Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0X2SyDhQivaR_CEli_ighysG_Gs.roa
File: 0X2SyDhQivaR_CEli_ighysG_Gs.roa (raw, json)
Hash identifier: tHkIjQWiiygkLXcemFxuY3INGRj11CFcfajv3zZ0uyY=
Subject key identifier: D1:7D:92:C8:38:50:8A:F6:91:FC:21:25:8B:F8:A0:87:2B:06:FC:6B
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 019271D846444F5713BA6E33BC76273E6E6F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0X2SyDhQivaR_CEli_ighysG_Gs.roa
Signing time: Wed 09 Oct 2024 15:14:12 +0000
ROA not before: Wed 09 Oct 2024 15:14:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50053
IP address blocks: 94.177.51.0/24 maxlen: 24
188.240.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:54:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:d8:46:44:4f:57:13:ba:6e:33:bc:76:27:3e:6e:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 9 15:14:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d17d92c838508af691fc21258bf8a0872b06fc6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:26:3b:3a:88:d2:65:52:2c:89:db:0e:ed:8d:
bd:cd:ca:05:0f:a7:00:70:82:21:28:e6:e6:02:81:
bc:6d:4e:5c:ef:aa:d4:bd:56:fb:4a:01:96:17:41:
a5:82:6e:f9:a6:d2:03:e8:86:b5:8d:95:98:99:6e:
a4:3e:ff:cf:c3:24:5f:f5:12:0a:81:ef:d6:45:91:
2f:f4:78:ee:69:98:04:b0:d3:a7:ac:66:8b:10:3d:
df:65:fb:59:70:d6:06:d6:b6:36:59:49:e6:ab:6f:
dc:0e:16:b5:c5:0e:dd:72:a9:ad:a3:a6:d5:80:66:
09:5b:0e:2f:ed:36:ae:0d:92:69:7f:4c:81:17:4d:
c6:84:86:3d:13:e8:d8:fd:ff:30:15:2b:f5:7d:1c:
cb:a1:1f:fa:2c:c0:01:8f:e0:9d:03:f2:63:5e:43:
60:8d:33:21:9f:b8:81:55:3b:63:5d:b8:c6:3b:49:
eb:4e:3c:a7:21:07:74:b9:0d:d0:01:fc:d6:ab:c9:
f5:df:ce:8b:26:09:03:d8:39:ef:39:ff:21:9d:d3:
98:85:aa:01:62:51:97:e6:25:2d:fb:5c:42:fa:d1:
a6:1a:7f:3d:33:f8:90:e7:ea:07:94:aa:54:8f:90:
ba:a2:42:fb:43:53:ba:2e:42:c2:30:b2:da:42:31:
0f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:7D:92:C8:38:50:8A:F6:91:FC:21:25:8B:F8:A0:87:2B:06:FC:6B
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0X2SyDhQivaR_CEli_ighysG_Gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.51.0/24
188.240.213.0/24
Signature Algorithm: sha256WithRSAEncryption
34:a0:b1:73:f7:8e:49:e5:d4:23:3b:3b:2d:fd:e6:7d:6b:f0:
5e:ef:1b:85:cb:c1:a9:47:09:5c:30:6a:ef:9b:39:f6:b9:eb:
f0:da:8e:2d:a6:f9:e5:ce:1c:c8:e8:ee:82:d2:f5:df:1c:95:
e2:de:f3:b3:13:3c:5a:d4:b1:f7:ef:c7:64:58:89:be:e1:88:
53:f5:40:b7:64:b2:0c:d5:e7:9c:8a:f1:ac:12:32:e7:3c:a8:
d2:36:e9:b4:13:32:50:93:42:54:9a:68:29:82:c5:7a:b5:0e:
c5:15:f0:c3:6b:73:8d:c6:d8:90:d5:6d:6e:ec:9c:c8:48:13:
33:a0:0a:e9:e5:5e:1a:83:d9:14:51:03:63:73:27:9f:e3:93:
07:9e:0a:4d:c5:fa:3e:07:0c:32:cb:f1:08:79:61:43:a4:97:
8d:4f:e5:cc:ca:0f:53:78:50:66:ca:4e:97:49:b5:2a:b3:53:
ea:2c:4e:21:4f:e6:61:06:c0:c6:70:5e:fb:d5:0e:68:ce:af:
b1:94:6e:f3:fd:60:e2:7b:78:ee:06:1a:43:56:e2:8c:41:0b:
58:42:d6:72:60:34:55:f3:60:c1:34:cd:38:c6:21:9c:d7:ff:
16:a2:65:25:60:df:2e:1a:9c:15:c6:d3:55:78:89:5b:9b:98:
12:63:f1:23
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZJx2EZET1cTum4zvHYnPm5vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQxMDA5MTUxNDEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTdkOTJjODM4NTA4YWY2OTFmYzIxMjU4YmY4YTA4NzJiMDZmYzZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3SY7OojSZVIsidsO7Y29zcoFD6cA
cIIhKObmAoG8bU5c76rUvVb7SgGWF0Glgm75ptID6Ia1jZWYmW6kPv/PwyRf9RIK
ge/WRZEv9HjuaZgEsNOnrGaLED3fZftZcNYG1rY2WUnmq2/cDha1xQ7dcqmto6bV
gGYJWw4v7TauDZJpf0yBF03GhIY9E+jY/f8wFSv1fRzLoR/6LMABj+CdA/JjXkNg
jTMhn7iBVTtjXbjGO0nrTjynIQd0uQ3QAfzWq8n1386LJgkD2DnvOf8hndOYhaoB
YlGX5iUt+1xC+tGmGn89M/iQ5+oHlKpUj5C6okL7Q1O6LkLCMLLaQjEPZQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNF9ksg4UIr2kfwhJYv4oIcrBvxrMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvMFgyU3lEaFFpdmFSX0NFbGlfaWdoeXNHX0dzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXrEzAwQA
vPDVMA0GCSqGSIb3DQEBCwUAA4IBAQA0oLFz945J5dQjOzst/eZ9a/Be7xuFy8Gp
RwlcMGrvmzn2uevw2o4tpvnlzhzI6O6C0vXfHJXi3vOzEzxa1LH378dkWIm+4YhT
9UC3ZLIM1eecivGsEjLnPKjSNum0EzJQk0JUmmgpgsV6tQ7FFfDDa3ONxtiQ1W1u
7JzISBMzoArp5V4ag9kUUQNjcyef45MHngpNxfo+Bwwyy/EIeWFDpJeNT+XMyg9T
eFBmyk6XSbUqs1PqLE4hT+ZhBsDGcF771Q5ozq+xlG7z/WDie3juBhpDVuKMQQtY
QtZyYDRV82DBNM04xiGc1/8WomUlYN8uGpwVxtNVeIlbm5gSY/Ej
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:48 2025 by rpki-client