Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/7bef3d-5426-40cf-841e-471927a83ce3/1/er_OMjLzYIvJGnPFfM-sLt4ihNw.roa
File: er_OMjLzYIvJGnPFfM-sLt4ihNw.roa (raw, json)
Hash identifier: 43Sl6/15O3fW/67Ia8beXMW1gCL6WVkBFtKY/C9j5Z0=
Subject key identifier: 7A:BF:CE:32:32:F3:60:8B:C9:1A:73:C5:7C:CF:AC:2E:DE:22:84:DC
Certificate issuer: /CN=25d6277e9d5e5f0a73da371f30b5ac799927923a
Certificate serial: 01924C665898C96D0DEF1483AC0FB5C84E61
Authority key identifier: 25:D6:27:7E:9D:5E:5F:0A:73:DA:37:1F:30:B5:AC:79:99:27:92:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JdYnfp1eXwpz2jcfMLWseZknkjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/7bef3d-5426-40cf-841e-471927a83ce3/1/er_OMjLzYIvJGnPFfM-sLt4ihNw.roa
Signing time: Wed 02 Oct 2024 08:43:48 +0000
ROA not before: Wed 02 Oct 2024 08:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61218
IP address blocks: 91.206.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Nov 2024 12:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4c:66:58:98:c9:6d:0d:ef:14:83:ac:0f:b5:c8:4e:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25d6277e9d5e5f0a73da371f30b5ac799927923a
Validity
Not Before: Oct 2 08:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7abfce3232f3608bc91a73c57ccfac2ede2284dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d6:bc:ea:c9:87:9e:71:6c:d2:24:f0:c9:7a:
87:2b:a9:e0:01:64:80:9d:7c:34:ce:c4:4a:7d:26:
1c:b6:c1:e5:55:35:38:f0:a1:ba:b3:57:f8:35:d6:
3e:23:ae:2d:7c:88:6f:0e:34:63:b1:9c:97:f0:e3:
15:cb:d7:2a:e6:8b:4f:93:c0:f6:ec:ed:b1:a2:e3:
9a:03:5f:d4:06:36:3c:84:6e:c3:66:2e:83:71:d7:
af:b6:73:6c:80:8b:6b:db:5b:62:ea:ff:36:97:10:
cb:36:87:94:1b:8c:1c:c1:e1:89:b9:14:b2:a4:7c:
23:07:d2:4f:17:81:22:8b:d3:0e:a4:62:75:3f:2c:
42:a5:40:c2:2b:b3:69:8f:18:52:96:8d:cd:eb:ff:
c1:ad:7e:a1:d4:8a:ea:0e:4b:cc:af:43:1e:d1:30:
0c:e5:f2:19:0e:dc:67:e7:ad:b2:db:ec:71:78:9a:
66:df:88:71:e8:e2:3f:2b:9d:b5:71:26:4d:95:74:
f1:6a:71:d7:a5:03:19:8b:9d:1b:04:51:21:1a:21:
15:d5:ac:c3:55:28:5e:7e:1e:50:cc:14:38:e8:21:
8e:93:95:73:18:2a:cc:66:a7:1b:cb:4e:3b:d6:39:
ca:cf:b7:66:db:1e:d2:38:97:60:6f:c8:da:36:97:
dc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BF:CE:32:32:F3:60:8B:C9:1A:73:C5:7C:CF:AC:2E:DE:22:84:DC
X509v3 Authority Key Identifier:
keyid:25:D6:27:7E:9D:5E:5F:0A:73:DA:37:1F:30:B5:AC:79:99:27:92:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JdYnfp1eXwpz2jcfMLWseZknkjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/7bef3d-5426-40cf-841e-471927a83ce3/1/er_OMjLzYIvJGnPFfM-sLt4ihNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/7bef3d-5426-40cf-841e-471927a83ce3/1/JdYnfp1eXwpz2jcfMLWseZknkjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.254.0/24
