Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/632dc0-4d2d-40c2-ab65-c38b1f9d457c/1/50g_BqzFWNHRUSfnbdxKXvduGXc.roa
File: 50g_BqzFWNHRUSfnbdxKXvduGXc.roa (raw, json)
Hash identifier: thKynvdnaz5ks8gyHs92QlgDpeWBWL5OEeyB0ZyPK7s=
Subject key identifier: E7:48:3F:06:AC:C5:58:D1:D1:51:27:E7:6D:DC:4A:5E:F7:6E:19:77
Certificate issuer: /CN=bc35904e24db0e990495a3445e77d1136ed618d7
Certificate serial: 0193A231F18B672EC59BCB21F3966F38F498
Authority key identifier: BC:35:90:4E:24:DB:0E:99:04:95:A3:44:5E:77:D1:13:6E:D6:18:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vDWQTiTbDpkElaNEXnfRE27WGNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/632dc0-4d2d-40c2-ab65-c38b1f9d457c/1/50g_BqzFWNHRUSfnbdxKXvduGXc.roa
Signing time: Sat 07 Dec 2024 17:36:42 +0000
ROA not before: Sat 07 Dec 2024 17:36:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 213.165.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Dec 2024 07:22:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:a2:31:f1:8b:67:2e:c5:9b:cb:21:f3:96:6f:38:f4:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc35904e24db0e990495a3445e77d1136ed618d7
Validity
Not Before: Dec 7 17:36:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7483f06acc558d1d15127e76ddc4a5ef76e1977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:61:e5:c2:24:24:db:71:54:a0:01:d5:3f:71:
f6:48:60:d2:1f:ce:7e:c7:2f:bc:7a:2c:f7:a8:60:
85:2f:38:0f:9f:65:73:9c:59:04:f8:ed:16:40:66:
a2:03:55:36:5c:78:e8:5e:09:f4:41:f7:eb:8d:d3:
ed:77:8c:cb:47:5b:19:a0:54:c4:06:15:8c:93:6c:
12:69:8e:48:2e:ab:5e:5e:82:29:c3:de:c3:30:7e:
ec:98:22:03:3d:00:1b:46:fb:42:f4:a7:72:7f:5e:
66:c8:c6:43:fe:13:53:52:de:d5:17:5e:4b:83:23:
81:d3:93:9a:1b:af:02:fb:f0:88:d4:73:f3:af:76:
ec:ca:5f:3d:cc:35:cc:74:3c:24:15:43:2a:39:72:
e2:a2:b9:e7:2a:eb:89:28:f6:4f:0e:20:7d:60:ea:
79:ab:4c:db:d2:df:b0:ee:f6:0e:08:55:6b:75:53:
b8:50:fa:02:fa:09:bc:1c:df:85:75:80:f1:68:a8:
ff:f1:64:82:af:bf:c7:19:58:5b:07:e2:11:56:28:
52:62:95:c6:a9:f7:c3:01:49:1e:2f:4a:69:57:70:
79:08:bd:98:54:7b:92:1e:b3:c9:88:7c:c7:a9:83:
a3:75:bd:f6:3b:cf:7c:86:96:8d:6e:4e:2c:5e:eb:
b0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:48:3F:06:AC:C5:58:D1:D1:51:27:E7:6D:DC:4A:5E:F7:6E:19:77
X509v3 Authority Key Identifier:
keyid:BC:35:90:4E:24:DB:0E:99:04:95:A3:44:5E:77:D1:13:6E:D6:18:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vDWQTiTbDpkElaNEXnfRE27WGNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/632dc0-4d2d-40c2-ab65-c38b1f9d457c/1/50g_BqzFWNHRUSfnbdxKXvduGXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/632dc0-4d2d-40c2-ab65-c38b1f9d457c/1/vDWQTiTbDpkElaNEXnfRE27WGNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.165.32.0/24
