Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/4wW2JKlwCME1Br-1gzxqGI3zglE.roa
File: 4wW2JKlwCME1Br-1gzxqGI3zglE.roa (raw, json)
Hash identifier: d+WUhLSGBrHPOcdzJEdcqUHtC5wjkVHZMaVZATVUY4Y=
Subject key identifier: E3:05:B6:24:A9:70:08:C1:35:06:BF:B5:83:3C:6A:18:8D:F3:82:51
Certificate issuer: /CN=65a665b90069bd71850602e7400c529793269e39
Certificate serial: 018EFC4ED57DD75DED0D894AEC84EA92A72F
Authority key identifier: 65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/4wW2JKlwCME1Br-1gzxqGI3zglE.roa
Signing time: Sat 20 Apr 2024 16:20:08 +0000
ROA not before: Sat 20 Apr 2024 16:20:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58224
IP address blocks: 80.75.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Apr 2024 08:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:fc:4e:d5:7d:d7:5d:ed:0d:89:4a:ec:84:ea:92:a7:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65a665b90069bd71850602e7400c529793269e39
Validity
Not Before: Apr 20 16:20:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e305b624a97008c13506bfb5833c6a188df38251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e6:aa:27:29:f6:03:9a:3f:1d:e1:ab:b7:2a:
f0:80:ea:9a:53:58:3e:ca:12:57:84:e5:e9:8d:f7:
6b:69:c8:9c:ed:d8:0e:df:43:67:53:18:86:ee:cd:
82:4b:a3:90:fd:b7:bf:90:a4:0a:70:89:e4:0b:96:
b1:f5:6e:6f:4e:86:ba:0e:7f:12:96:e4:f7:52:67:
5c:62:cf:3f:f1:b4:9b:09:8f:f4:eb:c9:74:7a:17:
7d:18:3b:b0:a8:7f:69:43:f6:88:c1:40:cb:a8:ac:
72:5e:51:ed:4f:e6:78:8b:04:12:02:69:00:ac:35:
53:8f:45:21:40:47:58:67:be:32:56:64:11:be:31:
70:57:ad:3e:ff:93:99:1d:78:7c:9d:46:7b:4d:17:
ef:4c:12:5c:87:6f:5c:8a:80:6b:93:d4:67:bf:64:
da:d9:7d:a1:7f:e0:fd:9c:34:fb:26:8f:1c:77:4c:
e6:c3:cd:46:4f:53:9c:22:62:6a:74:1e:af:6c:e9:
c9:06:4e:aa:26:37:04:5d:95:7d:cc:fc:ca:45:0d:
35:a4:7f:a9:23:00:f2:0b:c0:70:f1:b8:e4:46:e8:
15:5d:64:2b:8c:ba:2b:28:b3:0c:8a:2c:b2:cf:a9:
ac:cd:ed:c7:17:b9:55:3a:e3:4a:74:b6:83:0a:b0:
3a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:05:B6:24:A9:70:08:C1:35:06:BF:B5:83:3C:6A:18:8D:F3:82:51
X509v3 Authority Key Identifier:
keyid:65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/4wW2JKlwCME1Br-1gzxqGI3zglE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.213.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:be:57:59:0b:22:40:a5:96:57:a4:b5:3a:42:7a:9b:bf:92:
bd:f4:67:c4:51:d8:f9:7a:69:2b:48:62:a2:46:16:d9:df:c5:
bb:03:07:82:7e:6f:6e:dd:d6:47:af:e0:e3:12:d1:1a:79:4f:
f8:16:72:32:2a:0d:73:72:7d:65:81:85:d9:72:40:f0:90:30:
37:30:30:b1:59:0b:14:27:f5:41:bd:6f:56:02:e4:bf:30:4a:
ec:64:1e:55:47:07:14:1d:4a:60:1b:5d:72:60:8e:c2:5a:e2:
8a:b0:7f:1f:02:63:f5:de:26:9d:85:87:8f:29:2c:be:ca:cf:
21:b8:e6:59:8f:9b:cf:de:17:41:e0:b2:c8:b9:20:c8:35:23:
51:f6:72:fe:8d:b9:b6:7e:8a:a2:b8:51:ca:ff:d9:b2:62:c7:
15:a5:13:db:c5:78:b5:30:1d:47:83:a3:10:f5:d4:ef:e8:cc:
1b:4b:6a:3c:d5:5f:f0:41:4d:de:fe:ed:8b:5c:7b:98:5c:fa:
18:d8:57:c1:3f:c5:d4:f1:2c:79:0f:0d:9e:fc:56:4f:ac:eb:
96:36:c9:54:ae:21:08:43:27:31:7b:97:38:fd:7e:89:40:04:
e0:f2:71:47:0b:92:19:c6:93:c5:21:bd:78:1b:28:44:71:10:
63:65:5c:b6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY78TtV9113tDYlK7ITqkqcvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1YTY2NWI5MDA2OWJkNzE4NTA2MDJlNzQwMGM1Mjk3OTMy
NjllMzkwHhcNMjQwNDIwMTYyMDA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzA1YjYyNGE5NzAwOGMxMzUwNmJmYjU4MzNjNmExODhkZjM4MjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiuaqJyn2A5o/HeGrtyrwgOqaU1g+
yhJXhOXpjfdracic7dgO30NnUxiG7s2CS6OQ/be/kKQKcInkC5ax9W5vToa6Dn8S
luT3UmdcYs8/8bSbCY/068l0ehd9GDuwqH9pQ/aIwUDLqKxyXlHtT+Z4iwQSAmkA
rDVTj0UhQEdYZ74yVmQRvjFwV60+/5OZHXh8nUZ7TRfvTBJch29cioBrk9Rnv2Ta
2X2hf+D9nDT7Jo8cd0zmw81GT1OcImJqdB6vbOnJBk6qJjcEXZV9zPzKRQ01pH+p
IwDyC8Bw8bjkRugVXWQrjLorKLMMiiyyz6msze3HF7lVOuNKdLaDCrA6bwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOMFtiSpcAjBNQa/tYM8ahiN84JRMB8GA1UdIwQY
MBaAFGWmZbkAab1xhQYC50AMUpeTJp45MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmFabHVRQnB2WEdGQmdMblFBeFNsNU1tbmprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lNmQ4ODAtMzkwMy00YTExLWJhMjct
Yzk0NTdlYzgxMTUxLzEvNHdXMkpLbHdDTUUxQnItMWd6eHFHSTN6Z2xFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9lNmQ4ODAtMzkwMy00YTExLWJhMjctYzk0NTdlYzgxMTUx
LzEvWmFabHVRQnB2WEdGQmdMblFBeFNsNU1tbmprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEvVMA0G
CSqGSIb3DQEBCwUAA4IBAQBMvldZCyJApZZXpLU6Qnqbv5K99GfEUdj5emkrSGKi
RhbZ38W7AweCfm9u3dZHr+DjEtEaeU/4FnIyKg1zcn1lgYXZckDwkDA3MDCxWQsU
J/VBvW9WAuS/MErsZB5VRwcUHUpgG11yYI7CWuKKsH8fAmP13iadhYePKSy+ys8h
uOZZj5vP3hdB4LLIuSDINSNR9nL+jbm2foqiuFHK/9myYscVpRPbxXi1MB1Hg6MQ
9dTv6MwbS2o81V/wQU3e/u2LXHuYXPoY2FfBP8XU8Sx5Dw2e/FZPrOuWNslUriEI
Qycxe5c4/X6JQATg8nFHC5IZxpPFIb14GyhEcRBjZVy2
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:09 2024 by rpki-client on console-ams.rpki-client.org