Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ElRTYqX05MiQNJi-3MQvvUOVryo.roa
File: ElRTYqX05MiQNJi-3MQvvUOVryo.roa (raw, json)
Hash identifier: v1G3lNe52vrwX7qoH6Mj4OXKqE+doOIfnb1K1bjKdGE=
Subject key identifier: 12:54:53:62:A5:F4:E4:C8:90:34:98:BE:DC:C4:2F:BD:43:95:AF:2A
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0193D9706E138819AAC7FDA3967C300A803A
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ElRTYqX05MiQNJi-3MQvvUOVryo.roa
Signing time: Wed 18 Dec 2024 11:04:04 +0000
ROA not before: Wed 18 Dec 2024 11:04:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209242
IP address blocks: 89.213.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d9:70:6e:13:88:19:aa:c7:fd:a3:96:7c:30:0a:80:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Dec 18 11:04:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12545362a5f4e4c8903498bedcc42fbd4395af2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6a:83:93:66:c4:d0:bf:7d:af:98:c8:53:1c:
cc:25:99:37:28:31:5d:ba:75:50:2e:ae:e2:de:b5:
5b:12:84:be:a6:d1:b3:2b:e7:7b:e3:b5:5c:aa:4a:
29:25:1b:64:70:6b:58:ee:ad:1d:5b:1b:3b:45:f2:
28:5d:11:e3:76:6f:38:7f:5b:20:86:e1:59:81:07:
77:a2:42:a9:61:2d:d5:6d:de:7b:ad:b8:75:ae:66:
28:b0:b4:b2:6e:06:9f:84:d5:b2:29:53:f3:7c:e3:
f9:fc:bc:62:33:3d:ab:df:9a:74:35:bd:b1:47:01:
f6:54:c7:d1:04:b1:7a:be:80:6d:8f:93:b9:cf:06:
64:5c:58:a4:46:ba:99:f9:3b:68:c9:ea:f8:8b:f5:
e7:60:b4:84:56:dd:26:95:a8:37:0e:d4:ca:35:e5:
c0:54:9b:50:94:57:88:61:73:4d:de:3c:70:5a:c8:
29:24:ff:3d:97:9c:26:66:d7:c9:81:b3:67:e7:70:
1b:2a:95:b6:d9:04:63:15:3d:8a:17:63:cf:f9:46:
ba:5b:db:6f:55:ef:39:26:90:ed:26:8e:12:ec:98:
b0:01:20:a8:fd:ff:d5:7a:02:ce:fd:0c:c4:99:18:
b9:ef:04:a6:0b:43:c5:c5:81:91:63:4c:57:7f:74:
70:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:54:53:62:A5:F4:E4:C8:90:34:98:BE:DC:C4:2F:BD:43:95:AF:2A
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ElRTYqX05MiQNJi-3MQvvUOVryo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.213.248.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:7c:52:42:d3:24:75:61:d7:91:05:39:7f:d1:77:dd:11:09:
0f:ce:b4:01:17:a7:4c:ea:30:93:c2:89:8e:8d:62:b6:b3:6c:
56:49:5c:b5:25:b6:b9:78:c0:39:71:bb:b1:c2:b3:41:ca:20:
c5:80:ce:84:83:04:da:d3:07:f0:44:a6:a0:0b:03:4a:3e:c0:
5b:d5:57:cc:40:d5:f3:44:e1:5f:e8:0b:a1:61:10:2d:ec:1f:
39:22:f9:44:0f:83:2b:ac:82:bf:76:89:52:e4:3f:0a:da:33:
a9:38:43:ba:be:dd:68:2d:b7:96:21:a8:55:69:18:08:d4:53:
2f:01:4f:54:23:6d:c0:1f:9b:bb:09:dd:65:03:85:72:45:72:
5e:24:9e:95:a5:ed:8c:fb:8c:1f:33:1c:7e:a5:9a:d6:56:fa:
42:89:07:1d:a3:d4:9c:20:03:73:cc:44:72:b9:ed:2d:a6:28:
43:dc:83:5f:2c:0a:19:7c:96:e0:c0:02:c0:5a:26:6a:f3:61:
9f:31:e2:54:ef:70:c7:36:64:99:87:2f:bb:76:2b:bf:39:68:
74:31:26:7b:31:65:d6:5f:a9:07:1f:d4:af:90:57:fd:3d:22:
14:88:dc:ed:09:70:29:16:ae:0d:45:77:8f:b5:47:aa:f6:9b:
71:55:af:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZPZcG4TiBmqx/2jlnwwCoA6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh
NTNiOWIwHhcNMjQxMjE4MTEwNDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjU0NTM2MmE1ZjRlNGM4OTAzNDk4YmVkY2M0MmZiZDQzOTVhZjJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7WqDk2bE0L99r5jIUxzMJZk3KDFd
unVQLq7i3rVbEoS+ptGzK+d747VcqkopJRtkcGtY7q0dWxs7RfIoXRHjdm84f1sg
huFZgQd3okKpYS3Vbd57rbh1rmYosLSybgafhNWyKVPzfOP5/LxiMz2r35p0Nb2x
RwH2VMfRBLF6voBtj5O5zwZkXFikRrqZ+Ttoyer4i/XnYLSEVt0mlag3DtTKNeXA
VJtQlFeIYXNN3jxwWsgpJP89l5wmZtfJgbNn53AbKpW22QRjFT2KF2PP+Ua6W9tv
Ve85JpDtJo4S7JiwASCo/f/VegLO/QzEmRi57wSmC0PFxYGRY0xXf3Rw+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBJUU2Kl9OTIkDSYvtzEL71Dla8qMB8GA1UdIwQY
MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt
NDEyMjhlMzlmZjdjLzEvRWxSVFlxWDA1TWlRTkppLTNNUXZ2VU9WcnlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj
LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWdX4MA0G
CSqGSIb3DQEBCwUAA4IBAQBPfFJC0yR1YdeRBTl/0XfdEQkPzrQBF6dM6jCTwomO
jWK2s2xWSVy1Jba5eMA5cbuxwrNByiDFgM6EgwTa0wfwRKagCwNKPsBb1VfMQNXz
ROFf6AuhYRAt7B85IvlED4MrrIK/dolS5D8K2jOpOEO6vt1oLbeWIahVaRgI1FMv
AU9UI23AH5u7Cd1lA4VyRXJeJJ6Vpe2M+4wfMxx+pZrWVvpCiQcdo9ScIANzzERy
ue0tpihD3INfLAoZfJbgwALAWiZq82GfMeJU73DHNmSZhy+7diu/OWh0MSZ7MWXW
X6kHH9SvkFf9PSIUiNztCXApFq4NRXePtUeq9ptxVa8M
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:08:12 2025 by rpki-client