Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/2EDuueOLaQQ80Pl5xvb4Xlc1SMI.roa
File: 2EDuueOLaQQ80Pl5xvb4Xlc1SMI.roa (raw, json)
Hash identifier: l8LoF0puQNxSQUUPXq+qUI7RWj1cgwqQSzYBywGBmBA=
Subject key identifier: D8:40:EE:B9:E3:8B:69:04:3C:D0:F9:79:C6:F6:F8:5E:57:35:48:C2
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 01905F41FF2D7A05708DA393F181D80BE7CE
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/2EDuueOLaQQ80Pl5xvb4Xlc1SMI.roa
Signing time: Fri 28 Jun 2024 14:31:18 +0000
ROA not before: Fri 28 Jun 2024 14:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215035
IP address blocks: 89.213.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Jul 2024 17:57:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5f:41:ff:2d:7a:05:70:8d:a3:93:f1:81:d8:0b:e7:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 28 14:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d840eeb9e38b69043cd0f979c6f6f85e573548c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ef:65:e4:8f:ee:1d:48:8a:63:98:a5:ce:56:
00:d9:da:f9:52:5e:2c:d3:26:9c:74:5a:47:a4:2f:
74:5f:d9:1b:3b:ca:9c:ee:e3:c6:ea:d6:70:1b:8e:
ad:65:94:a0:46:e7:db:33:a8:5f:e2:0b:ed:97:5a:
b9:85:73:5b:46:fa:0a:e1:2c:0a:dd:55:13:07:6d:
b8:fe:7a:4e:93:6d:81:41:11:f6:92:ac:15:40:48:
5f:c0:e4:09:cd:d1:75:87:71:d2:01:67:f0:a9:7c:
c0:03:b0:1e:92:0b:17:9b:34:b5:6e:96:21:25:6b:
65:71:a2:bc:0c:17:24:ff:e6:ba:9c:86:2b:b1:d5:
03:8a:1e:a0:73:07:50:c0:24:17:1e:c5:2f:90:53:
2f:52:37:60:b8:00:b7:28:74:ab:86:65:ce:ed:43:
e3:ca:1f:1e:52:aa:45:9d:21:f9:d1:bf:cf:f4:81:
22:50:4d:e5:32:9e:03:f4:ec:af:8d:27:85:4e:d1:
bd:a0:0b:6a:8a:3d:fa:9b:ac:ed:af:fa:25:01:02:
92:54:3b:d7:83:a2:eb:27:ba:f2:2e:ef:14:20:f9:
dd:ce:f0:6e:5f:57:c6:4e:9d:8a:5b:a3:23:28:ac:
94:74:2b:f8:57:f3:69:4b:97:48:89:1f:0a:f3:fe:
92:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:40:EE:B9:E3:8B:69:04:3C:D0:F9:79:C6:F6:F8:5E:57:35:48:C2
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/2EDuueOLaQQ80Pl5xvb4Xlc1SMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.213.145.0/24
Signature Algorithm: sha256WithRSAEncryption
57:b8:7c:3c:cb:77:a0:7f:d3:6e:a0:1a:be:77:7a:4a:0c:d8:
fd:13:b1:6f:c4:ea:41:e5:80:f0:48:81:82:82:c9:64:34:6a:
6a:52:98:3f:8e:d7:6d:26:f0:2a:cf:a0:c4:e3:0f:55:de:5c:
2d:9f:8f:e8:05:30:f7:58:1c:ac:87:10:34:53:1c:91:06:ce:
fa:2b:f7:db:45:83:41:f7:af:c4:9a:e1:55:7f:11:ff:9f:b8:
0a:45:7b:51:13:c6:b4:9e:e8:bc:f2:77:bd:1f:97:5b:b0:08:
7e:b4:13:c5:48:73:7d:38:71:39:ea:51:67:35:01:df:15:62:
ef:3b:02:ef:75:8b:6d:ee:8b:e0:40:03:ef:4c:60:8d:58:db:
ca:7f:dd:01:03:65:fb:05:ba:25:1c:61:f9:5c:ac:e5:86:2e:
e9:f5:c9:41:9e:44:ef:33:1a:11:08:3b:b9:ca:75:b7:9e:4c:
39:8e:1a:82:90:7b:ac:63:c6:00:30:ea:5e:33:3d:71:5f:f0:
fd:9c:9a:03:28:d0:5a:35:8d:40:f0:85:e3:06:3f:bc:3a:2c:
19:35:27:e8:1d:df:67:82:7c:a2:b4:69:b7:f1:d9:b8:8c:c2:
6e:af:44:58:d3:12:f2:93:3c:8b:60:5e:e7:6f:01:26:7c:63:
33:b8:2a:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBfQf8tegVwjaOT8YHYC+fOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh
NTNiOWIwHhcNMjQwNjI4MTQzMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODQwZWViOWUzOGI2OTA0M2NkMGY5NzljNmY2Zjg1ZTU3MzU0OGMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAne9l5I/uHUiKY5ilzlYA2dr5Ul4s
0yacdFpHpC90X9kbO8qc7uPG6tZwG46tZZSgRufbM6hf4gvtl1q5hXNbRvoK4SwK
3VUTB224/npOk22BQRH2kqwVQEhfwOQJzdF1h3HSAWfwqXzAA7AekgsXmzS1bpYh
JWtlcaK8DBck/+a6nIYrsdUDih6gcwdQwCQXHsUvkFMvUjdguAC3KHSrhmXO7UPj
yh8eUqpFnSH50b/P9IEiUE3lMp4D9OyvjSeFTtG9oAtqij36m6ztr/olAQKSVDvX
g6LrJ7ryLu8UIPndzvBuX1fGTp2KW6MjKKyUdCv4V/NpS5dIiR8K8/6SlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNhA7rnji2kEPND5ecb2+F5XNUjCMB8GA1UdIwQY
MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt
NDEyMjhlMzlmZjdjLzEvMkVEdXVlT0xhUVE4MFBsNXh2YjRYbGMxU01JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj
LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWdWRMA0G
CSqGSIb3DQEBCwUAA4IBAQBXuHw8y3egf9NuoBq+d3pKDNj9E7FvxOpB5YDwSIGC
gslkNGpqUpg/jtdtJvAqz6DE4w9V3lwtn4/oBTD3WByshxA0UxyRBs76K/fbRYNB
96/EmuFVfxH/n7gKRXtRE8a0nui88ne9H5dbsAh+tBPFSHN9OHE56lFnNQHfFWLv
OwLvdYtt7ovgQAPvTGCNWNvKf90BA2X7BbolHGH5XKzlhi7p9clBnkTvMxoRCDu5
ynW3nkw5jhqCkHusY8YAMOpeMz1xX/D9nJoDKNBaNY1A8IXjBj+8OiwZNSfoHd9n
gnyitGm38dm4jMJur0RY0xLykzyLYF7nbwEmfGMzuCo5
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:29:17 2025 by rpki-client