Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/E9Gi_DihEIHDIHMu5fLgXa7SDVA.roa
File: E9Gi_DihEIHDIHMu5fLgXa7SDVA.roa (raw, json)
Hash identifier: zC4P125Re4aDA3cLYrwooDsFJ9eYosHI/W+RuU3rMKc=
Subject key identifier: 13:D1:A2:FC:38:A1:10:81:C3:20:73:2E:E5:F2:E0:5D:AE:D2:0D:50
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 0193AF764004EEE28B3EB2A37A2E2D7E0E00
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/E9Gi_DihEIHDIHMu5fLgXa7SDVA.roa
Signing time: Tue 10 Dec 2024 07:26:22 +0000
ROA not before: Tue 10 Dec 2024 07:26:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 77.246.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:af:76:40:04:ee:e2:8b:3e:b2:a3:7a:2e:2d:7e:0e:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Dec 10 07:26:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13d1a2fc38a11081c320732ee5f2e05daed20d50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e8:0b:8a:33:60:4f:9f:17:ae:7d:48:7a:48:
33:bf:5e:c9:0d:fc:8f:9e:f6:5a:2d:dd:70:24:74:
72:2a:92:3a:0d:a7:56:ae:58:c3:b4:5f:e4:93:53:
a0:2a:cd:af:6d:7c:3e:05:6f:76:68:68:81:b7:52:
84:ac:5e:a5:49:bd:09:7f:22:ba:30:8d:e6:5c:08:
f8:16:33:49:30:58:2a:56:a8:0a:47:1c:2b:96:83:
e0:43:e9:01:ee:dc:3d:41:e7:cf:af:7e:66:cb:42:
dd:8e:5f:b7:e0:73:db:91:4f:71:0f:59:7c:16:82:
fc:28:1a:7c:f8:d7:c2:cb:bd:4f:93:84:97:06:ec:
1e:e0:54:58:44:09:97:a4:56:03:ca:c7:a2:db:44:
3b:e1:42:a8:84:d1:49:3c:2e:ce:de:e0:27:51:e1:
70:53:33:80:b0:3c:c0:09:33:d9:3e:cd:18:e4:ec:
1e:37:1b:fe:e5:ba:58:18:c7:25:f7:43:ff:3a:b4:
34:56:d8:5d:9e:dd:e3:4a:89:9a:6a:82:8c:7f:ba:
d0:c3:47:a0:f9:b5:f6:2a:75:8b:13:34:19:18:ee:
3c:0c:a1:6c:fd:dd:5d:b9:9c:82:c8:1d:26:6b:3f:
97:02:ad:1e:75:42:d0:c2:8b:b9:ba:b4:07:00:0a:
45:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D1:A2:FC:38:A1:10:81:C3:20:73:2E:E5:F2:E0:5D:AE:D2:0D:50
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/E9Gi_DihEIHDIHMu5fLgXa7SDVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.220.0/24
Signature Algorithm: sha256WithRSAEncryption
71:6f:20:52:ed:89:42:85:62:cc:0d:7a:3b:7a:a0:e8:91:9f:
5b:62:f5:9f:7b:f7:bd:5d:74:88:f4:98:8d:09:3b:f9:92:9a:
81:42:03:12:5a:f1:fc:f2:b5:20:e3:10:2d:02:1f:8c:23:0e:
5f:65:e9:f8:7e:72:dc:b1:56:2b:1e:8f:fc:8c:ff:d1:88:30:
27:ce:2b:00:45:f6:35:63:60:a9:c1:2e:7f:d0:d7:ae:c7:d2:
a9:62:90:1f:4e:1a:07:e9:65:23:86:54:92:a2:32:46:c7:9c:
52:e6:e1:fd:26:b2:e5:df:19:fb:0d:9c:02:36:93:f5:7e:fc:
4a:56:82:e5:37:83:0f:72:87:fb:0a:12:55:fb:b1:4e:33:35:
06:8b:61:c6:52:9e:ff:59:01:01:f3:0e:e4:c3:13:85:71:2e:
4e:9b:c4:26:38:c2:90:25:98:2a:52:5f:85:51:6e:45:c9:28:
14:6c:88:33:6a:a3:38:39:ed:4a:c4:ee:b9:6e:af:c6:15:d9:
95:14:e4:12:fc:11:d4:49:98:3a:02:c0:d1:e9:ff:f1:f5:f9:
f0:67:5c:ca:11:db:8c:1e:6d:0f:91:ab:8a:b1:c9:f5:7f:d3:
e1:5f:cb:80:ca:b3:a7:4d:cc:1d:bd:bd:cd:4a:e7:1c:22:41:
a2:0b:9e:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOvdkAE7uKLPrKjei4tfg4AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMjRmYmExZTQwMWMwM2U1YmExY2Q3N2FlOWVlMzljZmQ2
MzFiZmIwHhcNMjQxMjEwMDcyNjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2QxYTJmYzM4YTExMDgxYzMyMDczMmVlNWYyZTA1ZGFlZDIwZDUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+gLijNgT58Xrn1Iekgzv17JDfyP
nvZaLd1wJHRyKpI6DadWrljDtF/kk1OgKs2vbXw+BW92aGiBt1KErF6lSb0JfyK6
MI3mXAj4FjNJMFgqVqgKRxwrloPgQ+kB7tw9QefPr35my0Ldjl+34HPbkU9xD1l8
FoL8KBp8+NfCy71Pk4SXBuwe4FRYRAmXpFYDysei20Q74UKohNFJPC7O3uAnUeFw
UzOAsDzACTPZPs0Y5OweNxv+5bpYGMcl90P/OrQ0Vthdnt3jSomaaoKMf7rQw0eg
+bX2KnWLEzQZGO48DKFs/d1duZyCyB0maz+XAq0edULQwou5urQHAApFAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBPRovw4oRCBwyBzLuXy4F2u0g1QMB8GA1UdIwQY
MBaAFFEk+6HkAcA+W6HNd66e45z9Yxv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEt
YWI4ZjFmMzM4N2VlLzEvRTlHaV9EaWhFSUhESUhNdTVmTGdYYTdTRFZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEtYWI4ZjFmMzM4N2Vl
LzEvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATfbcMA0G
CSqGSIb3DQEBCwUAA4IBAQBxbyBS7YlChWLMDXo7eqDokZ9bYvWfe/e9XXSI9JiN
CTv5kpqBQgMSWvH88rUg4xAtAh+MIw5fZen4fnLcsVYrHo/8jP/RiDAnzisARfY1
Y2CpwS5/0Neux9KpYpAfThoH6WUjhlSSojJGx5xS5uH9JrLl3xn7DZwCNpP1fvxK
VoLlN4MPcof7ChJV+7FOMzUGi2HGUp7/WQEB8w7kwxOFcS5Om8QmOMKQJZgqUl+F
UW5FySgUbIgzaqM4Oe1KxO65bq/GFdmVFOQS/BHUSZg6AsDR6f/x9fnwZ1zKEduM
Hm0PkauKscn1f9PhX8uAyrOnTcwdvb3NSuccIkGiC56c
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:33:24 2025 by rpki-client