Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/DmPNNzHfZe22-0Cvs7_IVPA8Yc8.roa
File: DmPNNzHfZe22-0Cvs7_IVPA8Yc8.roa (raw, json)
Hash identifier: m9Ww9Yg0liFw7NT/k5WqfJLoiXUeU+fYmAdoaFbS7uw=
Subject key identifier: 0E:63:CD:37:31:DF:65:ED:B6:FB:40:AF:B3:BF:C8:54:F0:3C:61:CF
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0193BFBAFDA3E29BCA01091A3FDCFD65438E
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/DmPNNzHfZe22-0Cvs7_IVPA8Yc8.roa
Signing time: Fri 13 Dec 2024 11:15:22 +0000
ROA not before: Fri 13 Dec 2024 11:15:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213923
IP address blocks: 193.183.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 13:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bf:ba:fd:a3:e2:9b:ca:01:09:1a:3f:dc:fd:65:43:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Dec 13 11:15:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e63cd3731df65edb6fb40afb3bfc854f03c61cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b4:c4:56:fe:29:34:4b:cb:6e:91:df:07:e5:
0d:66:2a:5c:f7:49:78:7b:6e:b0:2e:f6:f8:1d:51:
04:de:b4:25:d6:4e:5b:0b:5c:71:48:42:cd:17:b4:
24:e7:d4:86:7e:0b:77:4e:48:ac:c5:c8:b6:84:d7:
88:cc:65:a2:8a:e8:c3:2b:36:95:c4:5a:5c:2c:ae:
53:55:6f:f3:6d:53:b3:8e:8b:98:ea:92:4f:56:d4:
f2:eb:3c:a4:66:63:fd:d1:12:ff:d8:8c:16:66:1d:
5b:68:b5:c3:ad:1d:a7:8b:86:5b:3d:cb:7e:28:e6:
76:ce:b9:9b:14:bc:77:bf:ad:de:9b:e4:4d:2a:97:
52:5a:8f:1b:5d:1f:f8:77:fe:1e:13:78:a0:a5:e3:
39:56:a7:68:fe:f9:a5:2d:4e:65:9d:99:60:8d:d1:
36:83:cc:de:14:1a:5e:8a:07:58:86:34:e4:c2:e4:
a5:cd:c4:53:aa:88:fc:5d:a3:fa:c9:49:b2:fa:6c:
a5:ca:c3:5d:90:c3:1f:52:bf:4c:36:01:c0:7a:5c:
3f:95:a6:b5:89:a8:5d:f9:a5:da:0c:ca:9b:44:ed:
3e:b7:e4:fb:5a:01:b1:22:0c:97:a8:3f:68:52:c1:
ea:ca:3d:7e:5e:fb:ae:2b:f8:b7:99:4d:cd:8f:41:
f4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:63:CD:37:31:DF:65:ED:B6:FB:40:AF:B3:BF:C8:54:F0:3C:61:CF
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/DmPNNzHfZe22-0Cvs7_IVPA8Yc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.183.71.0/24
Signature Algorithm: sha256WithRSAEncryption
be:c8:c6:cb:25:76:cb:31:1c:e0:06:15:98:1c:96:9b:2d:0f:
5b:87:a2:0d:3b:1f:6a:ea:85:6d:af:23:52:19:78:f9:19:b6:
b7:a8:36:8e:1b:75:0c:fe:4c:77:51:df:93:18:28:ee:98:0d:
3e:9c:9a:51:0c:0d:d5:2a:dc:30:ba:61:59:5e:8e:dc:a7:92:
03:50:09:be:a1:d6:35:76:a9:4e:48:b3:8f:1f:90:8b:34:13:
d3:4d:5d:fa:94:da:07:b0:ce:99:86:46:dd:c7:b6:89:02:81:
00:b5:bb:bf:fd:e8:c2:6c:cf:cf:f5:06:93:ca:e2:1c:cc:76:
14:fa:d2:e8:ed:f9:56:e8:93:dc:72:5f:15:15:16:8b:30:e7:
be:b5:3e:50:b9:5e:9a:d0:d6:3c:63:97:0b:de:ad:80:ae:f7:
86:8d:06:f1:bc:f4:f9:c3:6d:b6:e5:b7:33:15:e7:1a:32:3f:
fb:ac:29:71:bf:c0:36:e1:db:ba:e8:4b:ae:ac:04:84:08:98:
8f:0b:f7:7f:01:92:96:46:91:3e:1e:a5:43:dd:34:f2:4e:88:
38:c8:78:20:72:eb:5d:54:57:e1:63:02:64:38:a2:b3:76:1e:
e1:07:04:a7:12:c6:ea:ab:0f:11:cb:f3:98:fb:78:82:a5:b3:
88:c6:91:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZO/uv2j4pvKAQkaP9z9ZUOOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjQxMjEzMTExNTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTYzY2QzNzMxZGY2NWVkYjZmYjQwYWZiM2JmYzg1NGYwM2M2MWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLTEVv4pNEvLbpHfB+UNZipc90l4
e26wLvb4HVEE3rQl1k5bC1xxSELNF7Qk59SGfgt3Tkisxci2hNeIzGWiiujDKzaV
xFpcLK5TVW/zbVOzjouY6pJPVtTy6zykZmP90RL/2IwWZh1baLXDrR2ni4ZbPct+
KOZ2zrmbFLx3v63em+RNKpdSWo8bXR/4d/4eE3igpeM5Vqdo/vmlLU5lnZlgjdE2
g8zeFBpeigdYhjTkwuSlzcRTqoj8XaP6yUmy+mylysNdkMMfUr9MNgHAelw/laa1
iahd+aXaDMqbRO0+t+T7WgGxIgyXqD9oUsHqyj1+XvuuK/i3mU3Nj0H0NwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA5jzTcx32XttvtAr7O/yFTwPGHPMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvRG1QTk56SGZaZTIyLTBDdnM3X0lWUEE4WWM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbdHMA0G
CSqGSIb3DQEBCwUAA4IBAQC+yMbLJXbLMRzgBhWYHJabLQ9bh6INOx9q6oVtryNS
GXj5Gba3qDaOG3UM/kx3Ud+TGCjumA0+nJpRDA3VKtwwumFZXo7cp5IDUAm+odY1
dqlOSLOPH5CLNBPTTV36lNoHsM6Zhkbdx7aJAoEAtbu//ejCbM/P9QaTyuIczHYU
+tLo7flW6JPccl8VFRaLMOe+tT5QuV6a0NY8Y5cL3q2ArveGjQbxvPT5w2225bcz
FecaMj/7rClxv8A24du66EuurASECJiPC/d/AZKWRpE+HqVD3TTyTog4yHggcutd
VFfhYwJkOKKzdh7hBwSnEsbqqw8Ry/OY+3iCpbOIxpFh
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:22 2025 by rpki-client