Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/15fff4-966b-4e0a-abac-05d58f0cb88c/1/pm_FZRp7QpakuGBUA4oWClo9Wm4.roa
File: pm_FZRp7QpakuGBUA4oWClo9Wm4.roa (raw, json)
Hash identifier: d9UpwtG0d6qlc6A65yQpR4RlMe2SAyU2FIPN7C/YIxA=
Subject key identifier: A6:6F:C5:65:1A:7B:42:96:A4:B8:60:54:03:8A:16:0A:5A:3D:5A:6E
Certificate issuer: /CN=d93a54f02f49f45ad5d73e5551d096181bce3f6e
Certificate serial: 01932168675982958CF4A49C704CBDA3950D
Authority key identifier: D9:3A:54:F0:2F:49:F4:5A:D5:D7:3E:55:51:D0:96:18:1B:CE:3F:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2TpU8C9J9FrV1z5VUdCWGBvOP24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/15fff4-966b-4e0a-abac-05d58f0cb88c/1/pm_FZRp7QpakuGBUA4oWClo9Wm4.roa
Signing time: Tue 12 Nov 2024 17:25:10 +0000
ROA not before: Tue 12 Nov 2024 17:25:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216246
IP address blocks: 178.20.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:21:68:67:59:82:95:8c:f4:a4:9c:70:4c:bd:a3:95:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93a54f02f49f45ad5d73e5551d096181bce3f6e
Validity
Not Before: Nov 12 17:25:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a66fc5651a7b4296a4b86054038a160a5a3d5a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:3f:71:98:d6:98:16:2a:7c:e2:09:4d:0d:6b:
13:88:1e:82:80:63:f9:fa:c7:83:76:35:9b:a7:e6:
71:6f:78:e7:92:2a:a4:03:2b:05:c3:a3:0b:06:fa:
1f:5f:56:12:95:09:d4:de:d2:45:02:28:84:87:6d:
d6:96:6d:d9:e5:de:71:9b:87:fe:37:50:eb:ba:e9:
92:74:a4:07:23:d5:8f:82:a6:a8:d1:5f:67:48:a4:
69:e3:04:8e:b2:60:57:0e:ef:33:0c:59:50:c8:b4:
2b:7c:fc:76:7c:a3:cc:a4:f9:cb:d6:30:e2:29:51:
47:7b:a3:3a:e5:a1:93:22:16:d6:2f:ac:7e:37:6b:
23:13:d4:96:bd:03:bb:16:2e:ad:57:46:0f:36:ec:
86:ef:f0:35:66:1f:b3:94:a6:24:ad:3d:c0:01:14:
35:b4:ca:88:c8:81:e0:02:ee:78:45:84:53:85:c4:
7b:fd:79:4e:0a:9c:61:57:c2:7b:cb:4e:21:1d:b4:
39:ae:94:ba:6a:c3:98:35:23:df:57:02:a8:a3:d4:
b5:54:4c:90:c3:61:83:8b:c4:df:be:ff:05:fd:b8:
c0:63:ca:2c:bb:87:24:6a:89:3f:63:ad:27:da:2e:
93:5d:5d:ad:78:20:79:de:a6:2a:da:88:b5:f8:b1:
44:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6F:C5:65:1A:7B:42:96:A4:B8:60:54:03:8A:16:0A:5A:3D:5A:6E
X509v3 Authority Key Identifier:
keyid:D9:3A:54:F0:2F:49:F4:5A:D5:D7:3E:55:51:D0:96:18:1B:CE:3F:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2TpU8C9J9FrV1z5VUdCWGBvOP24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/15fff4-966b-4e0a-abac-05d58f0cb88c/1/pm_FZRp7QpakuGBUA4oWClo9Wm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/15fff4-966b-4e0a-abac-05d58f0cb88c/1/2TpU8C9J9FrV1z5VUdCWGBvOP24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.20.208.0/24
