Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/T6O1iId0iD6bcW40fY5kTYJG4bM.roa
File: T6O1iId0iD6bcW40fY5kTYJG4bM.roa (raw, json)
Hash identifier: x50O8xhs4GkmlQObjwnflcCmKHtaNQ+vS27dPerdMxg=
Subject key identifier: 4F:A3:B5:88:87:74:88:3E:9B:71:6E:34:7D:8E:64:4D:82:46:E1:B3
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 01936F20A2EF3E93D33381FF32C852BD0935
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/T6O1iId0iD6bcW40fY5kTYJG4bM.roa
Signing time: Wed 27 Nov 2024 19:37:09 +0000
ROA not before: Wed 27 Nov 2024 19:37:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 212.16.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Nov 2024 15:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6f:20:a2:ef:3e:93:d3:33:81:ff:32:c8:52:bd:09:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Nov 27 19:37:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fa3b5888774883e9b716e347d8e644d8246e1b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:32:1a:6b:e0:c0:08:05:55:0c:b0:27:eb:9e:
c4:51:05:83:be:10:df:54:4a:30:7d:93:95:1a:21:
12:5d:0b:73:73:d6:b8:de:cd:46:54:5d:f5:e4:c7:
f4:88:63:8f:0c:e2:49:dc:3d:cc:cb:b8:19:36:ba:
ba:9c:43:8e:83:58:cd:13:92:ef:c9:44:1a:6e:83:
e4:d5:ac:de:c0:9d:04:ac:16:d8:8f:d7:2e:19:70:
65:18:69:55:7f:c8:78:aa:dd:97:f7:45:bb:b9:68:
1d:7e:d6:fd:04:00:e6:0b:b9:07:b2:40:83:24:95:
c9:15:4d:87:ec:99:37:2d:ed:b6:15:24:bf:ba:2e:
d5:14:ff:c3:fa:d0:b1:4a:9d:9c:db:e4:0f:60:65:
f4:52:de:53:f7:7c:18:60:00:17:69:3b:c3:38:1c:
b8:8c:6b:97:05:3e:43:8d:78:60:a9:0e:3d:99:ce:
1a:ca:f4:47:bf:4e:97:4d:a3:e0:63:d0:3a:93:66:
fd:75:8c:16:b1:7e:5b:32:58:54:eb:85:d8:f9:05:
ac:b6:ad:0e:b2:ef:67:0e:c9:01:dd:48:14:57:fb:
1c:61:a2:38:01:f2:45:c2:1d:66:3e:8b:95:17:9a:
a9:ee:14:bd:76:7e:a3:dc:be:a6:44:2f:30:b2:fa:
c4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A3:B5:88:87:74:88:3E:9B:71:6E:34:7D:8E:64:4D:82:46:E1:B3
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/T6O1iId0iD6bcW40fY5kTYJG4bM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.79.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:4e:91:1a:07:bd:7b:c9:0c:31:d2:95:6e:ca:52:22:8b:3e:
4a:22:65:30:a1:fc:bb:76:ae:99:e2:42:93:ea:e8:66:c9:42:
d5:a2:52:b4:9c:22:88:c9:aa:a7:0d:ac:66:1d:08:60:ab:fb:
67:d7:67:34:dc:a9:fc:c3:b4:fe:f3:28:4a:9b:1a:2c:4f:e4:
22:7b:20:50:50:e5:1d:4e:49:82:76:5c:4d:af:46:75:9a:a2:
03:a8:ca:59:b8:9c:6c:ad:9b:6e:b1:57:16:22:39:25:36:a2:
6a:49:4d:a9:42:e9:98:41:4b:da:7d:f6:14:e6:26:4f:90:ac:
b2:39:b7:d7:ae:b9:bb:ff:f5:05:25:e4:e9:28:a2:40:d7:00:
57:1c:a6:2d:3b:5d:07:45:69:be:44:59:20:c0:ab:be:c0:f8:
7e:35:90:2a:11:7d:7f:54:f1:bb:0d:46:52:57:33:cd:45:81:
a3:5b:9d:2f:ea:b0:0b:b0:37:f8:51:84:cc:f7:0c:5d:f7:bb:
60:de:13:83:cc:c8:89:97:b1:d5:1e:3d:8a:1e:5d:ae:67:40:
c1:65:62:eb:b3:77:ea:63:d6:f1:2c:a6:24:32:b3:1d:de:99:
ac:db:50:0e:77:72:d0:3f:6e:1f:a1:4b:d2:70:cd:2b:cf:20:
71:fa:a7:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNvIKLvPpPTM4H/MshSvQk1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjQxMTI3MTkzNzA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZmEzYjU4ODg3NzQ4ODNlOWI3MTZlMzQ3ZDhlNjQ0ZDgyNDZlMWIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjIaa+DACAVVDLAn657EUQWDvhDf
VEowfZOVGiESXQtzc9a43s1GVF315Mf0iGOPDOJJ3D3My7gZNrq6nEOOg1jNE5Lv
yUQaboPk1azewJ0ErBbYj9cuGXBlGGlVf8h4qt2X90W7uWgdftb9BADmC7kHskCD
JJXJFU2H7Jk3Le22FSS/ui7VFP/D+tCxSp2c2+QPYGX0Ut5T93wYYAAXaTvDOBy4
jGuXBT5DjXhgqQ49mc4ayvRHv06XTaPgY9A6k2b9dYwWsX5bMlhU64XY+QWstq0O
su9nDskB3UgUV/scYaI4AfJFwh1mPouVF5qp7hS9dn6j3L6mRC8wsvrENQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE+jtYiHdIg+m3FuNH2OZE2CRuGzMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvVDZPMWlJZDBpRDZiY1c0MGZZNWtUWUpHNGJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BBPMA0G
CSqGSIb3DQEBCwUAA4IBAQC5TpEaB717yQwx0pVuylIiiz5KImUwofy7dq6Z4kKT
6uhmyULVolK0nCKIyaqnDaxmHQhgq/tn12c03Kn8w7T+8yhKmxosT+QieyBQUOUd
TkmCdlxNr0Z1mqIDqMpZuJxsrZtusVcWIjklNqJqSU2pQumYQUvaffYU5iZPkKyy
ObfXrrm7//UFJeTpKKJA1wBXHKYtO10HRWm+RFkgwKu+wPh+NZAqEX1/VPG7DUZS
VzPNRYGjW50v6rALsDf4UYTM9wxd97tg3hODzMiJl7HVHj2KHl2uZ0DBZWLrs3fq
Y9bxLKYkMrMd3pms21AOd3LQP24foUvScM0rzyBx+qdk
-----END CERTIFICATE-----
Generated at Thu Apr 17 08:33:33 2025 by rpki-client