Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/_YV4OANZ9Q2mNvN_19ZmnU9-NMM.roa
File: _YV4OANZ9Q2mNvN_19ZmnU9-NMM.roa (raw, json)
Hash identifier: JTjd4HNLE1R5GPOX1gt/L8//rpimGljni2zarnzzp70=
Subject key identifier: FD:85:78:38:03:59:F5:0D:A6:36:F3:7F:D7:D6:66:9D:4F:7E:34:C3
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01911740FDEE67E59FF14EF199C44D0DBA81
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/_YV4OANZ9Q2mNvN_19ZmnU9-NMM.roa
Signing time: Sat 03 Aug 2024 08:00:20 +0000
ROA not before: Sat 03 Aug 2024 08:00:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198154
IP address blocks: 81.12.32.0/22 maxlen: 24
87.107.156.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:17:40:fd:ee:67:e5:9f:f1:4e:f1:99:c4:4d:0d:ba:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Aug 3 08:00:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd8578380359f50da636f37fd7d6669d4f7e34c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:e6:04:95:dd:fd:60:b9:0d:76:cb:d7:e8:6e:
1e:95:b7:15:48:b9:f2:ef:ff:b2:e8:13:56:7a:09:
cf:54:75:9a:83:ef:4e:f9:9e:bb:bc:02:fe:99:3a:
1f:16:52:52:c5:9a:e0:a4:92:e6:23:88:cd:6b:48:
c8:fd:32:48:f5:a0:bb:b0:cb:ad:a1:e9:94:59:43:
c2:22:c1:87:19:7b:45:a5:37:a7:b2:60:a8:57:81:
fb:a7:a7:1e:27:7c:ec:e0:a3:ab:aa:88:1c:cf:48:
05:3f:fa:9b:35:50:bb:c4:56:b5:f5:66:2c:e7:81:
ea:10:6f:9e:39:87:b1:c8:29:9b:3d:10:e9:a4:2e:
cb:3e:ab:d5:75:67:22:dc:20:83:68:95:84:e2:4a:
73:15:15:ee:a4:37:92:f4:ae:8d:b7:a0:45:b9:45:
a0:79:16:5d:34:f4:e4:c2:5c:cd:6b:45:c5:83:9c:
61:fd:fb:ee:49:0d:13:ba:30:68:2d:30:3d:36:77:
ef:52:1c:a8:ec:14:39:95:ca:70:a2:2a:45:29:f8:
5e:c5:0d:ad:3e:02:27:df:21:b6:0a:2f:2f:71:69:
c0:16:4c:ba:14:af:e4:e1:e8:cd:23:eb:7e:ef:aa:
8c:c0:6b:ff:28:07:9e:d8:ad:fd:49:b3:f0:36:86:
02:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:85:78:38:03:59:F5:0D:A6:36:F3:7F:D7:D6:66:9D:4F:7E:34:C3
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/_YV4OANZ9Q2mNvN_19ZmnU9-NMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.12.32.0/22
87.107.156.0/22
Signature Algorithm: sha256WithRSAEncryption
98:3b:87:d7:bf:34:c3:2b:08:11:26:ad:58:9c:bb:ef:45:70:
44:c1:2d:b2:24:5c:bf:09:db:9f:9e:cc:43:1b:f3:92:75:99:
09:9f:62:5a:20:7d:49:c7:c6:74:94:82:23:f7:0b:52:50:7a:
7b:82:59:ba:32:cc:39:f6:fa:d4:08:0b:ed:b3:23:57:73:41:
4b:2e:4d:44:a9:d4:30:6e:00:63:ba:cc:69:48:37:db:e3:08:
65:00:03:35:8e:4d:50:2c:ba:1d:3c:fc:66:47:be:57:65:6d:
c3:13:c5:6a:f3:16:a8:09:e8:a6:dc:36:f4:42:0c:13:d9:55:
60:d7:30:c3:dd:89:21:ec:1e:0d:6a:2a:f7:fd:75:c1:04:69:
0a:27:2a:c9:c7:b9:63:1d:d6:05:6b:35:88:96:ee:cd:0a:2f:
18:96:2b:40:e3:60:c5:59:29:6b:55:4b:4a:43:57:3e:ae:d0:
f0:3a:2a:cc:e4:74:a2:1d:60:ed:37:22:54:02:93:ae:1e:9f:
a6:7c:32:64:ad:1d:2f:8e:8a:2e:0a:c0:aa:0f:f3:9a:26:7b:
b9:1c:10:e4:7e:f7:a8:a3:27:41:62:33:b7:31:15:f6:5b:77:
b1:7a:cb:b3:73:f6:83:7e:e1:5b:c5:db:20:0e:31:86:df:79:
2d:bb:f5:fa
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZEXQP3uZ+Wf8U7xmcRNDbqBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjQwODAzMDgwMDIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDg1NzgzODAzNTlmNTBkYTYzNmYzN2ZkN2Q2NjY5ZDRmN2UzNGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA++YEld39YLkNdsvX6G4elbcVSLny
7/+y6BNWegnPVHWag+9O+Z67vAL+mTofFlJSxZrgpJLmI4jNa0jI/TJI9aC7sMut
oemUWUPCIsGHGXtFpTensmCoV4H7p6ceJ3zs4KOrqogcz0gFP/qbNVC7xFa19WYs
54HqEG+eOYexyCmbPRDppC7LPqvVdWci3CCDaJWE4kpzFRXupDeS9K6Nt6BFuUWg
eRZdNPTkwlzNa0XFg5xh/fvuSQ0TujBoLTA9NnfvUhyo7BQ5lcpwoipFKfhexQ2t
PgIn3yG2Ci8vcWnAFky6FK/k4ejNI+t+76qMwGv/KAee2K39SbPwNoYCRQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFP2FeDgDWfUNpjbzf9fWZp1PfjTDMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvX1lWNE9BTlo5UTJtTnZOXzE5Wm1uVTktTk1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCUQwgAwQC
V2ucMA0GCSqGSIb3DQEBCwUAA4IBAQCYO4fXvzTDKwgRJq1YnLvvRXBEwS2yJFy/
CdufnsxDG/OSdZkJn2JaIH1Jx8Z0lIIj9wtSUHp7glm6Msw59vrUCAvtsyNXc0FL
Lk1EqdQwbgBjusxpSDfb4whlAAM1jk1QLLodPPxmR75XZW3DE8Vq8xaoCeim3Db0
QgwT2VVg1zDD3Ykh7B4Nair3/XXBBGkKJyrJx7ljHdYFazWIlu7NCi8YlitA42DF
WSlrVUtKQ1c+rtDwOirM5HSiHWDtNyJUApOuHp+mfDJkrR0vjoouCsCqD/OaJnu5
HBDkfveooydBYjO3MRX2W3exesuzc/aDfuFbxdsgDjGG33ktu/X6
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:17 2025 by rpki-client