Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/dUZWExSNCQ_yfYUqZQD-5L2hJW0.roa
File: dUZWExSNCQ_yfYUqZQD-5L2hJW0.roa (raw, json)
Hash identifier: gZBFNRqHMhyPp0LHvTlX0d9M82QmWwbfJpHqA5fLTtA=
Subject key identifier: 75:46:56:13:14:8D:09:0F:F2:7D:85:2A:65:00:FE:E4:BD:A1:25:6D
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0192FBE4627EDFC02A5C65FE47766E823D64
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/dUZWExSNCQ_yfYUqZQD-5L2hJW0.roa
Signing time: Tue 05 Nov 2024 10:35:01 +0000
ROA not before: Tue 05 Nov 2024 10:35:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213917
IP address blocks: 80.64.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fb:e4:62:7e:df:c0:2a:5c:65:fe:47:76:6e:82:3d:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Nov 5 10:35:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75465613148d090ff27d852a6500fee4bda1256d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6b:48:d8:b0:5b:2b:52:56:4e:e8:a9:1d:ac:
e7:4d:97:cc:f2:f5:2b:73:56:bd:f6:e0:23:47:bc:
2c:c0:79:d6:63:9e:c1:ec:fc:e5:bf:c3:9a:07:1e:
75:ca:06:3b:6d:d3:30:5f:09:51:c8:fe:e4:40:b3:
a1:9b:2d:fb:20:62:11:fb:f6:52:a4:66:91:18:b8:
42:c2:a6:29:df:28:1c:06:8e:6a:ef:98:cd:c3:ed:
8f:42:12:d2:dc:60:0e:bf:db:16:95:56:12:da:b3:
98:0b:2d:0a:cd:11:30:b7:e1:61:05:7b:cd:4c:da:
38:74:a9:b2:07:0d:4a:1b:8f:75:a4:44:ec:88:bc:
91:67:36:9a:ca:92:af:7f:f2:f2:f3:c0:0e:c7:8b:
76:b0:87:e9:85:c2:88:ba:ad:fb:ab:5c:a1:c9:fa:
e8:5c:cd:b0:fc:22:2c:63:38:44:14:d0:67:2d:5e:
83:6e:0c:06:21:cf:fd:fd:66:91:b4:ac:ab:cf:37:
7b:48:ee:33:00:5d:d5:4c:7c:32:af:3b:d0:73:4f:
04:fe:ea:46:e9:65:be:6d:7b:07:ef:c1:a5:a5:1e:
d6:2c:58:f3:fa:11:d2:3a:9f:72:2f:cd:4b:1d:25:
c6:73:d7:30:6a:b8:0c:57:67:b9:4d:32:b9:35:2a:
30:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:46:56:13:14:8D:09:0F:F2:7D:85:2A:65:00:FE:E4:BD:A1:25:6D
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/dUZWExSNCQ_yfYUqZQD-5L2hJW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.23.0/24
Signature Algorithm: sha256WithRSAEncryption
94:f7:c3:25:e1:a2:2e:ee:dd:e2:11:91:21:f3:07:95:4d:e2:
1e:06:7b:d8:6a:ad:04:43:45:b4:64:6f:b6:b2:db:6a:48:fe:
df:0f:e8:7c:bb:11:b4:71:ea:33:1b:30:1c:cc:4a:73:38:06:
27:9b:e0:d4:43:78:ce:13:6c:b2:1a:19:cc:61:74:3a:a4:de:
e7:fc:59:39:a6:44:f5:85:40:b1:9b:0e:44:69:95:75:bd:fc:
c9:10:fb:19:86:da:2a:46:4a:f8:1f:40:cf:e9:4c:15:cf:b9:
b3:9a:86:f1:ab:43:e5:0e:12:de:2e:6c:5c:7c:e4:06:be:50:
b6:05:2b:cd:70:a2:b9:64:5d:24:20:b9:4a:ad:80:5a:6c:70:
dc:02:71:9a:8d:b5:1f:c4:41:07:ef:18:35:9a:e6:da:3b:01:
2a:73:c4:3c:09:7f:30:e1:e1:bf:81:04:b4:ea:d3:78:a6:59:
7f:92:f3:68:3b:bb:71:6b:46:d4:a6:68:b1:b2:c8:cf:a9:cc:
5e:a7:d4:29:a3:14:87:f1:82:6a:45:b0:81:5c:d2:ef:30:cd:
51:a3:36:5c:74:0a:83:72:10:bd:4b:d9:94:b2:8b:f2:7c:69:
db:47:46:7d:1d:f6:47:f5:dd:41:0e:0f:17:41:3a:1f:d9:75:
4b:94:13:94
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZL75GJ+38AqXGX+R3Zugj1kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjQxMTA1MTAzNTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTQ2NTYxMzE0OGQwOTBmZjI3ZDg1MmE2NTAwZmVlNGJkYTEyNTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2tI2LBbK1JWTuipHaznTZfM8vUr
c1a99uAjR7wswHnWY57B7Pzlv8OaBx51ygY7bdMwXwlRyP7kQLOhmy37IGIR+/ZS
pGaRGLhCwqYp3ygcBo5q75jNw+2PQhLS3GAOv9sWlVYS2rOYCy0KzREwt+FhBXvN
TNo4dKmyBw1KG491pETsiLyRZzaaypKvf/Ly88AOx4t2sIfphcKIuq37q1yhyfro
XM2w/CIsYzhEFNBnLV6DbgwGIc/9/WaRtKyrzzd7SO4zAF3VTHwyrzvQc08E/upG
6WW+bXsH78GlpR7WLFjz+hHSOp9yL81LHSXGc9cwargMV2e5TTK5NSow4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHVGVhMUjQkP8n2FKmUA/uS9oSVtMB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvZFVaV0V4U05DUV95ZllVcVpRRC01TDJoSlcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEAXMA0G
CSqGSIb3DQEBCwUAA4IBAQCU98Ml4aIu7t3iEZEh8weVTeIeBnvYaq0EQ0W0ZG+2
sttqSP7fD+h8uxG0ceozGzAczEpzOAYnm+DUQ3jOE2yyGhnMYXQ6pN7n/Fk5pkT1
hUCxmw5EaZV1vfzJEPsZhtoqRkr4H0DP6UwVz7mzmobxq0PlDhLeLmxcfOQGvlC2
BSvNcKK5ZF0kILlKrYBabHDcAnGajbUfxEEH7xg1mubaOwEqc8Q8CX8w4eG/gQS0
6tN4pll/kvNoO7txa0bUpmixssjPqcxep9QpoxSH8YJqRbCBXNLvMM1RozZcdAqD
chC9S9mUsovyfGnbR0Z9HfZH9d1BDg8XQTof2XVLlBOU
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:41 2025 by rpki-client