Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Db1m7jGe1-ntYyxRkF9e_5PxEYs.roa
File: Db1m7jGe1-ntYyxRkF9e_5PxEYs.roa (raw, json)
Hash identifier: PTvFGgoMbnXsISQaWxOJIuN0hcZ3IZP84zUPirUfF+c=
Subject key identifier: 0D:BD:66:EE:31:9E:D7:E9:ED:63:2C:51:90:5F:5E:FF:93:F1:11:8B
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 019363ED342204645BA5686B520A9CFD3E81
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Db1m7jGe1-ntYyxRkF9e_5PxEYs.roa
Signing time: Mon 25 Nov 2024 15:25:10 +0000
ROA not before: Mon 25 Nov 2024 15:25:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213810
IP address blocks: 80.64.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:63:ed:34:22:04:64:5b:a5:68:6b:52:0a:9c:fd:3e:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Nov 25 15:25:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0dbd66ee319ed7e9ed632c51905f5eff93f1118b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:da:a3:87:ee:e6:50:76:45:6b:1c:c7:95:0b:
90:d5:ed:23:f3:1b:44:bc:61:ee:df:0d:0b:4b:fe:
9d:de:78:ee:1f:03:a5:16:f5:a3:97:7d:a3:da:c6:
f2:5e:63:71:b8:34:19:49:5e:1a:15:b7:69:2a:82:
28:bd:37:f4:e7:81:0a:55:33:ab:35:2d:60:d7:56:
04:b5:00:44:d6:2c:6c:d6:25:ee:89:ae:a2:a8:d7:
13:6a:56:b6:dc:b5:37:3d:a7:85:52:10:81:75:e6:
ec:e2:1c:ed:2f:b4:dc:1e:c8:39:49:7d:93:2d:a6:
f1:6e:b6:c8:3c:25:e7:49:5a:da:71:38:11:a3:f9:
cb:e8:1d:7e:16:fd:7c:02:af:84:50:28:d8:4f:5c:
47:01:8c:36:d7:96:61:25:af:85:a8:ea:5e:b7:6f:
f9:1c:b4:94:1d:1a:fc:70:f5:c2:01:c3:fa:b8:08:
c3:56:8b:3a:41:a9:6d:e4:78:d2:7c:24:20:bb:81:
b2:9b:d2:34:fa:18:22:ce:bb:a2:01:38:11:e7:af:
56:0c:01:13:9c:82:9f:f6:66:27:81:82:75:93:66:
83:ae:cc:6b:b7:37:b0:20:8e:cf:03:e4:77:d0:d2:
23:98:93:c8:cc:53:9e:71:82:19:43:72:54:64:ee:
87:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BD:66:EE:31:9E:D7:E9:ED:63:2C:51:90:5F:5E:FF:93:F1:11:8B
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/Db1m7jGe1-ntYyxRkF9e_5PxEYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.20.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:10:aa:b3:eb:f0:be:bd:eb:ee:6d:27:a9:50:62:3b:ad:cc:
be:43:2c:8d:3a:17:83:c7:b8:19:ec:d5:7d:0e:e6:33:53:de:
c0:69:0d:81:e3:67:8c:13:72:c7:d7:f7:d1:a4:56:d0:05:d9:
3d:48:60:47:da:42:97:02:ce:f8:ac:6d:c4:95:f7:af:b2:44:
fe:f0:8f:8c:50:ae:66:d7:ca:2d:54:f2:a6:dd:ff:55:4a:a5:
f5:fc:98:fe:60:1a:87:f7:6e:7b:11:e8:35:a8:ff:9f:57:2c:
37:3f:b3:ac:e6:e0:95:5e:cb:28:5e:6e:e4:24:23:86:e7:b7:
d0:19:2d:64:ff:91:d5:bd:8c:da:c9:3e:6e:a8:1c:54:8a:93:
a4:8a:3d:f9:d1:f1:22:e4:42:bd:90:f6:63:1f:08:04:1a:9c:
2a:b5:70:86:e6:59:4b:8b:7a:10:d4:bb:ae:c8:0b:40:36:c8:
63:99:d2:5a:f1:a2:db:2d:49:27:9b:d8:e2:81:fb:9d:34:91:
55:b3:fc:f7:51:e6:0c:3e:ef:44:d9:5e:e9:cd:a4:1d:b3:a1:
be:63:71:7f:0e:88:d8:af:b3:cf:84:60:ac:fa:b7:9c:4d:0a:
64:83:21:2b:d7:b3:15:06:79:47:85:0d:a9:3c:4a:22:33:f9:
7c:26:e8:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:00:05 2025 by rpki-client