Signature Algorithm: sha256WithRSAEncryption
43:eb:e3:56:11:71:ef:a0:d8:f2:aa:80:0a:d8:bd:6c:64:a6:
02:d3:87:d5:12:53:36:84:26:d2:56:9e:fd:db:8f:4a:a5:fb:
9b:9f:ea:98:f7:f2:0c:78:fb:4d:62:6a:bd:7f:fc:e2:94:0f:
33:a1:81:16:f2:8e:5c:63:40:f9:d9:df:eb:92:0c:f1:d4:c9:
72:f1:10:d5:b2:9d:78:d3:d6:e0:ab:07:bd:88:6e:84:9c:db:
e6:ae:61:4e:d1:3a:ab:44:f8:ea:48:cb:77:c7:98:da:f1:33:
67:ab:9a:4f:83:58:22:b4:c0:90:83:be:0e:e6:51:01:ad:05:
2d:02:e2:35:1f:10:8a:34:ec:f4:4e:c7:22:01:38:a5:cf:59:
61:33:6b:77:6c:82:e2:31:b6:f5:f6:10:90:3a:da:61:4f:08:
9e:1a:15:31:8f:5e:e0:ad:34:a8:63:e6:40:ce:d0:a1:97:89:
bc:c8:8f:96:b8:93:32:5b:6e:ef:16:9b:09:22:f8:fc:b5:b5:
cb:d3:c9:b2:67:af:62:af:76:c1:ce:98:d3:69:f9:b1:58:7a:
3f:b3:82:84:6e:a1:90:0b:6a:61:41:f7:0e:38:35:98:c4:02:
34:f7:13:25:34:d0:2a:1d:59:77:91:8a:29:76:0b:16:07:be:
f3:8f:95:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOiMfGLZy7Fm8sh85ZvOPSYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjMzU5MDRlMjRkYjBlOTkwNDk1YTM0NDVlNzdkMTEzNmVk
NjE4ZDcwHhcNMjQxMjA3MTczNjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzQ4M2YwNmFjYzU1OGQxZDE1MTI3ZTc2ZGRjNGE1ZWY3NmUxOTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkGHlwiQk23FUoAHVP3H2SGDSH85+
xy+8eiz3qGCFLzgPn2VznFkE+O0WQGaiA1U2XHjoXgn0QffrjdPtd4zLR1sZoFTE
BhWMk2wSaY5ILqteXoIpw97DMH7smCIDPQAbRvtC9Kdyf15myMZD/hNTUt7VF15L
gyOB05OaG68C+/CI1HPzr3bsyl89zDXMdDwkFUMqOXLiornnKuuJKPZPDiB9YOp5
q0zb0t+w7vYOCFVrdVO4UPoC+gm8HN+FdYDxaKj/8WSCr7/HGVhbB+IRVihSYpXG
qffDAUkeL0ppV3B5CL2YVHuSHrPJiHzHqYOjdb32O898hpaNbk4sXuuwMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOdIPwasxVjR0VEn523cSl73bhl3MB8GA1UdIwQY
MBaAFLw1kE4k2w6ZBJWjRF530RNu1hjXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkRXUVRpVGJEcGtFbGFORVhuZlJFMjdXR05jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82MzJkYzAtNGQyZC00MGMyLWFiNjUt
YzM4YjFmOWQ0NTdjLzEvNTBnX0JxekZXTkhSVVNmbmJkeEtYdmR1R1hjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy82MzJkYzAtNGQyZC00MGMyLWFiNjUtYzM4YjFmOWQ0NTdj
LzEvdkRXUVRpVGJEcGtFbGFORVhuZlJFMjdXR05jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1aUgMA0G
CSqGSIb3DQEBCwUAA4IBAQBD6+NWEXHvoNjyqoAK2L1sZKYC04fVElM2hCbSVp79
249Kpfubn+qY9/IMePtNYmq9f/zilA8zoYEW8o5cY0D52d/rkgzx1Mly8RDVsp14
09bgqwe9iG6EnNvmrmFO0TqrRPjqSMt3x5ja8TNnq5pPg1gitMCQg74O5lEBrQUt
AuI1HxCKNOz0TsciATilz1lhM2t3bILiMbb19hCQOtphTwieGhUxj17grTSoY+ZA
ztChl4m8yI+WuJMyW27vFpsJIvj8tbXL08myZ69ir3bBzpjTafmxWHo/s4KEbqGQ
C2phQfcOODWYxAI09xMlNNAqHVl3kYopdgsWB77zj5Xs
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:53:28 2025 by rpki-client