Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/f1Mn7Cd4hqXJMrAZZ9wwK23Wgmc.roa
File: f1Mn7Cd4hqXJMrAZZ9wwK23Wgmc.roa (raw, json)
Hash identifier: TviHrp20Z9jaFzVrZPqPkOcZuFILGkxojF0BZ0X1VHc=
Subject key identifier: 7F:53:27:EC:27:78:86:A5:C9:32:B0:19:67:DC:30:2B:6D:D6:82:67
Certificate issuer: /CN=7d2ea3ecad5a402b8fe5a2a6138af66aac257ff9
Certificate serial: 019145870E649D885B183B32DE31AF6FC2A6
Authority key identifier: 7D:2E:A3:EC:AD:5A:40:2B:8F:E5:A2:A6:13:8A:F6:6A:AC:25:7F:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fS6j7K1aQCuP5aKmE4r2aqwlf_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/f1Mn7Cd4hqXJMrAZZ9wwK23Wgmc.roa
Signing time: Mon 12 Aug 2024 07:39:24 +0000
ROA not before: Mon 12 Aug 2024 07:39:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57043
IP address blocks: 5.253.63.0/24 maxlen: 24
79.133.180.0/24 maxlen: 24
194.113.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 07:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:87:0e:64:9d:88:5b:18:3b:32:de:31:af:6f:c2:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d2ea3ecad5a402b8fe5a2a6138af66aac257ff9
Validity
Not Before: Aug 12 07:39:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f5327ec277886a5c932b01967dc302b6dd68267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6b:bf:42:68:3a:24:43:df:4f:59:e5:67:ca:
d4:b3:3e:b8:74:d2:c8:af:a6:07:18:b1:2d:8c:06:
3b:64:0f:16:4b:e5:65:aa:e1:9d:1b:98:7e:4d:0e:
49:4c:11:c8:a5:16:d1:ba:2e:24:e4:b4:73:c7:62:
06:c1:1a:d8:3d:20:be:70:76:15:8f:57:7d:5b:25:
f7:53:97:0c:20:3b:5e:17:78:91:db:05:5e:8b:c0:
19:78:fc:58:97:a7:5d:78:7b:36:7c:b2:ca:81:a1:
25:29:62:f6:23:1a:cd:a1:c8:8e:7a:96:44:d0:0a:
ed:81:82:6a:9d:c7:f3:a3:dc:06:8e:e4:d3:98:98:
00:af:10:bb:ca:8d:81:51:da:51:80:9d:fc:8d:9a:
4b:8e:ee:3c:d4:9b:eb:b0:8c:d4:be:3b:79:d8:21:
23:25:14:67:46:bc:b6:1f:b7:d1:ac:4a:5f:7e:bd:
0d:01:cc:a1:c6:12:85:00:3e:da:32:6b:fd:e2:32:
84:eb:22:51:9c:ab:96:5b:e4:11:d2:9b:f2:f5:8a:
53:7b:d2:23:5c:74:b2:98:02:16:22:95:be:ef:4d:
72:98:b1:c6:45:04:f5:9a:7b:ee:0f:29:6a:42:48:
ab:a2:9a:bd:e1:ad:de:e8:f8:cf:37:be:ff:31:c5:
f1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:53:27:EC:27:78:86:A5:C9:32:B0:19:67:DC:30:2B:6D:D6:82:67
X509v3 Authority Key Identifier:
keyid:7D:2E:A3:EC:AD:5A:40:2B:8F:E5:A2:A6:13:8A:F6:6A:AC:25:7F:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fS6j7K1aQCuP5aKmE4r2aqwlf_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/f1Mn7Cd4hqXJMrAZZ9wwK23Wgmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/fS6j7K1aQCuP5aKmE4r2aqwlf_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.63.0/24
79.133.180.0/24