Signature Algorithm: sha256WithRSAEncryption
e3:1e:8c:e6:08:e8:89:06:f3:1c:c7:c3:46:53:9b:85:31:a9:
52:fb:9e:04:a9:48:a2:6c:3e:af:28:50:43:c3:1c:00:ec:6c:
1b:70:b1:b7:58:b1:45:5c:a8:43:36:44:c9:50:c9:70:00:b8:
cf:9d:8b:5b:14:36:49:9a:c2:19:f4:47:66:4d:f4:23:36:28:
c3:3f:01:e2:d8:82:97:f3:a0:ca:3d:c1:d4:00:e7:02:cc:c2:
86:cd:bd:2c:d9:9e:52:af:89:a8:45:64:dc:e5:f5:5d:52:08:
d3:07:49:a5:89:88:1c:20:e5:22:d9:3d:c4:c8:11:be:d5:26:
35:f7:6e:20:6e:03:88:f8:a1:6e:11:95:19:7f:96:f1:42:fc:
19:52:1c:a7:c9:70:78:3b:4a:1b:eb:73:95:c1:77:13:1c:a9:
cd:8d:9b:2c:ce:9d:be:6d:7e:da:12:e5:21:fa:2e:e1:54:0d:
87:4a:80:a3:3f:cc:ad:90:f8:5e:93:84:15:8e:8a:fa:35:66:
fd:5b:90:b2:f7:41:2d:b0:76:23:7e:58:b1:31:6a:98:b8:e4:
f9:45:0d:84:34:72:f4:2a:14:e7:9b:9e:de:d2:f8:04:16:3e:
c6:37:55:36:e7:38:0f:f2:f1:05:7c:6a:74:de:0b:14:f6:e1:
11:be:69:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZMhaGdZgpWM9KSccEy9o5UNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5M2E1NGYwMmY0OWY0NWFkNWQ3M2U1NTUxZDA5NjE4MWJj
ZTNmNmUwHhcNMjQxMTEyMTcyNTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjZmYzU2NTFhN2I0Mjk2YTRiODYwNTQwMzhhMTYwYTVhM2Q1YTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArT9xmNaYFip84glNDWsTiB6CgGP5
+seDdjWbp+Zxb3jnkiqkAysFw6MLBvofX1YSlQnU3tJFAiiEh23Wlm3Z5d5xm4f+
N1DruumSdKQHI9WPgqao0V9nSKRp4wSOsmBXDu8zDFlQyLQrfPx2fKPMpPnL1jDi
KVFHe6M65aGTIhbWL6x+N2sjE9SWvQO7Fi6tV0YPNuyG7/A1Zh+zlKYkrT3AARQ1
tMqIyIHgAu54RYRThcR7/XlOCpxhV8J7y04hHbQ5rpS6asOYNSPfVwKoo9S1VEyQ
w2GDi8Tfvv8F/bjAY8osu4ckaok/Y60n2i6TXV2teCB53qYq2oi1+LFEFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKZvxWUae0KWpLhgVAOKFgpaPVpuMB8GA1UdIwQY
MBaAFNk6VPAvSfRa1dc+VVHQlhgbzj9uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlRwVThDOUo5RnJWMXo1VlVkQ1dHQnZPUDI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8xNWZmZjQtOTY2Yi00ZTBhLWFiYWMt
MDVkNThmMGNiODhjLzEvcG1fRlpScDdRcGFrdUdCVUE0b1dDbG85V200LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8xNWZmZjQtOTY2Yi00ZTBhLWFiYWMtMDVkNThmMGNiODhj
LzEvMlRwVThDOUo5RnJWMXo1VlVkQ1dHQnZPUDI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAshTQMA0G
CSqGSIb3DQEBCwUAA4IBAQDjHozmCOiJBvMcx8NGU5uFMalS+54EqUiibD6vKFBD
wxwA7GwbcLG3WLFFXKhDNkTJUMlwALjPnYtbFDZJmsIZ9EdmTfQjNijDPwHi2IKX
86DKPcHUAOcCzMKGzb0s2Z5Sr4moRWTc5fVdUgjTB0mliYgcIOUi2T3EyBG+1SY1
924gbgOI+KFuEZUZf5bxQvwZUhynyXB4O0ob63OVwXcTHKnNjZsszp2+bX7aEuUh
+i7hVA2HSoCjP8ytkPhek4QVjor6NWb9W5Cy90EtsHYjflixMWqYuOT5RQ2ENHL0
KhTnm57e0vgEFj7GN1U25zgP8vEFfGp03gsU9uERvmn4
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:31:34 2025 by rpki-client