Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/TaqPaBNRgCKB2E1rx9aVj1T5IfM.roa
File: TaqPaBNRgCKB2E1rx9aVj1T5IfM.roa (raw, json)
Hash identifier: 9GaGRLpEXivcJGvjsKvzoeZrKdBLLlm+pdaIg5Fdp0c=
Subject key identifier: 4D:AA:8F:68:13:51:80:22:81:D8:4D:6B:C7:D6:95:8F:54:F9:21:F3
Certificate issuer: /CN=2d28cfa3fd2da9caaa659284758dee67099934f8
Certificate serial: 018DAF34139835F0A35F5BB97F3194F5BF0B
Authority key identifier: 2D:28:CF:A3:FD:2D:A9:CA:AA:65:92:84:75:8D:EE:67:09:99:34:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/TaqPaBNRgCKB2E1rx9aVj1T5IfM.roa
Signing time: Thu 15 Feb 2024 23:57:22 +0000
ROA not before: Thu 15 Feb 2024 23:57:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205800
IP address blocks: 217.145.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 11:34:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:af:34:13:98:35:f0:a3:5f:5b:b9:7f:31:94:f5:bf:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d28cfa3fd2da9caaa659284758dee67099934f8
Validity
Not Before: Feb 15 23:57:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4daa8f681351802281d84d6bc7d6958f54f921f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3c:f7:34:34:d3:e2:4f:89:7a:4a:7c:89:51:
61:24:1d:bb:1f:d4:b6:e9:b7:0f:03:32:b0:70:c5:
e1:1a:67:fb:af:6b:f8:bf:75:ed:f4:eb:34:d7:4b:
be:18:63:aa:df:72:f0:8b:c2:59:9f:79:58:c5:49:
21:cc:dd:c8:9e:40:5f:cb:92:16:f6:c7:e9:a5:da:
bb:05:3d:d4:b0:bd:fe:54:4d:33:a0:56:8c:35:b2:
7a:ed:67:cc:8d:cb:f7:6f:8c:d2:10:4e:50:b4:64:
3e:8b:9c:9a:c4:5b:60:2d:66:9a:8a:e3:88:3f:f1:
be:fb:7b:da:ab:74:49:56:86:15:ef:7e:3a:f2:f3:
ac:c5:6c:0f:fb:a1:82:e2:a2:e6:ee:5a:2a:5c:9c:
1a:94:dd:6d:6e:1f:94:1d:b4:ca:58:be:ae:17:e5:
50:7a:3f:1d:74:04:30:14:05:42:c3:26:83:67:82:
e0:6c:eb:2c:76:d1:fb:99:6b:0e:6e:b5:32:83:1c:
1e:a4:30:cd:44:0b:17:c3:77:76:da:5d:b1:b7:9b:
94:b6:3f:c6:2c:fa:53:99:a6:44:b0:f1:4e:2b:f5:
71:5a:61:3b:d4:40:db:02:83:11:31:ff:3b:d4:cb:
37:cb:35:64:0d:bf:b3:06:d4:1d:1d:1e:c2:b0:87:
4c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:AA:8F:68:13:51:80:22:81:D8:4D:6B:C7:D6:95:8F:54:F9:21:F3
X509v3 Authority Key Identifier:
keyid:2D:28:CF:A3:FD:2D:A9:CA:AA:65:92:84:75:8D:EE:67:09:99:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/TaqPaBNRgCKB2E1rx9aVj1T5IfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/LSjPo_0tqcqqZZKEdY3uZwmZNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.230.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:37:5e:09:72:74:c8:6f:29:79:d6:d0:66:9c:33:39:66:a1:
