Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/dtzQwI_u1r_7U7HNO1iy81oDUqQ.roa
File: dtzQwI_u1r_7U7HNO1iy81oDUqQ.roa (raw, json)
Hash identifier: LRY1b5dVZe5oLwyoon4PwwUX9ZhZyXFmURteRseb7LI=
Subject key identifier: 76:DC:D0:C0:8F:EE:D6:BF:FB:53:B1:CD:3B:58:B2:F3:5A:03:52:A4
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0194258F9644029131FA0E0867980A584D12
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/dtzQwI_u1r_7U7HNO1iy81oDUqQ.roa
Signing time: Thu 02 Jan 2025 05:49:14 +0000
ROA not before: Thu 02 Jan 2025 05:49:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50612
IP address blocks: 80.242.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 17:53:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:96:44:02:91:31:fa:0e:08:67:98:0a:58:4d:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 05:49:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=76dcd0c08feed6bffb53b1cd3b58b2f35a0352a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f8:e3:54:cb:9a:78:b9:c0:2a:42:27:68:ff:
b1:7a:9b:42:8a:e8:7a:0d:98:ca:ab:f7:7b:ad:a1:
ac:08:4f:64:47:31:89:3c:f1:3f:91:1c:1b:5c:e5:
22:c0:34:e9:40:a5:df:a0:25:fd:98:9d:18:90:66:
7a:6d:2a:dc:82:5f:83:45:5f:54:60:20:f0:c9:24:
37:7f:fe:18:96:29:ca:83:f0:b6:8d:38:c4:1e:70:
05:06:64:0e:4b:bd:81:21:b6:75:d7:94:56:1b:56:
39:c9:4e:61:d0:89:a1:5a:d6:d1:49:0d:be:3a:4b:
f0:c1:27:99:04:40:24:3f:fe:17:9c:d2:eb:fd:8c:
2b:8c:e3:9a:88:ef:dd:a2:52:fe:3b:c8:0d:4b:5c:
dd:86:60:e5:4d:07:b7:bf:4a:d9:06:28:5e:80:ce:
f8:91:5b:ee:ed:62:50:0d:ca:f2:b6:9d:40:a5:66:
9d:26:f3:17:84:a1:03:27:7e:54:cd:5c:76:f6:5b:
d6:2c:4d:a5:71:30:70:47:bc:da:60:4e:01:95:af:
37:f5:e6:cd:e2:f3:a1:a0:17:5e:f3:ee:40:01:db:
6c:03:a8:80:26:0e:31:e7:73:46:9a:f9:09:9d:47:
59:2e:7c:49:13:f4:87:e6:36:95:1d:18:0f:d2:70:
a8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:DC:D0:C0:8F:EE:D6:BF:FB:53:B1:CD:3B:58:B2:F3:5A:03:52:A4
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/dtzQwI_u1r_7U7HNO1iy81oDUqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.242.59.0/24
Signature Algorithm: sha256WithRSAEncryption
65:0e:aa:a0:97:9c:00:f2:36:80:55:a2:33:b1:9f:49:44:c7:
39:6c:8b:bb:ba:c7:2a:36:0c:55:d2:19:c2:f0:e6:1b:09:ec:
e8:20:99:71:cc:2e:4a:fa:0a:a1:90:81:06:64:84:2c:64:50:
f7:dd:57:8f:17:50:d8:93:06:c6:6a:41:0c:66:e5:c5:98:77:
bc:ee:87:e4:7d:8c:69:b5:27:17:6c:69:e3:fb:c6:39:a0:33:
08:ae:51:28:e4:cf:a7:0a:40:ae:86:5c:cc:f9:69:9c:8f:ce:
c3:15:23:29:8d:9a:08:bb:ae:9e:87:cd:cb:95:23:a2:d1:5c:
78:9a:e0:12:d7:f3:47:b3:d8:fd:c0:fc:d8:48:b2:76:dc:81:
09:95:7e:2c:0d:bf:1c:ee:44:61:01:83:45:ba:08:6f:3d:1a:
af:8c:9d:c2:b9:d9:62:ca:d3:c0:81:e1:ac:c9:06:e3:25:56:
44:c0:e6:45:1d:d9:70:d2:b1:67:30:98:c0:33:f4:bc:af:33:
7b:6a:6e:1b:d8:b6:50:03:ef:7c:da:96:60:26:2a:ab:9a:6e:
69:15:7e:eb:c0:8c:e1:3b:de:08:8d:ca:ae:c5:4b:09:6a:d8:
12:f7:e3:64:d1:a9:ca:fb:a6:8a:de:72:c8:a2:a0:7a:18:ac:
42:51:98:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:11:19 2025 by rpki-client