Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/dUDI5Verrqw6mklPxJbnP-L03aY.roa
File: dUDI5Verrqw6mklPxJbnP-L03aY.roa (raw, json)
Hash identifier: KWpwaIDNUHvM4HHRiSh8bt8eFJjUEXxHuYpFPiL3JjY=
Subject key identifier: 75:40:C8:E5:57:AB:AE:AC:3A:9A:49:4F:C4:96:E7:3F:E2:F4:DD:A6
Certificate issuer: /CN=ebfabfa628063f6b8e9888566f5f3fcfa798c621
Certificate serial: 018968B73E7D6A3AE0D24816B0ED1DAA7AE9
Authority key identifier: EB:FA:BF:A6:28:06:3F:6B:8E:98:88:56:6F:5F:3F:CF:A7:98:C6:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_q_pigGP2uOmIhWb18_z6eYxiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/dUDI5Verrqw6mklPxJbnP-L03aY.roa
Signing time: Tue 18 Jul 2023 11:16:26 +0000
ROA not before: Tue 18 Jul 2023 11:16:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39275
IP address blocks: 80.79.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:b7:3e:7d:6a:3a:e0:d2:48:16:b0:ed:1d:aa:7a:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebfabfa628063f6b8e9888566f5f3fcfa798c621
Validity
Not Before: Jul 18 11:16:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7540c8e557abaeac3a9a494fc496e73fe2f4dda6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:12:a7:a8:8e:73:e2:0b:21:96:d4:81:ec:47:
84:59:d6:ba:69:c1:5a:d8:b0:ef:b4:37:11:52:69:
ef:16:89:04:48:24:c8:5d:d6:ab:37:f7:83:2f:9f:
e0:24:3c:31:6d:d0:4b:9b:9e:a1:19:18:4e:40:44:
3b:24:48:d2:82:d0:c9:4a:58:d5:8c:64:7b:97:98:
46:02:f6:f1:61:d7:47:32:81:5d:c6:bf:c7:68:02:
64:50:79:54:d5:ea:93:67:bf:d3:b3:40:42:73:d7:
12:8f:8c:1d:85:9f:5d:dd:38:95:ef:4a:45:e8:28:
48:57:46:3e:f8:a1:89:c7:41:a8:8a:7a:3c:d0:ac:
db:03:03:eb:c4:c4:ee:d7:81:f9:8f:67:6b:16:d5:
9b:a8:86:11:ec:13:ad:10:09:f1:21:51:33:94:07:
64:ea:00:56:3d:83:81:0a:b7:a5:8f:e3:c4:dc:b3:
e1:21:44:bb:ed:e0:0b:20:c6:42:44:97:45:71:62:
c7:25:1f:30:ff:a8:19:26:9d:2a:27:4d:e8:42:11:
a6:5c:8c:f4:05:a7:bc:f1:1c:7e:d1:af:b1:f9:0f:
5f:f9:39:e7:47:d3:b4:9c:bc:37:bd:aa:2f:1e:75:
c5:0a:47:cd:cc:1d:f0:8a:e3:d0:c7:c2:19:d2:ec:
ca:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:40:C8:E5:57:AB:AE:AC:3A:9A:49:4F:C4:96:E7:3F:E2:F4:DD:A6
X509v3 Authority Key Identifier:
keyid:EB:FA:BF:A6:28:06:3F:6B:8E:98:88:56:6F:5F:3F:CF:A7:98:C6:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_q_pigGP2uOmIhWb18_z6eYxiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/dUDI5Verrqw6mklPxJbnP-L03aY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/6_q_pigGP2uOmIhWb18_z6eYxiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.79.153.0/24
Signature Algorithm: sha256WithRSAEncryption
