Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/P8uxYWyeDyAFXy_HK3ZIpS0lCcM.roa
File: P8uxYWyeDyAFXy_HK3ZIpS0lCcM.roa (raw, json)
Hash identifier: ajIpkx3r3r5UV42loxeUer6LOMArOjISvBv8N9w7sAs=
Subject key identifier: 3F:CB:B1:61:6C:9E:0F:20:05:5F:2F:C7:2B:76:48:A5:2D:25:09:C3
Certificate issuer: /CN=44e888a76e99851b01fb86cec537d4d8e610de16
Certificate serial: 01937A6878DFD2856B1037E0C5BE892AB4D2
Authority key identifier: 44:E8:88:A7:6E:99:85:1B:01:FB:86:CE:C5:37:D4:D8:E6:10:DE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ROiIp26ZhRsB-4bOxTfU2OYQ3hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/P8uxYWyeDyAFXy_HK3ZIpS0lCcM.roa
Signing time: Sat 30 Nov 2024 00:11:27 +0000
ROA not before: Sat 30 Nov 2024 00:11:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49203
IP address blocks: 194.32.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:49:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:7a:68:78:df:d2:85:6b:10:37:e0:c5:be:89:2a:b4:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44e888a76e99851b01fb86cec537d4d8e610de16
Validity
Not Before: Nov 30 00:11:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3fcbb1616c9e0f20055f2fc72b7648a52d2509c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f1:43:ee:b1:c8:1d:d5:28:3c:04:b4:d6:04:
48:07:47:07:5a:4d:fd:fd:7d:4e:25:2f:48:9c:9d:
a9:32:41:a3:bc:e4:f0:14:31:5d:fa:9f:9a:d9:8e:
23:f5:0d:43:89:f7:0a:19:50:e7:ca:72:14:fa:59:
b9:e2:cc:47:ff:ef:0b:0a:a4:48:8c:85:e6:4b:9a:
75:5e:ff:4f:f7:6e:0b:f6:11:8e:2b:89:a9:07:ab:
53:5b:6f:d8:9a:b8:81:b6:a0:92:d7:71:5e:3b:ca:
a8:4d:9b:1f:59:5f:8e:4e:2a:5c:45:9b:8c:ea:74:
9d:cd:5a:76:24:bf:3f:f7:28:c4:c2:97:95:7c:94:
50:c4:f7:29:66:43:4e:34:4f:d2:78:55:f5:2a:f5:
a1:dc:4a:52:cc:e9:bf:a1:43:93:eb:a6:e9:6f:1b:
b1:6e:96:16:17:f7:86:8e:7e:ae:b3:24:23:81:4d:
9e:05:45:6b:76:c3:e0:0c:b5:b6:9e:2e:db:89:f6:
19:78:03:9b:2a:c9:97:4d:f2:41:d3:46:20:ac:c9:
51:7c:9a:d2:ee:ad:75:7f:51:a8:ce:90:7f:03:db:
60:da:49:22:47:43:2e:4e:45:b4:a4:86:2d:10:4e:
42:95:ca:4b:ad:9a:67:27:ce:33:83:e8:09:76:df:
00:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:CB:B1:61:6C:9E:0F:20:05:5F:2F:C7:2B:76:48:A5:2D:25:09:C3
X509v3 Authority Key Identifier:
keyid:44:E8:88:A7:6E:99:85:1B:01:FB:86:CE:C5:37:D4:D8:E6:10:DE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ROiIp26ZhRsB-4bOxTfU2OYQ3hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/P8uxYWyeDyAFXy_HK3ZIpS0lCcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/ROiIp26ZhRsB-4bOxTfU2OYQ3hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.82.0/24
