Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/hBeMbizkJs6vNt-sJYdDLiIPpD0.roa
File: hBeMbizkJs6vNt-sJYdDLiIPpD0.roa (raw, json)
Hash identifier: gEw7dPTR8rflHHbfsXQvIGW7rnZqeBmkKjqBLUbBL40=
Subject key identifier: 84:17:8C:6E:2C:E4:26:CE:AF:36:DF:AC:25:87:43:2E:22:0F:A4:3D
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01931A39E358D9253F2E5B76B331B4929C6A
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/hBeMbizkJs6vNt-sJYdDLiIPpD0.roa
Signing time: Mon 11 Nov 2024 07:57:01 +0000
ROA not before: Mon 11 Nov 2024 07:57:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.180.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Nov 2024 11:27:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1a:39:e3:58:d9:25:3f:2e:5b:76:b3:31:b4:92:9c:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Nov 11 07:57:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84178c6e2ce426ceaf36dfac2587432e220fa43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:49:9d:88:81:3d:e1:97:27:0e:84:22:d4:45:
41:61:24:be:38:04:3f:a6:04:b4:70:ca:4f:46:27:
83:83:86:68:fe:24:3b:09:23:d9:f0:ec:31:61:d6:
44:a9:6c:c7:c9:d1:4d:a7:9c:2b:0c:6d:7e:a6:b0:
d0:72:12:3f:67:76:6f:90:6e:15:ac:2b:3d:c7:1d:
71:dd:2c:f2:da:7c:bd:de:e0:eb:f3:fc:4a:95:18:
75:3a:43:f9:80:56:de:7c:5c:b1:4f:23:ba:2e:9b:
f1:40:23:ae:37:73:32:0d:b7:ff:28:26:bd:e7:fa:
bd:56:92:92:c8:6d:5e:bc:e2:b9:98:98:bc:b6:7c:
cd:25:a5:d1:c1:3c:0b:ff:bb:23:ec:c0:6d:a6:70:
ed:4a:4e:ef:e9:0d:c0:d1:15:2d:93:d4:4b:c8:2f:
f2:fc:f2:19:d9:b0:09:e2:a8:2f:bf:c1:a9:d7:8c:
7d:2e:2b:57:70:b2:ea:b7:f2:3b:12:00:e9:09:66:
30:e3:68:13:1c:80:f7:9b:7c:b8:84:6c:5f:ff:0a:
6a:89:76:af:d0:9a:8d:f1:28:0a:59:65:f6:6b:94:
11:66:1b:14:f1:a0:30:0f:6a:03:3d:73:a6:c1:33:
d3:e1:e8:95:b3:e1:81:d6:42:21:e6:5b:6f:1d:03:
64:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:17:8C:6E:2C:E4:26:CE:AF:36:DF:AC:25:87:43:2E:22:0F:A4:3D
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/hBeMbizkJs6vNt-sJYdDLiIPpD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.82.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:20:36:37:d0:15:4b:eb:e6:98:24:1a:22:3e:b7:57:e6:ea:
b9:93:68:b1:71:a1:69:74:02:d6:22:94:2e:e1:86:b5:27:3f:
ce:2d:66:3a:f9:e3:b9:b9:73:da:73:73:91:c4:25:47:08:57:
b4:e0:56:75:c5:4a:02:78:1e:e4:1b:02:82:36:89:c0:66:f4:
a9:02:17:e7:7c:cc:e7:db:d1:b9:20:63:c5:7b:b4:48:c6:e1:
88:c1:8b:12:85:0d:15:e6:4c:13:c0:47:ee:96:32:84:84:82:
3f:5d:07:a7:e4:b4:b9:8c:06:34:7f:e4:f0:83:94:89:cc:25:
5e:d4:ab:6d:b7:0e:05:e9:f7:16:64:b4:2e:33:2d:44:29:ab:
52:fd:75:f0:40:f9:c3:60:d6:49:d5:7a:a8:4b:de:de:8f:b0:
be:df:90:7d:70:e8:96:10:dc:08:d3:a8:7a:77:0d:c4:fd:23:
b9:93:2e:c7:0e:4a:23:fa:25:42:14:72:1d:83:2e:06:21:cf:
76:77:5e:bb:b5:75:41:56:54:42:4a:f0:4f:65:6a:6a:34:eb:
99:68:90:b1:a4:1d:6f:5a:c1:b2:7e:1b:88:2f:fd:2a:96:76:
be:67:62:33:f6:6f:83:2f:ab:e6:e6:7c:2c:05:ab:59:6e:11:
2a:7e:33:e6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZMaOeNY2SU/Llt2szG0kpxqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjQxMTExMDc1NzAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDE3OGM2ZTJjZTQyNmNlYWYzNmRmYWMyNTg3NDMyZTIyMGZhNDNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0mdiIE94ZcnDoQi1EVBYSS+OAQ/
pgS0cMpPRieDg4Zo/iQ7CSPZ8OwxYdZEqWzHydFNp5wrDG1+prDQchI/Z3ZvkG4V
rCs9xx1x3Szy2ny93uDr8/xKlRh1OkP5gFbefFyxTyO6LpvxQCOuN3MyDbf/KCa9
5/q9VpKSyG1evOK5mJi8tnzNJaXRwTwL/7sj7MBtpnDtSk7v6Q3A0RUtk9RLyC/y
/PIZ2bAJ4qgvv8Gp14x9LitXcLLqt/I7EgDpCWYw42gTHID3m3y4hGxf/wpqiXav
0JqN8SgKWWX2a5QRZhsU8aAwD2oDPXOmwTPT4eiVs+GB1kIh5ltvHQNkEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIQXjG4s5CbOrzbfrCWHQy4iD6Q9MB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvaEJlTWJpemtKczZ2TnQtc0pZZERMaUlQcEQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbRSMA0G
CSqGSIb3DQEBCwUAA4IBAQCxIDY30BVL6+aYJBoiPrdX5uq5k2ixcaFpdALWIpQu
4Ya1Jz/OLWY6+eO5uXPac3ORxCVHCFe04FZ1xUoCeB7kGwKCNonAZvSpAhfnfMzn
29G5IGPFe7RIxuGIwYsShQ0V5kwTwEfuljKEhII/XQen5LS5jAY0f+Twg5SJzCVe
1Ktttw4F6fcWZLQuMy1EKatS/XXwQPnDYNZJ1XqoS97ej7C+35B9cOiWENwI06h6
dw3E/SO5ky7HDkoj+iVCFHIdgy4GIc92d167tXVBVlRCSvBPZWpqNOuZaJCxpB1v
WsGyfhuIL/0qlna+Z2Iz9m+DL6vm5nwsBatZbhEqfjPm
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:06 2025 by rpki-client