Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/Q8ecYDi11ELfV245PMz11TkO_uw.roa
File: Q8ecYDi11ELfV245PMz11TkO_uw.roa (raw, json)
Hash identifier: FmtXjqeY0X+WOKkvACiPMItQFPiYwWMLm8L9ehH0h2E=
Subject key identifier: 43:C7:9C:60:38:B5:D4:42:DF:57:6E:39:3C:CC:F5:D5:39:0E:FE:EC
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 0186748B171EB50C493472827999118A237F
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/Q8ecYDi11ELfV245PMz11TkO_uw.roa
Signing time: Tue 21 Feb 2023 15:15:17 +0000
ROA not before: Tue 21 Feb 2023 15:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210546
IP address blocks: 80.66.89.0/24 maxlen: 24
87.251.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 07:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:8b:17:1e:b5:0c:49:34:72:82:79:99:11:8a:23:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Feb 21 15:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43c79c6038b5d442df576e393cccf5d5390efeec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2f:72:44:69:93:ff:b4:50:8f:e5:74:29:3d:
77:c4:26:57:af:d2:e8:86:c4:6d:b9:81:e2:b2:ff:
71:05:3d:34:bb:dc:a9:eb:30:a4:ed:66:c5:35:25:
cf:9d:20:b3:70:c7:b6:5e:88:c6:8a:f7:ae:40:a8:
66:25:bd:00:99:a8:c5:1f:20:39:d2:f9:75:b1:8f:
c1:96:14:5b:a6:85:e0:db:e6:b9:65:72:14:03:d0:
7d:ba:34:63:6f:60:f7:e8:27:ea:fe:b3:db:a9:26:
5e:3a:55:8f:fe:fe:82:06:59:d9:0d:47:bc:8b:d2:
d4:74:25:14:cf:0e:94:bc:1e:50:90:74:e0:2e:39:
ca:d3:f4:4e:0f:c1:85:37:79:45:bd:31:0e:12:3d:
bb:e6:df:4a:a5:7b:5a:75:97:85:23:0f:b2:36:84:
4d:3e:79:49:0a:d4:f0:66:f4:ab:81:97:57:4b:62:
7a:22:d9:59:13:46:a7:d3:47:5a:f5:e7:39:74:32:
a4:32:2c:ac:d3:75:60:54:cb:07:4c:4f:19:37:ce:
51:6f:28:96:ab:c4:0e:e5:fe:ef:90:d5:49:cf:f4:
ec:9f:47:60:47:78:ee:cf:8b:20:64:d6:a0:16:07:
7f:9d:77:c3:b5:76:22:89:7d:4e:89:42:74:7c:6c:
de:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C7:9C:60:38:B5:D4:42:DF:57:6E:39:3C:CC:F5:D5:39:0E:FE:EC
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/Q8ecYDi11ELfV245PMz11TkO_uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.89.0/24
87.251.78.0/24
Signature Algorithm: sha256WithRSAEncryption
54:eb:f2:9a:30:e0:29:a1:5a:ca:40:bc:bc:7f:97:d1:06:ae:
65:e1:e9:0e:ea:f2:31:74:17:1a:76:04:62:a8:b6:fb:31:7b:
e7:8d:a0:58:32:c7:c2:22:d5:d7:cf:32:6b:4d:69:3e:54:aa:
ad:cb:04:78:2a:7b:73:7e:69:b8:ce:c0:fa:ec:2f:9d:ee:80:
25:64:16:46:f9:de:da:a1:aa:8b:37:2d:79:53:f5:02:20:e4:
9b:e8:b7:37:58:f1:c6:e2:e4:5b:59:30:27:20:cd:ee:e8:8f:
46:5b:f7:5d:19:86:9e:02:f3:00:56:a0:41:1f:91:ac:8f:30:
40:33:3f:60:cd:b3:bf:c8:ec:2c:bc:d5:e9:fe:21:7f:f0:53:
22:4f:bb:00:a5:f2:c7:23:6b:af:75:94:98:40:1e:2f:11:10:
91:98:c4:72:33:63:13:d1:71:89:ea:ee:4d:68:96:79:d8:b7:
34:a4:08:3c:5e:06:31:08:d3:3a:48:0c:27:82:8d:9d:05:be:
3b:2e:4a:cc:49:ff:5e:15:f6:4c:fa:3c:46:df:2d:59:bf:58:
52:f7:c0:c7:3b:71:5e:87:b2:72:6f:d1:5c:b0:64:8d:8b:30:
a3:97:9c:67:31:38:8b:e1:10:54:8f:59:0d:e4:5f:46:92:4a:
b6:09:60:0c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYZ0ixcetQxJNHKCeZkRiiN/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3M2I0YzEyNDhjNGJjZjIyYjA1NzdkZmNhOWIxNGQ5MDYz
YzI4YzAwHhcNMjMwMjIxMTUxNTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0M2M3OWM2MDM4YjVkNDQyZGY1NzZlMzkzY2NjZjVkNTM5MGVmZWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApS9yRGmT/7RQj+V0KT13xCZXr9Lo
hsRtuYHisv9xBT00u9yp6zCk7WbFNSXPnSCzcMe2XojGiveuQKhmJb0AmajFHyA5
0vl1sY/BlhRbpoXg2+a5ZXIUA9B9ujRjb2D36Cfq/rPbqSZeOlWP/v6CBlnZDUe8
i9LUdCUUzw6UvB5QkHTgLjnK0/ROD8GFN3lFvTEOEj275t9KpXtadZeFIw+yNoRN
PnlJCtTwZvSrgZdXS2J6ItlZE0an00da9ec5dDKkMiys03VgVMsHTE8ZN85RbyiW
q8QO5f7vkNVJz/Tsn0dgR3juz4sgZNagFgd/nXfDtXYiiX1OiUJ0fGzePQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEPHnGA4tdRC31duOTzM9dU5Dv7sMB8GA1UdIwQY
MBaAFAc7TBJIxLzyKwV338qbFNkGPCjAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnp0TUVrakV2UElyQlhmZnlwc1UyUVk4S01BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy82M2RiZTUtNWFhMy00ZjE5LThkYTQt
YThkMzYxY2U2NGFhLzEvUThlY1lEaTExRUxmVjI0NVBNejExVGtPX3V3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy82M2RiZTUtNWFhMy00ZjE5LThkYTQtYThkMzYxY2U2NGFh
LzEvQnp0TUVrakV2UElyQlhmZnlwc1UyUVk4S01BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUEJZAwQA
V/tOMA0GCSqGSIb3DQEBCwUAA4IBAQBU6/KaMOApoVrKQLy8f5fRBq5l4ekO6vIx
dBcadgRiqLb7MXvnjaBYMsfCItXXzzJrTWk+VKqtywR4Kntzfmm4zsD67C+d7oAl
ZBZG+d7aoaqLNy15U/UCIOSb6Lc3WPHG4uRbWTAnIM3u6I9GW/ddGYaeAvMAVqBB
H5GsjzBAMz9gzbO/yOwsvNXp/iF/8FMiT7sApfLHI2uvdZSYQB4vERCRmMRyM2MT
0XGJ6u5NaJZ52Lc0pAg8XgYxCNM6SAwngo2dBb47LkrMSf9eFfZM+jxG3y1Zv1hS
98DHO3Feh7Jyb9FcsGSNizCjl5xnMTiL4RBUj1kN5F9Gkkq2CWAM
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:50 2024 by rpki-client on console-ams.rpki-client.org