Signature Algorithm: sha256WithRSAEncryption
23:5a:db:3b:97:a8:69:61:6f:76:c5:62:dd:b9:81:01:ee:17:
2d:34:5b:d9:3a:91:0a:b0:ba:19:91:6b:57:da:17:3e:52:87:
56:dc:c4:e1:96:9d:7a:0e:b2:76:9a:c7:3a:d8:72:74:4c:ca:
c0:34:aa:6b:04:7e:91:37:8d:ab:3d:3f:e3:5e:c1:40:98:45:
c2:38:40:c3:5b:38:4c:13:ac:51:fe:f0:2f:ea:5c:99:7d:c2:
f1:62:2b:cc:3e:04:bd:25:47:44:c3:56:48:22:c2:2d:fd:83:
80:ca:be:cb:51:84:1e:87:36:00:7c:14:13:84:f2:fa:af:84:
df:f9:ea:e8:c6:87:d0:69:94:82:1a:aa:07:8d:40:78:f0:52:
fe:52:7a:41:90:d7:85:63:f6:c8:3f:40:9c:34:b7:a7:70:4c:
81:fe:41:a3:c2:be:16:37:45:73:e2:92:b6:8a:c1:15:20:32:
5c:57:19:26:ea:02:6b:01:88:91:8f:49:3e:ff:54:f2:31:7c:
3d:c7:0d:8a:c3:31:98:df:d6:57:84:3f:a5:ff:35:e4:d4:64:
f4:7d:50:cb:ac:a0:21:d8:b9:5e:ba:c1:8a:e5:12:e2:14:27:
a9:b9:45:c7:75:b1:d2:b1:fe:fd:ae:0b:3b:1a:4e:c2:39:6b:
ae:da:d5:2e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZN6aHjf0oVrEDfgxb6JKrTSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0ZTg4OGE3NmU5OTg1MWIwMWZiODZjZWM1MzdkNGQ4ZTYx
MGRlMTYwHhcNMjQxMTMwMDAxMTI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZmNiYjE2MTZjOWUwZjIwMDU1ZjJmYzcyYjc2NDhhNTJkMjUwOWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3/FD7rHIHdUoPAS01gRIB0cHWk39
/X1OJS9InJ2pMkGjvOTwFDFd+p+a2Y4j9Q1DifcKGVDnynIU+lm54sxH/+8LCqRI
jIXmS5p1Xv9P924L9hGOK4mpB6tTW2/YmriBtqCS13FeO8qoTZsfWV+OTipcRZuM
6nSdzVp2JL8/9yjEwpeVfJRQxPcpZkNONE/SeFX1KvWh3EpSzOm/oUOT66bpbxux
bpYWF/eGjn6usyQjgU2eBUVrdsPgDLW2ni7bifYZeAObKsmXTfJB00YgrMlRfJrS
7q11f1GozpB/A9tg2kkiR0MuTkW0pIYtEE5ClcpLrZpnJ84zg+gJdt8AWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD/LsWFsng8gBV8vxyt2SKUtJQnDMB8GA1UdIwQY
MBaAFEToiKdumYUbAfuGzsU31NjmEN4WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUk9pSXAyNlpoUnNCLTRiT3hUZlUyT1lRM2hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS84MmUyYmEtNDQyYy00MmIwLTkzMTUt
YmMwZGJhOTMyYjM1LzEvUDh1eFlXeWVEeUFGWHlfSEszWklwUzBsQ2NNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS84MmUyYmEtNDQyYy00MmIwLTkzMTUtYmMwZGJhOTMyYjM1
LzEvUk9pSXAyNlpoUnNCLTRiT3hUZlUyT1lRM2hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiBSMA0G
CSqGSIb3DQEBCwUAA4IBAQAjWts7l6hpYW92xWLduYEB7hctNFvZOpEKsLoZkWtX
2hc+UodW3MThlp16DrJ2msc62HJ0TMrANKprBH6RN42rPT/jXsFAmEXCOEDDWzhM
E6xR/vAv6lyZfcLxYivMPgS9JUdEw1ZIIsIt/YOAyr7LUYQehzYAfBQThPL6r4Tf
+eroxofQaZSCGqoHjUB48FL+UnpBkNeFY/bIP0CcNLencEyB/kGjwr4WN0Vz4pK2
isEVIDJcVxkm6gJrAYiRj0k+/1TyMXw9xw2KwzGY39ZXhD+l/zXk1GT0fVDLrKAh
2LleusGK5RLiFCepuUXHdbHSsf79rgs7Gk7COWuu2tUu
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:32:16 2025 by rpki-client