Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/4d7f40-49ec-4ce2-882e-5ac7f066230b/1/z6w_3DgzWpjjmLt8fvSl-LOdmaE.roa
File: z6w_3DgzWpjjmLt8fvSl-LOdmaE.roa (raw, json)
Hash identifier: 1xytcaLbQBXTCcN9PKAkVQIHJNuThzqkRw8lmWKgecU=
Subject key identifier: CF:AC:3F:DC:38:33:5A:98:E3:98:BB:7C:7E:F4:A5:F8:B3:9D:99:A1
Certificate issuer: /CN=7bd5997ed075c2298b461225e1060f577b1d7d4d
Certificate serial: 0190E407A6AD13C4B525313B467930DA9521
Authority key identifier: 7B:D5:99:7E:D0:75:C2:29:8B:46:12:25:E1:06:0F:57:7B:1D:7D:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e9WZftB1wimLRhIl4QYPV3sdfU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/4d7f40-49ec-4ce2-882e-5ac7f066230b/1/z6w_3DgzWpjjmLt8fvSl-LOdmaE.roa
Signing time: Wed 24 Jul 2024 09:17:04 +0000
ROA not before: Wed 24 Jul 2024 09:17:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47709
IP address blocks: 89.249.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e4:07:a6:ad:13:c4:b5:25:31:3b:46:79:30:da:95:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bd5997ed075c2298b461225e1060f577b1d7d4d
Validity
Not Before: Jul 24 09:17:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cfac3fdc38335a98e398bb7c7ef4a5f8b39d99a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c7:b8:2f:71:55:f5:45:ce:ef:cd:8b:46:f6:
f9:4f:77:23:9b:ae:d8:e4:82:00:44:17:9e:6a:b0:
be:0d:c3:54:08:7e:03:eb:a0:62:12:0d:ee:99:c2:
8d:00:cc:ee:49:63:b8:6e:83:a6:e1:32:60:ad:36:
d1:2f:1c:9f:a3:21:59:59:56:f5:36:e6:58:40:ca:
02:9a:a8:b5:34:36:08:ca:23:c2:9f:45:1e:12:08:
c9:6e:df:6c:7c:fd:da:d5:2a:45:0b:61:9b:cd:57:
ae:83:50:47:5b:f0:78:0d:b1:f3:b8:98:3c:75:8f:
40:3a:87:01:70:b7:1c:e7:cc:b2:da:c7:22:b6:e2:
bb:d4:62:82:59:b2:73:26:89:91:fc:91:9c:c1:dc:
48:fd:48:66:19:7f:25:d9:bb:c1:90:89:41:67:f6:
cf:1f:c2:fe:92:cb:74:84:c3:d9:2c:1e:87:84:1f:
36:18:a8:e8:de:da:74:11:69:8b:72:93:d6:b6:e2:
a2:cc:29:74:b6:30:dd:80:70:df:24:4c:71:72:42:
cf:0e:01:42:63:e3:c1:3a:9b:a0:19:9c:56:79:cc:
3f:df:d0:75:f4:61:63:70:02:18:ba:c7:d2:08:d6:
98:e6:60:b7:8a:db:33:a1:69:e4:a7:3f:7f:80:71:
90:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:AC:3F:DC:38:33:5A:98:E3:98:BB:7C:7E:F4:A5:F8:B3:9D:99:A1
X509v3 Authority Key Identifier:
keyid:7B:D5:99:7E:D0:75:C2:29:8B:46:12:25:E1:06:0F:57:7B:1D:7D:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9WZftB1wimLRhIl4QYPV3sdfU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4d7f40-49ec-4ce2-882e-5ac7f066230b/1/z6w_3DgzWpjjmLt8fvSl-LOdmaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/4d7f40-49ec-4ce2-882e-5ac7f066230b/1/e9WZftB1wimLRhIl4QYPV3sdfU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.239.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:5b:53:e6:93:a5:96:5c:bb:0e:c8:04:b9:84:b5:05:1f:c0:
