Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/p94ShHrXv3zMzCN9MC9GDj0G-lk.roa
File: p94ShHrXv3zMzCN9MC9GDj0G-lk.roa (raw, json)
Hash identifier: zqZgjBd0l7Q+m7iK4ii5q91ooHkoVCLXi+JBFc5VjNs=
Subject key identifier: A7:DE:12:84:7A:D7:BF:7C:CC:CC:23:7D:30:2F:46:0E:3D:06:FA:59
Certificate issuer: /CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Certificate serial: 0193F3C047F44CC71CE88948669056DCD253
Authority key identifier: 21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/p94ShHrXv3zMzCN9MC9GDj0G-lk.roa
Signing time: Mon 23 Dec 2024 13:41:24 +0000
ROA not before: Mon 23 Dec 2024 13:41:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 212.23.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f3:c0:47:f4:4c:c7:1c:e8:89:48:66:90:56:dc:d2:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Validity
Not Before: Dec 23 13:41:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7de12847ad7bf7ccccc237d302f460e3d06fa59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9d:06:49:fc:1c:13:88:2f:a8:de:76:30:fc:
c9:1b:87:1b:d5:b4:1b:f1:2e:71:90:8e:f3:8e:bb:
6b:25:da:0b:b8:89:7d:66:44:1e:15:b4:49:48:5a:
90:55:74:38:0b:3e:68:6a:1c:d2:62:ad:26:03:72:
41:66:69:8c:83:2f:79:fb:93:bc:41:68:e6:74:a6:
67:ba:29:9e:be:e1:82:c2:74:52:d0:15:3f:65:46:
25:3d:91:b4:2a:7e:43:e9:91:a3:b6:aa:d0:d2:af:
c0:dd:0a:1b:bc:24:ca:bf:fe:db:51:ca:6b:06:13:
35:2c:a4:08:6f:8f:b8:d5:a2:94:62:d6:bf:64:26:
17:fa:99:d9:51:4f:f0:ee:08:4b:55:ba:5b:74:11:
7e:74:c9:45:bd:2b:c9:cf:09:43:c4:c0:e2:6f:9c:
df:7f:de:ac:b9:2e:66:c5:74:f6:6a:18:87:20:f9:
83:bf:c8:61:b3:41:ed:5b:b2:b2:ab:c2:0a:9e:c0:
14:e2:ba:8d:24:92:9b:56:9e:98:f5:8b:9d:5d:6d:
5d:4a:57:e0:0a:2b:31:68:a3:ec:a3:c1:88:ab:b3:
55:64:58:59:a6:49:8c:65:ce:13:85:a0:5a:c9:7e:
ef:5c:d3:7c:14:14:87:46:12:f7:49:e9:94:4c:53:
c7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:DE:12:84:7A:D7:BF:7C:CC:CC:23:7D:30:2F:46:0E:3D:06:FA:59
X509v3 Authority Key Identifier:
keyid:21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/p94ShHrXv3zMzCN9MC9GDj0G-lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/IVJmQ1YX-g8f0oN-yAxtg7C51gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.214.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:1c:33:06:60:50:62:1d:61:1a:5f:42:0f:2d:c0:f7:36:ce:
68:41:5a:75:41:88:9d:9d:cd:ab:7e:c3:3a:4c:39:04:e4:63:
a7:20:c6:67:71:f0:25:05:15:b9:19:3e:45:48:d2:f6:84:16:
bc:98:43:83:e0:d9:83:ca:a9:91:76:a7:b0:ba:0a:76:0e:25:
47:70:d9:08:0d:3a:6c:ac:00:83:72:93:e0:fe:60:a6:08:2e:
81:74:3b:f9:64:d1:5c:e0:44:88:3d:65:4d:53:d3:68:f5:8e:
8b:49:99:52:bb:e8:f0:2b:1c:1b:bb:89:1e:51:d1:d8:ca:40:
d9:a7:32:e4:96:43:62:a5:89:31:e3:be:1a:be:ee:64:8c:46:
a7:a8:f7:21:53:cb:39:47:58:8e:41:c9:2b:ed:93:5d:1c:37:
25:3d:bc:a8:a8:64:bd:61:70:70:3b:94:69:cb:08:d0:24:10:
50:74:c6:2d:7c:8e:b2:68:3e:6c:57:d9:7c:c5:8b:3a:e9:62:
69:3b:29:9f:82:c1:65:84:27:8d:5e:f3:0b:62:02:8f:c0:55:
b0:5b:d9:89:e9:6a:b9:c9:7d:8d:b0:8b:e3:2f:e8:b2:f2:d3:
32:eb:3a:0e:18:06:41:3f:71:28:a9:d4:cb:2e:cc:d8:6a:eb:
42:67:71:a8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZPzwEf0TMcc6IlIZpBW3NJTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxNTI2NjQzNTYxN2ZhMGYxZmQyODM3ZWM4MGM2ZDgzYjBi
OWQ2MDgwHhcNMjQxMjIzMTM0MTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2RlMTI4NDdhZDdiZjdjY2NjYzIzN2QzMDJmNDYwZTNkMDZmYTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJ0GSfwcE4gvqN52MPzJG4cb1bQb
8S5xkI7zjrtrJdoLuIl9ZkQeFbRJSFqQVXQ4Cz5oahzSYq0mA3JBZmmMgy95+5O8
QWjmdKZnuimevuGCwnRS0BU/ZUYlPZG0Kn5D6ZGjtqrQ0q/A3QobvCTKv/7bUcpr
BhM1LKQIb4+41aKUYta/ZCYX+pnZUU/w7ghLVbpbdBF+dMlFvSvJzwlDxMDib5zf
f96suS5mxXT2ahiHIPmDv8hhs0HtW7Kyq8IKnsAU4rqNJJKbVp6Y9YudXW1dSlfg
CisxaKPso8GIq7NVZFhZpkmMZc4ThaBayX7vXNN8FBSHRhL3SemUTFPHjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKfeEoR61798zMwjfTAvRg49BvpZMB8GA1UdIwQY
MBaAFCFSZkNWF/oPH9KDfsgMbYOwudYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVZKbVExWVgtZzhmMG9OLXlBeHRnN0M1MWdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9jMDcyYWUtMTVkNy00MmE4LWJmYzIt
YmM5M2NhNjc5ZTFmLzEvcDk0U2hIclh2M3pNekNOOU1DOUdEajBHLWxrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9jMDcyYWUtMTVkNy00MmE4LWJmYzItYmM5M2NhNjc5ZTFm
LzEvSVZKbVExWVgtZzhmMG9OLXlBeHRnN0M1MWdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BfWMA0G
CSqGSIb3DQEBCwUAA4IBAQA8HDMGYFBiHWEaX0IPLcD3Ns5oQVp1QYidnc2rfsM6
TDkE5GOnIMZncfAlBRW5GT5FSNL2hBa8mEOD4NmDyqmRdqewugp2DiVHcNkIDTps
rACDcpPg/mCmCC6BdDv5ZNFc4ESIPWVNU9No9Y6LSZlSu+jwKxwbu4keUdHYykDZ
pzLklkNipYkx474avu5kjEanqPchU8s5R1iOQckr7ZNdHDclPbyoqGS9YXBwO5Rp
ywjQJBBQdMYtfI6yaD5sV9l8xYs66WJpOymfgsFlhCeNXvMLYgKPwFWwW9mJ6Wq5
yX2NsIvjL+iy8tMy6zoOGAZBP3EoqdTLLszYautCZ3Go
-----END CERTIFICATE-----
Generated at Fri Apr 18 13:41:52 2025 by rpki-client