Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/rW5TlxFFdxk-LgLTyhmJkVLvxwI.roa
File: rW5TlxFFdxk-LgLTyhmJkVLvxwI.roa (raw, json)
Hash identifier: uYy4ZP8yyu6DKKsB5VNr0RsMqC/z7GCRhKcpdt8/lFQ=
Subject key identifier: AD:6E:53:97:11:45:77:19:3E:2E:02:D3:CA:19:89:91:52:EF:C7:02
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0194140414D1C490E9A8F0ECE713B84B2F4A
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/rW5TlxFFdxk-LgLTyhmJkVLvxwI.roa
Signing time: Sun 29 Dec 2024 20:03:19 +0000
ROA not before: Sun 29 Dec 2024 20:03:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215378
IP address blocks: 89.213.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:14:04:14:d1:c4:90:e9:a8:f0:ec:e7:13:b8:4b:2f:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Dec 29 20:03:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad6e5397114577193e2e02d3ca19899152efc702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:94:d0:ea:22:f8:a2:e7:c5:f0:6c:a3:59:fc:
ca:9d:55:43:f7:45:6f:85:e7:8e:cf:e2:e5:04:e7:
dd:19:37:87:ba:1b:88:06:4d:da:24:18:23:cc:ca:
48:80:9a:b3:62:a5:98:31:9e:25:c1:3c:48:55:66:
7f:bc:13:84:c6:68:8b:a9:7b:84:e8:71:d7:4c:1f:
ea:8e:19:31:fa:70:52:10:fc:60:53:54:57:bc:99:
fc:eb:9f:94:ce:9c:4d:36:d0:e8:27:60:16:fe:0e:
43:2b:da:3e:f0:ec:20:0e:ab:35:ab:ce:4c:89:36:
e4:2f:81:9b:ab:88:e0:37:f5:c9:5a:a5:51:d3:fd:
75:1c:91:24:71:b3:4c:aa:51:70:19:63:e5:62:79:
b8:3c:9b:eb:97:d3:89:7c:76:24:d0:f3:81:92:9e:
8b:34:b2:6c:01:e3:8a:85:65:03:e9:13:3c:5c:d7:
61:17:dd:f2:36:b7:d6:e5:75:f6:c8:22:42:51:2d:
66:ad:14:8c:2d:d6:36:96:86:f7:22:ce:7d:ea:b3:
55:54:07:3e:02:32:84:56:c3:14:0c:d6:73:bf:5f:
67:d0:b2:f8:48:a1:92:f6:cd:5c:99:b1:05:63:68:
fe:8f:71:80:47:d6:50:67:fb:e8:a6:82:f3:7d:09:
fb:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:6E:53:97:11:45:77:19:3E:2E:02:D3:CA:19:89:91:52:EF:C7:02
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/rW5TlxFFdxk-LgLTyhmJkVLvxwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.213.212.0/24
Signature Algorithm: sha256WithRSAEncryption
47:6f:ee:07:f6:d2:f7:19:92:c9:69:44:d4:24:ed:6e:2e:ab:
84:86:7b:75:d3:64:ae:f3:0f:da:1c:53:e0:7e:ae:5e:06:67:
d3:2b:3c:e9:d3:01:b5:39:82:a7:5b:1a:00:ff:29:0a:6d:1b:
d7:c2:d4:96:74:b2:7a:46:66:cf:2e:3e:56:eb:79:23:3c:58:
16:85:ef:2d:be:70:09:4e:8e:bf:44:6c:3b:bb:f0:79:18:be:
04:0d:28:73:b3:ea:3d:c2:4d:e1:4b:94:13:e8:b2:af:4f:dc:
ed:4a:ea:97:db:63:11:6c:e1:6f:1f:88:a3:b2:01:fd:4c:ff:
fa:58:56:69:e6:e6:37:ca:2d:9d:00:1a:38:2e:c0:ba:d8:48:
db:b1:2d:0d:11:be:f2:09:54:46:23:2d:05:c5:fd:00:df:36:
51:89:78:50:c4:08:f0:c7:86:72:98:56:4f:45:cc:83:2d:af:
37:c9:c2:79:85:f8:3a:6c:42:1b:28:45:81:94:21:cb:f9:a2:
a8:6a:4c:f5:f0:5a:a1:96:f7:d8:c5:3f:ee:28:f4:8f:85:2e:
19:a5:82:29:81:5f:36:48:b2:1e:ad:fd:56:18:a6:7c:5f:b8:
d3:97:b5:fa:80:ba:bc:db:75:2a:be:55:d8:08:21:75:c3:bc:
61:a7:69:d5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQUBBTRxJDpqPDs5xO4Sy9KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh
NTNiOWIwHhcNMjQxMjI5MjAwMzE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDZlNTM5NzExNDU3NzE5M2UyZTAyZDNjYTE5ODk5MTUyZWZjNzAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5TQ6iL4oufF8GyjWfzKnVVD90Vv
heeOz+LlBOfdGTeHuhuIBk3aJBgjzMpIgJqzYqWYMZ4lwTxIVWZ/vBOExmiLqXuE
6HHXTB/qjhkx+nBSEPxgU1RXvJn865+UzpxNNtDoJ2AW/g5DK9o+8OwgDqs1q85M
iTbkL4Gbq4jgN/XJWqVR0/11HJEkcbNMqlFwGWPlYnm4PJvrl9OJfHYk0POBkp6L
NLJsAeOKhWUD6RM8XNdhF93yNrfW5XX2yCJCUS1mrRSMLdY2lob3Is596rNVVAc+
AjKEVsMUDNZzv19n0LL4SKGS9s1cmbEFY2j+j3GAR9ZQZ/vopoLzfQn7PwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK1uU5cRRXcZPi4C08oZiZFS78cCMB8GA1UdIwQY
MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt
NDEyMjhlMzlmZjdjLzEvclc1VGx4RkZkeGstTGdMVHlobUprVkx2eHdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj
LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWdXUMA0G
CSqGSIb3DQEBCwUAA4IBAQBHb+4H9tL3GZLJaUTUJO1uLquEhnt102Su8w/aHFPg
fq5eBmfTKzzp0wG1OYKnWxoA/ykKbRvXwtSWdLJ6RmbPLj5W63kjPFgWhe8tvnAJ
To6/RGw7u/B5GL4EDShzs+o9wk3hS5QT6LKvT9ztSuqX22MRbOFvH4ijsgH9TP/6
WFZp5uY3yi2dABo4LsC62EjbsS0NEb7yCVRGIy0Fxf0A3zZRiXhQxAjwx4ZymFZP
RcyDLa83ycJ5hfg6bEIbKEWBlCHL+aKoakz18FqhlvfYxT/uKPSPhS4ZpYIpgV82
SLIerf1WGKZ8X7jTl7X6gLq823UqvlXYCCF1w7xhp2nV
-----END CERTIFICATE-----
Generated at Thu Mar 13 19:21:55 2025 by rpki-client