Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/sBt33LFj42MDwJolJRId6B-2E0Y.roa
File: sBt33LFj42MDwJolJRId6B-2E0Y.roa (raw, json)
Hash identifier: 562Bw+D4kBaedexYViy/tMphPzb7PoE1u+hHhef2TCo=
Subject key identifier: B0:1B:77:DC:B1:63:E3:63:03:C0:9A:25:25:12:1D:E8:1F:B6:13:46
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 01942369D26E0F890A59BEF5026FE00820AE
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/sBt33LFj42MDwJolJRId6B-2E0Y.roa
Signing time: Wed 01 Jan 2025 19:48:45 +0000
ROA not before: Wed 01 Jan 2025 19:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60591
IP address blocks: 45.87.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Feb 2025 07:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:d2:6e:0f:89:0a:59:be:f5:02:6f:e0:08:20:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Jan 1 19:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b01b77dcb163e36303c09a2525121de81fb61346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:47:7a:b6:5d:54:29:92:b4:c0:0a:da:65:2a:
c1:76:81:4b:41:0b:e4:a7:08:1b:56:39:93:5a:88:
1a:a8:39:cf:b8:00:c8:1f:3a:c3:ee:99:4d:69:40:
ff:32:26:e5:20:9d:43:c1:c6:1c:bf:24:0d:5f:84:
cc:7b:96:da:a8:f6:8a:2e:d1:2e:85:ae:15:e0:ff:
71:87:7c:d5:a7:db:49:11:e7:cd:0c:9a:ba:73:93:
d6:b9:ba:4c:82:d9:82:97:4f:cb:0a:12:ba:50:41:
16:c2:f9:a7:1c:c0:80:a6:f6:a8:55:51:92:8e:c9:
63:9d:ba:21:68:c2:7a:87:b6:14:87:14:6c:98:5f:
ca:8f:06:68:73:60:de:4f:4c:cc:7d:41:e3:88:eb:
45:c9:f0:76:2e:44:04:5d:94:b4:24:dd:bd:19:94:
3c:5b:7e:86:ac:41:25:6a:40:83:e9:f8:0e:fb:fc:
15:f0:ff:0d:86:e1:8e:fc:cd:e0:bf:35:8c:6a:e0:
aa:ee:9d:a5:14:1d:18:31:72:43:37:ec:63:cf:89:
47:93:08:a0:64:7e:7a:8f:50:2a:34:59:31:d3:f8:
66:51:c1:21:49:23:5a:ab:1d:de:6e:c9:b3:45:71:
82:9e:96:25:23:5a:83:56:73:5b:c9:91:43:5f:7d:
a2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:1B:77:DC:B1:63:E3:63:03:C0:9A:25:25:12:1D:E8:1F:B6:13:46
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/sBt33LFj42MDwJolJRId6B-2E0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.219.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:1e:b8:82:0f:21:06:87:ec:05:81:07:e4:69:c1:fe:4e:30:
67:a6:2c:3d:cb:94:90:b7:ee:7f:ad:b6:99:a6:aa:c2:4a:4d:
98:fa:8c:1a:c9:3e:c4:bf:ed:fb:0a:7d:f4:f4:4c:5f:1f:69:
69:8c:c2:ab:11:e4:92:e1:56:e7:1f:67:7c:5b:91:27:9e:0a:
c2:54:2f:cb:20:9a:01:eb:e2:f7:74:a1:e1:58:22:fc:5b:7e:
5c:78:c3:b8:9c:b7:65:c4:3f:c4:35:b3:2d:eb:85:1b:6c:d0:
75:73:e8:d8:b9:5c:6a:ef:41:8a:b6:a0:4a:95:aa:72:e4:7b:
7b:b7:c9:bb:84:a4:d9:cd:cf:a2:04:45:81:73:2c:f7:7c:bf:
a4:cb:4a:36:42:d0:c5:0d:4c:38:64:5e:4c:c0:b2:86:f5:27:
f4:d2:15:0a:0f:e4:c4:6a:f9:52:0e:53:5a:61:0f:b5:f1:e1:
91:dc:80:f5:21:9e:7d:65:54:f2:92:72:28:bb:3a:1f:37:e9:
86:68:dc:2f:e2:f7:87:71:d5:46:49:49:34:41:6f:0e:17:c8:
27:2e:9c:4c:6c:05:ba:d4:cd:01:0f:31:79:12:f0:0a:77:04:
5c:02:5e:b5:20:c7:f2:d7:69:b5:2d:ce:ec:22:43:18:1b:9c:
7a:51:ca:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQjadJuD4kKWb71Am/gCCCuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlYmJmMzE3ZTVmYWY1ZWYwMmM5Y2NlNzk1MjdkNWU3NGI4
YWJjYzUwHhcNMjUwMTAxMTk0ODQ1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMDFiNzdkY2IxNjNlMzYzMDNjMDlhMjUyNTEyMWRlODFmYjYxMzQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUd6tl1UKZK0wAraZSrBdoFLQQvk
pwgbVjmTWogaqDnPuADIHzrD7plNaUD/MiblIJ1DwcYcvyQNX4TMe5baqPaKLtEu
ha4V4P9xh3zVp9tJEefNDJq6c5PWubpMgtmCl0/LChK6UEEWwvmnHMCApvaoVVGS
jsljnbohaMJ6h7YUhxRsmF/KjwZoc2DeT0zMfUHjiOtFyfB2LkQEXZS0JN29GZQ8
W36GrEElakCD6fgO+/wV8P8NhuGO/M3gvzWMauCq7p2lFB0YMXJDN+xjz4lHkwig
ZH56j1AqNFkx0/hmUcEhSSNaqx3ebsmzRXGCnpYlI1qDVnNbyZFDX32iewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLAbd9yxY+NjA8CaJSUSHegfthNGMB8GA1UdIwQY
MBaAFO678xfl+vXvAsnM55Un1edLirzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMt
NmZlOWJmNjA1NjFjLzEvc0J0MzNMRmo0Mk1Ed0pvbEpSSWQ2Qi0yRTBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi82ZGVjNjMtYjlkOS00ODBiLWFlYjMtNmZlOWJmNjA1NjFj
LzEvN3J2ekYtWDY5ZThDeWN6bmxTZlY1MHVLdk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVfbMA0G
CSqGSIb3DQEBCwUAA4IBAQBvHriCDyEGh+wFgQfkacH+TjBnpiw9y5SQt+5/rbaZ
pqrCSk2Y+owayT7Ev+37Cn309ExfH2lpjMKrEeSS4VbnH2d8W5EnngrCVC/LIJoB
6+L3dKHhWCL8W35ceMO4nLdlxD/ENbMt64UbbNB1c+jYuVxq70GKtqBKlapy5Ht7
t8m7hKTZzc+iBEWBcyz3fL+ky0o2QtDFDUw4ZF5MwLKG9Sf00hUKD+TEavlSDlNa
YQ+18eGR3ID1IZ59ZVTyknIouzofN+mGaNwv4veHcdVGSUk0QW8OF8gnLpxMbAW6
1M0BDzF5EvAKdwRcAl61IMfy12m1Lc7sIkMYG5x6UcoT
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:49 2025 by rpki-client