Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/ez8jAJQFxkfbSSoL96mUHkic9pw.roa
File: ez8jAJQFxkfbSSoL96mUHkic9pw.roa (raw, json)
Hash identifier: EnfmAI9JTe/7MXdm+CqWN5WvQKQlIuTxGNJmt6YHOSQ=
Subject key identifier: 7B:3F:23:00:94:05:C6:47:DB:49:2A:0B:F7:A9:94:1E:48:9C:F6:9C
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 0191FA3D05C38AE0FD45F2121DB03EAFABA2
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/ez8jAJQFxkfbSSoL96mUHkic9pw.roa
Signing time: Mon 16 Sep 2024 09:49:48 +0000
ROA not before: Mon 16 Sep 2024 09:49:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 80.246.229.0/24 maxlen: 24
80.246.230.0/24 maxlen: 24
80.246.232.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 18:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:3d:05:c3:8a:e0:fd:45:f2:12:1d:b0:3e:af:ab:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Sep 16 09:49:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b3f23009405c647db492a0bf7a9941e489cf69c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:89:c7:ab:bf:ff:95:45:d8:33:82:eb:90:07:
68:0c:12:6a:dd:87:56:de:b1:b9:df:a2:18:50:50:
e2:84:71:72:94:58:c1:c7:ed:07:a0:8f:b6:97:bf:
2a:87:8e:da:04:82:4d:71:2a:7d:b0:97:eb:85:e1:
9c:c1:64:88:4d:54:21:b0:f4:47:e6:e1:33:0f:26:
c8:36:a1:91:75:2c:84:0e:46:3b:75:fc:a7:41:26:
18:40:e3:1c:17:d9:ea:61:03:e3:7a:6e:ec:44:bf:
f4:50:30:8e:70:d7:0d:1b:78:0f:a1:07:01:dc:47:
67:b8:b6:c7:13:09:2a:07:cc:9f:d5:e1:da:25:2d:
00:6a:ef:62:fa:fc:e6:f1:56:01:ea:50:f8:0a:11:
01:3c:84:bf:d2:8b:06:b7:a8:63:87:cb:de:d5:dd:
9f:c3:b0:75:cc:66:8b:40:6c:04:80:09:e7:60:f2:
19:49:64:ea:58:e7:60:7a:d4:c4:36:e9:31:ca:1a:
d5:67:da:62:3b:5b:7c:b5:16:30:93:cd:b3:3a:9b:
ad:c0:08:af:ad:f2:a7:c6:32:d3:a3:08:69:d1:4a:
27:c0:47:f6:c7:ba:66:9d:82:d5:ed:a9:c7:bc:1c:
54:f8:33:39:58:a1:d8:63:ec:02:62:86:40:a7:5c:
0d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:3F:23:00:94:05:C6:47:DB:49:2A:0B:F7:A9:94:1E:48:9C:F6:9C
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/ez8jAJQFxkfbSSoL96mUHkic9pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.229.0-80.246.230.255
80.246.232.0/21
Signature Algorithm: sha256WithRSAEncryption
37:78:05:27:ca:cc:d1:9f:0d:92:8c:f3:0a:2d:5d:23:ed:72:
71:ca:ed:90:d1:97:56:77:1e:f3:f6:16:24:ba:0a:16:33:5a:
fc:4f:8e:53:8e:0c:58:ba:d9:9e:b2:ac:61:d8:44:b3:fb:3c:
2b:25:91:05:ab:6d:ef:0f:a1:7d:d4:5a:fc:aa:2f:b4:c5:99:
64:82:c6:d3:6c:c4:cb:03:b7:22:0c:d5:37:f7:e6:df:83:f5:
e6:ea:16:8d:a8:34:53:fa:4a:6b:bd:90:6b:12:3e:2d:c7:9a:
db:e8:66:bb:c1:df:2c:b1:b5:30:e8:e4:81:6e:84:75:1d:a5:
22:c3:a7:38:09:9f:ba:6a:fd:e7:35:42:45:24:2c:23:d6:03:
e0:70:78:d9:fc:0f:c4:eb:0c:f9:fb:f1:57:a0:32:1a:73:bd:
c4:31:8e:3a:5f:66:83:08:3c:b1:e4:fc:4b:42:d2:f1:b3:00:
01:d0:70:22:8d:2f:bf:85:85:d2:c6:01:e7:37:44:2b:14:6d:
b1:64:0d:f0:f6:4f:c1:d8:ce:f5:d0:8e:3a:be:31:b2:d5:22:
0c:af:82:c2:8d:38:b1:30:f3:3c:b7:b6:17:0b:41:98:58:24:
54:d8:19:ce:ff:01:0f:70:2d:4f:ef:47:ec:c0:f7:3e:6f:01:
43:9a:ba:93
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAZH6PQXDiuD9RfISHbA+r6uiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NjM3NjkyZmY1YzQ1NDg2ZDEwNTNiMTQ5ZGMxNDIwMDI2
Y2Q3MzMwHhcNMjQwOTE2MDk0OTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjNmMjMwMDk0MDVjNjQ3ZGI0OTJhMGJmN2E5OTQxZTQ4OWNmNjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAronHq7//lUXYM4LrkAdoDBJq3YdW
3rG536IYUFDihHFylFjBx+0HoI+2l78qh47aBIJNcSp9sJfrheGcwWSITVQhsPRH
5uEzDybINqGRdSyEDkY7dfynQSYYQOMcF9nqYQPjem7sRL/0UDCOcNcNG3gPoQcB
3EdnuLbHEwkqB8yf1eHaJS0Aau9i+vzm8VYB6lD4ChEBPIS/0osGt6hjh8ve1d2f
w7B1zGaLQGwEgAnnYPIZSWTqWOdgetTENukxyhrVZ9piO1t8tRYwk82zOputwAiv
rfKnxjLTowhp0UonwEf2x7pmnYLV7anHvBxU+DM5WKHYY+wCYoZAp1wNEQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFHs/IwCUBcZH20kqC/eplB5InPacMB8GA1UdIwQY
MBaAFNVjdpL/XEVIbRBTsUncFCACbNczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDkt
YWRlYWRlMjg2NWMxLzEvZXo4akFKUUZ4a2ZiU1NvTDk2bVVIa2ljOXB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDktYWRlYWRlMjg2NWMx
LzEvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBABQ9uUD
BABQ9uYDBANQ9ugwDQYJKoZIhvcNAQELBQADggEBADd4BSfKzNGfDZKM8wotXSPt
cnHK7ZDRl1Z3HvP2FiS6ChYzWvxPjlOODFi62Z6yrGHYRLP7PCslkQWrbe8PoX3U
WvyqL7TFmWSCxtNsxMsDtyIM1Tf35t+D9ebqFo2oNFP6Smu9kGsSPi3HmtvoZrvB
3yyxtTDo5IFuhHUdpSLDpzgJn7pq/ec1QkUkLCPWA+BweNn8D8TrDPn78VegMhpz
vcQxjjpfZoMIPLHk/EtC0vGzAAHQcCKNL7+FhdLGAec3RCsUbbFkDfD2T8HYzvXQ
jjq+MbLVIgyvgsKNOLEw8zy3thcLQZhYJFTYGc7/AQ9wLU/vR+zA9z5vAUOaupM=
-----END CERTIFICATE-----
Generated at Thu Sep 19 21:35:30 2024 by rpki-client on console-fra.rpki-client.org