76:2c:af:2d:
ee:db:2b:5d:8d:38:00:25:6f:cb:24:37:d6:31:94:3f:b4:11:
d9:05:09:23:90:01:74:33:32:b8:78:f7:b6:20:45:0b:ef:1d:
90:22:7c:27:ae:3c:6c:b4:ae:76:85:9b:e9:ed:8d:16:56:ef:
c0:27:0f:61:50:2e:e6:71:23:c9:fc:3a:05:0f:49:8a:b5:bc:
20:58:96:d8:a7:4c:b2:b8:49:3d:6c:f7:dc:e1:5e:46:d4:a0:
42:47:e3:fd:7f:ab:79:f7:8f:97:5f:a2:91:e5:1d:58:a4:6d:
9d:4d:f7:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:40:36 2025 by rpki-client