194.113.153.0/24
Signature Algorithm: sha256WithRSAEncryption
46:3c:81:04:54:0c:57:cf:97:3d:87:bc:4f:0f:e3:77:81:d6:
f0:ce:f0:f5:80:df:7a:ea:83:27:cd:2f:02:39:8a:c1:37:7a:
bd:69:b5:bf:e3:b1:93:64:4a:86:79:8b:af:25:02:43:32:94:
a8:23:48:4c:84:11:bb:52:45:9b:f2:73:2d:0d:c1:56:0b:91:
fa:b1:08:99:b1:fa:2f:86:82:33:88:1a:e8:93:21:cd:24:ee:
45:72:2e:89:81:1c:be:93:9e:5e:0c:a4:df:6b:a5:7e:63:6d:
cc:4c:bd:28:fb:c5:c5:a1:3e:0c:9c:99:6f:c7:9f:42:8a:07:
52:8b:60:27:a7:b9:f7:5c:f7:03:2e:15:d1:ed:b6:dc:8d:88:
2f:dd:e5:ea:f4:9a:4e:80:01:d1:00:27:3e:8c:77:76:78:70:
3a:34:e6:1f:f1:cf:d8:7c:50:d2:84:57:40:2d:8f:26:37:a3:
7d:80:49:b1:6e:1e:c4:ee:b3:98:6f:4c:11:31:8b:83:84:02:
7e:06:4b:0d:3a:53:0a:59:89:81:70:1a:a8:0c:7b:c9:83:3c:
db:63:82:41:56:fc:05:ce:ee:6f:9c:29:e0:91:fc:e8:39:b8:
f9:74:ca:44:ba:52:71:eb:26:37:cb:98:63:92:25:cc:f1:e0:
c0:81:27:78
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZFFhw5knYhbGDsy3jGvb8KmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMmVhM2VjYWQ1YTQwMmI4ZmU1YTJhNjEzOGFmNjZhYWMy
NTdmZjkwHhcNMjQwODEyMDczOTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZjUzMjdlYzI3Nzg4NmE1YzkzMmIwMTk2N2RjMzAyYjZkZDY4MjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWu/Qmg6JEPfT1nlZ8rUsz64dNLI
r6YHGLEtjAY7ZA8WS+VlquGdG5h+TQ5JTBHIpRbRui4k5LRzx2IGwRrYPSC+cHYV
j1d9WyX3U5cMIDteF3iR2wVei8AZePxYl6ddeHs2fLLKgaElKWL2IxrNociOepZE
0ArtgYJqncfzo9wGjuTTmJgArxC7yo2BUdpRgJ38jZpLju481JvrsIzUvjt52CEj
JRRnRry2H7fRrEpffr0NAcyhxhKFAD7aMmv94jKE6yJRnKuWW+QR0pvy9YpTe9Ij
XHSymAIWIpW+701ymLHGRQT1mnvuDylqQkiropq94a3e6PjPN77/McXxmwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFH9TJ+wneIalyTKwGWfcMCtt1oJnMB8GA1UdIwQY
MBaAFH0uo+ytWkArj+WiphOK9mqsJX/5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlM2ajdLMWFRQ3VQNWFLbUU0cjJhcXdsZl9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy80NDc2NzctOTk3Mi00ZGY4LWI1MDgt
YjkxYjkyZDRkODAxLzEvZjFNbjdDZDRocVhKTXJBWlo5d3dLMjNXZ21jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy80NDc2NzctOTk3Mi00ZGY4LWI1MDgtYjkxYjkyZDRkODAx
LzEvZlM2ajdLMWFRQ3VQNWFLbUU0cjJhcXdsZl9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABf0/AwQA
T4W0AwQAwnGZMA0GCSqGSIb3DQEBCwUAA4IBAQBGPIEEVAxXz5c9h7xPD+N3gdbw
zvD1gN966oMnzS8COYrBN3q9abW/47GTZEqGeYuvJQJDMpSoI0hMhBG7UkWb8nMt
DcFWC5H6sQiZsfovhoIziBrokyHNJO5Fci6JgRy+k55eDKTfa6V+Y23MTL0o+8XF
oT4MnJlvx59CigdSi2Anp7n3XPcDLhXR7bbcjYgv3eXq9JpOgAHRACc+jHd2eHA6
NOYf8c/YfFDShFdALY8mN6N9gEmxbh7E7rOYb0wRMYuDhAJ+BksNOlMKWYmBcBqo
DHvJgzzbY4JBVvwFzu5vnCngkfzoObj5dMpEulJx6yY3y5hjkiXM8eDAgSd4
-----END CERTIFICATE-----
Generated at Thu Aug 15 10:50:42 2024 by rpki-client on console-ams.rpki-client.org