Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Y9eUI0D-QBR9EFWZtKSMnX6TeQs.roa
File: Y9eUI0D-QBR9EFWZtKSMnX6TeQs.roa (raw, json)
Hash identifier: iiRJwUinossOhRLP4shu3y1y9CxF40/3arCTNh2uVR0=
Subject key identifier: 63:D7:94:23:40:FE:40:14:7D:10:55:99:B4:A4:8C:9D:7E:93:79:0B
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 019274F4C84F5AC1DB88A27644A67F24F975
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Y9eUI0D-QBR9EFWZtKSMnX6TeQs.roa
Signing time: Thu 10 Oct 2024 05:44:11 +0000
ROA not before: Thu 10 Oct 2024 05:44:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215155
IP address blocks: 80.71.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Dec 2024 14:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:74:f4:c8:4f:5a:c1:db:88:a2:76:44:a6:7f:24:f9:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Oct 10 05:44:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63d7942340fe40147d105599b4a48c9d7e93790b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7e:b6:c1:65:88:09:42:78:a2:2e:5c:53:96:
53:cd:f8:ad:b0:8f:ec:ca:cf:a2:02:bd:f2:d3:92:
a1:77:95:ca:59:1f:f4:57:53:e9:ea:82:fd:42:75:
b3:5a:ea:e3:e5:5c:35:2a:96:04:7c:24:38:61:0a:
0d:94:38:7a:c4:3f:63:af:4b:5a:a7:79:97:3b:25:
95:31:45:6d:dd:3f:f8:ed:19:27:f1:18:5e:cd:1a:
07:e2:95:fe:8a:17:2a:f6:96:5d:37:5f:99:6d:9d:
ff:49:a6:c2:1e:6f:97:87:de:6f:38:37:0a:48:f0:
62:2d:51:9c:83:7e:2f:74:e4:97:7e:15:c6:1c:72:
4d:cb:c1:f3:90:7f:e2:5b:fc:32:3b:01:f9:45:c4:
bc:95:c8:df:78:ba:8d:b3:e8:d3:32:68:a3:b4:ef:
ae:ba:07:dd:d4:85:37:37:9f:84:db:c0:1c:d3:9e:
16:9a:a2:bc:9c:60:47:78:7e:0d:75:18:58:9b:f5:
38:5d:cc:35:40:61:8f:22:cb:49:c0:0b:7f:98:f2:
8b:34:61:37:9e:94:0e:2c:0e:22:a3:0a:31:ab:3e:
e1:f5:7c:8e:30:9d:1d:7d:b2:8e:54:4f:32:fd:7b:
0d:06:54:47:09:45:c8:b1:80:49:ab:f5:70:23:1b:
c0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D7:94:23:40:FE:40:14:7D:10:55:99:B4:A4:8C:9D:7E:93:79:0B
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Y9eUI0D-QBR9EFWZtKSMnX6TeQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.224.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:dd:4f:43:62:44:f6:b7:23:3c:a7:11:37:e8:54:b4:e7:dd:
f0:fe:e1:48:74:2c:75:7e:bd:fd:99:f8:e0:9c:53:f0:01:49:
e3:bf:07:f5:3c:64:95:ad:b0:57:6d:ac:14:64:1b:c3:ca:b3:
04:d9:e2:20:ff:d0:4b:7c:2f:0d:a4:e0:15:f7:be:e0:90:c0:
3e:ec:08:87:83:19:e1:ea:a5:52:00:6d:65:ab:ba:76:d8:8d:
a6:d1:98:9e:b5:1e:0c:8a:1c:84:9c:35:ae:c4:fe:9f:27:75:
8d:d6:13:57:fa:af:19:6f:d4:30:46:a7:61:04:89:2b:2e:85:
57:ac:62:1f:92:66:a9:48:6a:49:8e:d7:94:0b:79:12:0e:a3:
a9:11:d1:4d:cb:82:0f:d4:75:cb:92:cb:5b:be:99:34:e9:90:
b0:0f:a4:e8:04:fc:28:ae:35:34:3d:2a:ef:da:f9:5c:74:3c:
30:97:ca:12:d3:c4:b3:b6:83:8d:db:00:3f:c7:93:47:cb:78:
2f:9d:4e:66:b6:30:81:01:c3:85:a5:18:eb:16:3f:85:2a:9b:
34:b2:98:7c:b5:43:87:06:f8:f8:59:9c:81:db:eb:d9:0d:ed:
d0:21:27:2a:3d:de:4d:4d:39:7b:d4:d6:19:56:33:f3:97:23:
a8:da:d1:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJ09MhPWsHbiKJ2RKZ/JPl1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjQxMDEwMDU0NDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2Q3OTQyMzQwZmU0MDE0N2QxMDU1OTliNGE0OGM5ZDdlOTM3OTBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsX62wWWICUJ4oi5cU5ZTzfitsI/s
ys+iAr3y05Khd5XKWR/0V1Pp6oL9QnWzWurj5Vw1KpYEfCQ4YQoNlDh6xD9jr0ta
p3mXOyWVMUVt3T/47Rkn8RhezRoH4pX+ihcq9pZdN1+ZbZ3/SabCHm+Xh95vODcK
SPBiLVGcg34vdOSXfhXGHHJNy8HzkH/iW/wyOwH5RcS8lcjfeLqNs+jTMmijtO+u
ugfd1IU3N5+E28Ac054WmqK8nGBHeH4NdRhYm/U4Xcw1QGGPIstJwAt/mPKLNGE3
npQOLA4iowoxqz7h9XyOMJ0dfbKOVE8y/XsNBlRHCUXIsYBJq/VwIxvAUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGPXlCNA/kAUfRBVmbSkjJ1+k3kLMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvWTllVUkwRC1RQlI5RUZXWnRLU01uWDZUZVFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEfgMA0G
CSqGSIb3DQEBCwUAA4IBAQCk3U9DYkT2tyM8pxE36FS0593w/uFIdCx1fr39mfjg
nFPwAUnjvwf1PGSVrbBXbawUZBvDyrME2eIg/9BLfC8NpOAV977gkMA+7AiHgxnh
6qVSAG1lq7p22I2m0ZietR4MihyEnDWuxP6fJ3WN1hNX+q8Zb9QwRqdhBIkrLoVX
rGIfkmapSGpJjteUC3kSDqOpEdFNy4IP1HXLkstbvpk06ZCwD6ToBPworjU0PSrv
2vlcdDwwl8oS08SztoON2wA/x5NHy3gvnU5mtjCBAcOFpRjrFj+FKps0sph8tUOH
Bvj4WZyB2+vZDe3QIScqPd5NTTl71NYZVjPzlyOo2tH8
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:27 2025 by rpki-client