54:0e:f4:13:31:de:84:da:51:cd:bf:79:b7:bd:f7:d2:07:27:
67:02:c6:1c:e1:c5:ce:8b:89:73:06:a5:5c:0c:d4:14:7f:14:
12:6b:d6:5b:03:67:90:86:52:7a:ef:ee:10:70:cc:4b:44:73:
a5:03:09:5a:36:dd:e7:14:38:6c:a0:de:e7:f2:ad:8d:d9:f3:
ca:40:47:7a:10:db:ae:4b:c1:21:58:9b:f3:42:05:fe:a8:72:
3f:31:25:82:7e:69:31:1e:6a:1a:e1:2b:ef:7c:3c:47:bd:de:
76:75:2e:31:eb:35:bd:2a:c6:4a:39:2a:87:a9:46:99:df:73:
91:2a:69:8f:88:e2:66:7e:c9:85:11:59:11:3c:00:9d:ae:07:
aa:db:e6:f4:97:17:86:7d:96:9c:cc:00:0b:54:0d:fe:92:bf:
e9:41:aa:7d:65:7a:cf:92:c6:e3:00:57:4b:f8:1c:6e:c0:8a:
77:7d:1d:1d:c8:ca:ee:9b:49:d6:d5:44:26:8e:f7:32:12:25:
1d:e9:bd:a9:85:7e:25:83:bc:43:6b:74:93:49:fc:71:21:60:
dd:83:26:13:0b:9a:99:1f:a9:12:6c:45:ad:5c:5e:e5:cc:e7:
22:32:0a:83:22:de:6a:12:52:f7:83:90:ab:0d:3d:c8:43:50:
7a:e8:ec:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlotz59ajrg0kgWsO0dqnrpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViZmFiZmE2MjgwNjNmNmI4ZTk4ODg1NjZmNWYzZmNmYTc5
OGM2MjEwHhcNMjMwNzE4MTExNjI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTQwYzhlNTU3YWJhZWFjM2E5YTQ5NGZjNDk2ZTczZmUyZjRkZGE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAixKnqI5z4gshltSB7EeEWda6acFa
2LDvtDcRUmnvFokESCTIXdarN/eDL5/gJDwxbdBLm56hGRhOQEQ7JEjSgtDJSljV
jGR7l5hGAvbxYddHMoFdxr/HaAJkUHlU1eqTZ7/Ts0BCc9cSj4wdhZ9d3TiV70pF
6ChIV0Y++KGJx0Goino80KzbAwPrxMTu14H5j2drFtWbqIYR7BOtEAnxIVEzlAdk
6gBWPYOBCrelj+PE3LPhIUS77eALIMZCRJdFcWLHJR8w/6gZJp0qJ03oQhGmXIz0
Bae88Rx+0a+x+Q9f+TnnR9O0nLw3vaovHnXFCkfNzB3wiuPQx8IZ0uzKSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHVAyOVXq66sOppJT8SW5z/i9N2mMB8GA1UdIwQY
MBaAFOv6v6YoBj9rjpiIVm9fP8+nmMYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNl9xX3BpZ0dQMnVPbUloV2IxOF96NmVZeGlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hM2EzMTEtMzc4NC00ODE4LWFiZjkt
ZTVmZDZlOTg0MmFiLzEvZFVESTVWZXJycXc2bWtsUHhKYm5QLUwwM2FZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9hM2EzMTEtMzc4NC00ODE4LWFiZjktZTVmZDZlOTg0MmFi
LzEvNl9xX3BpZ0dQMnVPbUloV2IxOF96NmVZeGlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUE+ZMA0G
CSqGSIb3DQEBCwUAA4IBAQBUDvQTMd6E2lHNv3m3vffSBydnAsYc4cXOi4lzBqVc
DNQUfxQSa9ZbA2eQhlJ67+4QcMxLRHOlAwlaNt3nFDhsoN7n8q2N2fPKQEd6ENuu
S8EhWJvzQgX+qHI/MSWCfmkxHmoa4SvvfDxHvd52dS4x6zW9KsZKOSqHqUaZ33OR
KmmPiOJmfsmFEVkRPACdrgeq2+b0lxeGfZaczAALVA3+kr/pQap9ZXrPksbjAFdL
+BxuwIp3fR0dyMrum0nW1UQmjvcyEiUd6b2phX4lg7xDa3STSfxxIWDdgyYTC5qZ
H6kSbEWtXF7lzOciMgqDIt5qElL3g5CrDT3IQ1B66Oxe
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:27 2024 by rpki-client on console-ams.rpki-client.org