Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/E579hC1JIk8C5ocWwfr4vsdXHTI.roa
File: E579hC1JIk8C5ocWwfr4vsdXHTI.roa (raw, json)
Hash identifier: Zjf9LpO9j0uMmgKzwO02wPI+eLGq7SEwZbjfkvVmQMU=
Subject key identifier: 13:9E:FD:84:2D:49:22:4F:02:E6:87:16:C1:FA:F8:BE:C7:57:1D:32
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01942827603D94FDF64A25A280E3AA8EED7D
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/E579hC1JIk8C5ocWwfr4vsdXHTI.roa
Signing time: Thu 02 Jan 2025 17:54:16 +0000
ROA not before: Thu 02 Jan 2025 17:54:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59878
IP address blocks: 91.132.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 14:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:60:3d:94:fd:f6:4a:25:a2:80:e3:aa:8e:ed:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 2 17:54:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=139efd842d49224f02e68716c1faf8bec7571d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f9:06:36:4b:75:d5:7f:9c:77:dc:ae:2b:02:
7b:82:19:95:50:1e:1d:2c:ea:b5:ab:a2:03:ec:a1:
3f:31:f4:87:cb:a2:4a:c9:85:2a:8e:11:d6:17:c4:
7f:a4:c0:06:0e:c3:da:c9:68:10:e1:8d:0b:78:93:
22:f9:bd:53:14:f9:89:8f:04:48:8c:75:93:62:fe:
66:df:cc:79:a7:22:c3:e5:37:c3:41:de:5a:30:b6:
ae:e4:78:eb:61:19:15:6a:65:c3:d3:a0:ee:f7:d6:
f1:dc:89:8f:d4:fc:6a:ef:80:1f:e7:90:98:ca:0f:
13:b0:41:d9:31:e6:e3:0e:53:27:33:79:49:39:c3:
0f:cd:45:85:6c:da:a5:69:6c:c6:a0:2d:e5:9a:3c:
de:a6:b3:0f:37:30:48:5e:bc:76:0c:61:f5:94:8d:
f1:90:25:52:40:4e:12:1d:6e:61:dd:ba:1d:bd:21:
3c:73:f6:eb:dc:73:fb:5c:d3:92:ee:e6:57:91:aa:
4b:99:d3:7e:4a:b4:16:61:b1:a6:ca:7d:ca:df:fe:
52:7a:06:66:25:77:f6:b3:e8:37:f5:53:d4:10:d5:
65:06:49:a3:81:4b:d8:38:05:ba:82:a2:6a:a6:43:
ce:20:a1:fe:c4:de:ae:e5:63:20:29:44:da:30:0e:
fe:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:9E:FD:84:2D:49:22:4F:02:E6:87:16:C1:FA:F8:BE:C7:57:1D:32
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/E579hC1JIk8C5ocWwfr4vsdXHTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.48.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:ea:b1:f9:fd:1c:10:cd:3d:52:ae:23:8e:4a:a0:72:7e:c4:
55:e4:24:0c:c5:36:a9:5d:78:1d:f9:34:f9:34:da:9b:a0:14:
c2:02:29:53:46:7a:a6:67:ab:29:b7:72:06:03:aa:92:58:4b:
15:a8:82:19:b7:da:5c:48:19:16:71:62:8c:5f:62:aa:d3:c6:
6b:fe:1c:d7:eb:97:86:e3:a8:01:d1:aa:01:26:28:5b:27:0c:
8f:5e:bb:a1:77:72:70:c0:af:28:b2:97:89:97:80:fd:b9:5a:
f1:f6:0a:49:b3:c4:fa:e4:4b:42:46:d1:e0:a3:8c:a7:8e:b8:
24:65:f3:97:40:1c:21:c7:5f:6a:a0:80:03:95:ca:94:f6:ac:
3f:a6:86:b1:07:65:35:95:32:ed:ac:66:ee:17:14:c6:65:42:
b9:e4:a5:2a:84:f8:73:28:53:b5:f0:79:46:53:81:6f:22:57:
d1:24:19:ae:59:e3:b2:62:e4:6b:36:37:ae:bc:ad:a2:4f:fa:
ad:91:a6:7e:44:6b:1a:d0:30:8d:04:35:ee:4c:d5:16:23:63:
74:06:80:15:98:b6:2d:f7:a8:a2:b0:3d:32:cb:45:89:f4:28:
3d:2f:3a:c3:ce:25:18:7b:02:af:03:de:e6:e5:a3:ec:4f:40:
7a:f5:91:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoJ2A9lP32SiWigOOqju19MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjUwMTAyMTc1NDE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzllZmQ4NDJkNDkyMjRmMDJlNjg3MTZjMWZhZjhiZWM3NTcxZDMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3fkGNkt11X+cd9yuKwJ7ghmVUB4d
LOq1q6ID7KE/MfSHy6JKyYUqjhHWF8R/pMAGDsPayWgQ4Y0LeJMi+b1TFPmJjwRI
jHWTYv5m38x5pyLD5TfDQd5aMLau5HjrYRkVamXD06Du99bx3ImP1Pxq74Af55CY
yg8TsEHZMebjDlMnM3lJOcMPzUWFbNqlaWzGoC3lmjzeprMPNzBIXrx2DGH1lI3x
kCVSQE4SHW5h3bodvSE8c/br3HP7XNOS7uZXkapLmdN+SrQWYbGmyn3K3/5SegZm
JXf2s+g39VPUENVlBkmjgUvYOAW6gqJqpkPOIKH+xN6u5WMgKUTaMA7+GQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBOe/YQtSSJPAuaHFsH6+L7HVx0yMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvRTU3OWhDMUpJazhDNW9jV3dmcjR2c2RYSFRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW4QwMA0G
CSqGSIb3DQEBCwUAA4IBAQAu6rH5/RwQzT1SriOOSqByfsRV5CQMxTapXXgd+TT5
NNqboBTCAilTRnqmZ6spt3IGA6qSWEsVqIIZt9pcSBkWcWKMX2Kq08Zr/hzX65eG
46gB0aoBJihbJwyPXruhd3JwwK8ospeJl4D9uVrx9gpJs8T65EtCRtHgo4ynjrgk
ZfOXQBwhx19qoIADlcqU9qw/poaxB2U1lTLtrGbuFxTGZUK55KUqhPhzKFO18HlG
U4FvIlfRJBmuWeOyYuRrNjeuvK2iT/qtkaZ+RGsa0DCNBDXuTNUWI2N0BoAVmLYt
96iisD0yy0WJ9Cg9LzrDziUYewKvA97m5aPsT0B69ZEx
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:42:41 2025 by rpki-client