82:04:f1:67:4d:54:3d:b8:c2:8b:df:9a:e2:b7:5a:2c:5c:ae:
3b:63:e2:2f:eb:73:92:54:9c:e2:53:af:26:de:c1:e2:cc:53:
5b:bf:9b:25:bb:7c:07:59:c8:fb:9f:f3:9f:c8:12:b1:23:88:
e4:db:a6:7a:15:9a:3c:ff:8f:31:d0:26:87:aa:0e:1b:a9:84:
79:76:66:52:93:97:3b:bc:12:96:5d:94:6c:26:0e:aa:60:d3:
08:22:35:6e:1a:f8:cb:30:bf:29:83:43:57:11:45:0c:0f:a6:
1b:f4:8b:aa:09:d6:47:8a:c2:10:5d:f1:18:e1:cc:dd:57:85:
56:20:41:f7:01:bc:e8:cb:d0:0b:45:af:40:06:59:04:c2:46:
0a:3c:31:62:a3:40:39:b5:ac:18:99:9e:bd:2c:c2:5c:3e:c1:
f5:83:4d:ad:7f:28:6b:09:bb:44:0c:52:30:aa:b6:d5:00:2e:
f4:40:65:17:b7:af:39:2c:82:77:67:35:f2:4b:c4:60:b3:d2:
af:8b:05:ba:7f:5e:e3:02:17:4b:4d:35:39:7e:15:19:11:43:
fa:9c:dd:55:b8:02:4d:4f:21:43:48:b7:fd:71:23:0a:14:7e:
f6:ad:ed:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZDkB6atE8S1JTE7Rnkw2pUhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiZDU5OTdlZDA3NWMyMjk4YjQ2MTIyNWUxMDYwZjU3N2Ix
ZDdkNGQwHhcNMjQwNzI0MDkxNzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZmFjM2ZkYzM4MzM1YTk4ZTM5OGJiN2M3ZWY0YTVmOGIzOWQ5OWExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuce4L3FV9UXO782LRvb5T3cjm67Y
5IIARBeearC+DcNUCH4D66BiEg3umcKNAMzuSWO4boOm4TJgrTbRLxyfoyFZWVb1
NuZYQMoCmqi1NDYIyiPCn0UeEgjJbt9sfP3a1SpFC2GbzVeug1BHW/B4DbHzuJg8
dY9AOocBcLcc58yy2scituK71GKCWbJzJomR/JGcwdxI/UhmGX8l2bvBkIlBZ/bP
H8L+kst0hMPZLB6HhB82GKjo3tp0EWmLcpPWtuKizCl0tjDdgHDfJExxckLPDgFC
Y+PBOpugGZxWecw/39B19GFjcAIYusfSCNaY5mC3itszoWnkpz9/gHGQYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM+sP9w4M1qY45i7fH70pfiznZmhMB8GA1UdIwQY
MBaAFHvVmX7QdcIpi0YSJeEGD1d7HX1NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTlXWmZ0QjF3aW1MUmhJbDRRWVBWM3NkZlUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS80ZDdmNDAtNDllYy00Y2UyLTg4MmUt
NWFjN2YwNjYyMzBiLzEvejZ3XzNEZ3pXcGpqbUx0OGZ2U2wtTE9kbWFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS80ZDdmNDAtNDllYy00Y2UyLTg4MmUtNWFjN2YwNjYyMzBi
LzEvZTlXWmZ0QjF3aW1MUmhJbDRRWVBWM3NkZlUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWfnvMA0G
CSqGSIb3DQEBCwUAA4IBAQB6W1Pmk6WWXLsOyAS5hLUFH8CCBPFnTVQ9uMKL35ri
t1osXK47Y+Iv63OSVJziU68m3sHizFNbv5slu3wHWcj7n/OfyBKxI4jk26Z6FZo8
/48x0CaHqg4bqYR5dmZSk5c7vBKWXZRsJg6qYNMIIjVuGvjLML8pg0NXEUUMD6Yb
9IuqCdZHisIQXfEY4czdV4VWIEH3Abzoy9ALRa9ABlkEwkYKPDFio0A5tawYmZ69
LMJcPsH1g02tfyhrCbtEDFIwqrbVAC70QGUXt685LIJ3ZzXyS8Rgs9KviwW6f17j
AhdLTTU5fhUZEUP6nN1VuAJNTyFDSLf9cSMKFH72re2p
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:33 2025 by rpki-client