Signature Algorithm: sha256WithRSAEncryption
13:d6:79:53:36:cf:cc:00:ab:39:d7:e5:f4:c3:c9:3e:95:0e:
4e:c0:92:c6:dc:3d:ca:77:ce:6f:d3:17:1e:14:bd:d3:ea:80:
e6:2a:85:72:35:43:14:25:60:2e:4b:91:7f:53:a3:33:0b:88:
aa:fa:1b:4f:44:7a:c2:06:0a:c5:3e:c3:fd:a2:05:ad:8f:8b:
cd:da:2c:e5:7d:1f:f1:74:2f:22:78:f6:81:77:1b:56:9e:eb:
cf:f1:da:bb:9f:ea:98:4b:8e:c3:4a:e9:ba:eb:05:08:cb:26:
cf:dc:18:9d:bc:a7:c2:76:f3:d2:d3:8d:f0:f0:bd:64:b4:1d:
64:14:e5:e9:02:1d:b6:b2:f8:ab:e9:cd:e0:9a:f3:ec:75:f5:
e8:b0:75:30:41:12:a4:c9:53:5d:0a:71:4e:bd:f9:8e:24:77:
ba:77:8c:d3:ea:d8:1c:66:cf:1a:e8:08:09:60:9a:dd:b8:ed:
9c:c0:8c:8b:36:cb:de:96:16:e5:da:a6:ee:65:26:40:4d:51:
ea:21:2e:5f:bb:95:f7:2d:11:05:32:2a:b5:94:0a:19:15:dc:
8e:d4:42:25:09:cc:01:b6:e0:06:5e:fe:3f:63:a4:da:e4:ab:
7a:45:fa:31:b1:86:ee:f5:be:1a:3d:53:af:74:f3:e1:26:62:
b9:1d:44:4a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJMZliYyW0N7xSDrA+1yE5hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1ZDYyNzdlOWQ1ZTVmMGE3M2RhMzcxZjMwYjVhYzc5OTky
NzkyM2EwHhcNMjQxMDAyMDg0MzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YWJmY2UzMjMyZjM2MDhiYzkxYTczYzU3Y2NmYWMyZWRlMjI4NGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0da86smHnnFs0iTwyXqHK6ngAWSA
nXw0zsRKfSYctsHlVTU48KG6s1f4NdY+I64tfIhvDjRjsZyX8OMVy9cq5otPk8D2
7O2xouOaA1/UBjY8hG7DZi6DcdevtnNsgItr21ti6v82lxDLNoeUG4wcweGJuRSy
pHwjB9JPF4Eii9MOpGJ1PyxCpUDCK7NpjxhSlo3N6//BrX6h1IrqDkvMr0Me0TAM
5fIZDtxn562y2+xxeJpm34hx6OI/K521cSZNlXTxanHXpQMZi50bBFEhGiEV1azD
VShefh5QzBQ46CGOk5VzGCrMZqcby0471jnKz7dm2x7SOJdgb8jaNpfcCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHq/zjIy82CLyRpzxXzPrC7eIoTcMB8GA1UdIwQY
MBaAFCXWJ36dXl8Kc9o3HzC1rHmZJ5I6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmRZbmZwMWVYd3B6MmpjZk1MV3NlWmtua2pvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS83YmVmM2QtNTQyNi00MGNmLTg0MWUt
NDcxOTI3YTgzY2UzLzEvZXJfT01qTHpZSXZKR25QRmZNLXNMdDRpaE53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS83YmVmM2QtNTQyNi00MGNmLTg0MWUtNDcxOTI3YTgzY2Uz
LzEvSmRZbmZwMWVYd3B6MmpjZk1MV3NlWmtua2pvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW87+MA0G
CSqGSIb3DQEBCwUAA4IBAQAT1nlTNs/MAKs51+X0w8k+lQ5OwJLG3D3Kd85v0xce
FL3T6oDmKoVyNUMUJWAuS5F/U6MzC4iq+htPRHrCBgrFPsP9ogWtj4vN2izlfR/x
dC8iePaBdxtWnuvP8dq7n+qYS47DSum66wUIyybP3BidvKfCdvPS043w8L1ktB1k
FOXpAh22svir6c3gmvPsdfXosHUwQRKkyVNdCnFOvfmOJHe6d4zT6tgcZs8a6AgJ
YJrduO2cwIyLNsvelhbl2qbuZSZATVHqIS5fu5X3LREFMiq1lAoZFdyO1EIlCcwB
tuAGXv4/Y6Ta5Kt6RfoxsYbu9b4aPVOvdPPhJmK5HURK
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:46 2025 by rpki-client