0d:df:11:c3:cc:85:74:64:43:90:34:ef:c1:8d:23:55:66:f6:
ff:6a:75:b7:d6:0d:d6:27:5d:71:8b:fc:71:27:8d:4a:41:b7:
8d:a1:43:ca:dc:03:37:ff:16:db:f7:d0:66:41:c9:a8:a9:f1:
b2:73:96:88:58:00:ea:cc:d0:73:85:0c:fc:84:fb:85:e3:b4:
d8:70:d6:c4:0d:d7:4d:cc:59:40:84:46:1d:72:d1:c8:e8:29:
53:a9:28:32:10:10:cf:00:10:d3:a1:14:e6:e2:da:04:08:23:
5d:f9:a1:a6:6c:12:25:d7:bc:67:7d:04:4a:89:c4:c9:67:40:
58:b9:f6:f6:09:63:de:7c:96:6d:45:cc:05:9c:b4:46:df:27:
8b:d4:d5:3e:d3:2a:6d:d5:92:69:16:a9:dd:06:e0:b8:e8:2b:
a8:86:f6:a7:09:d0:0b:2d:92:23:d0:6d:b1:c4:06:ee:d2:5b:
c9:45:e5:fc:73:e0:d6:68:23:96:a5:8e:8e:03:ec:18:90:ab:
3d:23:57:40:e7:d2:bb:5c:79:3a:6e:e5:2f:a3:1a:75:ee:e8:
89:98:2c:16:e8:19:97:25:7c:cc:43:4a:21:5d:17:c6:6f:94:
31:a7:ec:ff
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2vNBOYNfCjX1u5fzGU9b8LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMjhjZmEzZmQyZGE5Y2FhYTY1OTI4NDc1OGRlZTY3MDk5
OTM0ZjgwHhcNMjQwMjE1MjM1NzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGFhOGY2ODEzNTE4MDIyODFkODRkNmJjN2Q2OTU4ZjU0ZjkyMWYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTz3NDTT4k+Jekp8iVFhJB27H9S2
6bcPAzKwcMXhGmf7r2v4v3Xt9Os010u+GGOq33Lwi8JZn3lYxUkhzN3InkBfy5IW
9sfppdq7BT3UsL3+VE0zoFaMNbJ67WfMjcv3b4zSEE5QtGQ+i5yaxFtgLWaaiuOI
P/G++3vaq3RJVoYV73468vOsxWwP+6GC4qLm7loqXJwalN1tbh+UHbTKWL6uF+VQ
ej8ddAQwFAVCwyaDZ4LgbOssdtH7mWsObrUygxwepDDNRAsXw3d22l2xt5uUtj/G
LPpTmaZEsPFOK/VxWmE71EDbAoMRMf871Ms3yzVkDb+zBtQdHR7CsIdM2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE2qj2gTUYAigdhNa8fWlY9U+SHzMB8GA1UdIwQY
MBaAFC0oz6P9LanKqmWShHWN7mcJmTT4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFNqUG9fMHRxY3FxWlpLRWRZM3Vad21aTlBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9mZWJhYjAtZDkzYS00NzA0LTlhNzEt
M2FkNTJlOGI5NjI4LzEvVGFxUGFCTlJnQ0tCMkUxcng5YVZqMVQ1SWZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9mZWJhYjAtZDkzYS00NzA0LTlhNzEtM2FkNTJlOGI5NjI4
LzEvTFNqUG9fMHRxY3FxWlpLRWRZM3Vad21aTlBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2ZHmMA0G
CSqGSIb3DQEBCwUAA4IBAQCON14JcnTIbyl51tBmnDM5ZqEN3xHDzIV0ZEOQNO/B
jSNVZvb/anW31g3WJ11xi/xxJ41KQbeNoUPK3AM3/xbb99BmQcmoqfGyc5aIWADq
zNBzhQz8hPuF47TYcNbEDddNzFlAhEYdctHI6ClTqSgyEBDPABDToRTm4toECCNd
+aGmbBIl17xnfQRKicTJZ0BYufb2CWPefJZtRcwFnLRG3yeL1NU+0ypt1ZJpFqnd
BuC46CuohvanCdALLZIj0G2xxAbu0lvJReX8c+DWaCOWpY6OA+wYkKs9I1dA59K7
XHk6buUvoxp17uiJmCwW6BmXJXzMQ0ohXRfGb5Qxp+z/
-----END CERTIFICATE-----
Generated at Sat Apr 19 00:50:43 2025 by rpki-client