Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/VS2ED1jChlYnqmIXnBGfTfatQ-Q.roa
File: VS2ED1jChlYnqmIXnBGfTfatQ-Q.roa (raw, json)
Hash identifier: cN3UMrIYof4XnpWOwB16bpixtuYTV7IU/YPTtU4zYXE=
Subject key identifier: 55:2D:84:0F:58:C2:86:56:27:AA:62:17:9C:11:9F:4D:F6:AD:43:E4
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 01936DAEC3B475D06FCBCC092C16A1C8A544
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/VS2ED1jChlYnqmIXnBGfTfatQ-Q.roa
Signing time: Wed 27 Nov 2024 12:53:10 +0000
ROA not before: Wed 27 Nov 2024 12:53:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 376
IP address blocks: 213.220.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Nov 2024 07:14:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:ae:c3:b4:75:d0:6f:cb:cc:09:2c:16:a1:c8:a5:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Nov 27 12:53:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=552d840f58c2865627aa62179c119f4df6ad43e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f1:95:dc:44:2b:ac:17:96:b5:08:8d:b6:60:
e2:9d:79:b7:58:e7:8c:3e:8e:57:cf:7f:bb:d6:6b:
06:b6:c8:0a:a8:57:fb:e4:08:69:c6:88:56:b8:3f:
af:57:b2:4a:da:31:b7:60:20:5f:ca:92:59:ff:32:
65:55:6d:92:71:ce:19:3a:9d:23:57:7a:7e:ad:ef:
3a:5a:3d:84:1d:85:a5:ae:90:e7:8e:32:cc:cf:36:
9e:bb:e1:a4:cf:ab:38:6d:f0:69:e4:39:d6:ba:1c:
88:2d:36:bd:15:12:46:2e:0b:55:b5:33:97:c3:f5:
54:ba:0a:2c:92:2a:8a:46:a4:c3:e8:e9:8d:0f:83:
3e:49:76:ed:c7:d6:5d:7d:ac:46:e3:f4:0f:8d:ed:
f6:88:aa:57:5f:83:38:42:cb:40:f9:6e:05:43:d0:
47:ea:2c:fb:18:69:47:18:1d:54:6f:19:b0:d5:7a:
84:8f:18:58:41:88:1b:0d:9a:a4:f0:d6:03:a0:2d:
2f:e5:0f:48:1b:52:16:b1:45:ff:5f:55:38:23:2d:
57:d8:5d:a8:cb:c9:b4:22:41:8b:33:8b:1f:4c:7e:
6f:87:49:09:de:6c:b0:62:9c:1f:47:8f:a9:c9:0e:
00:e4:db:f6:9b:a3:8b:6d:28:b6:d6:f4:bc:3a:c9:
69:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:2D:84:0F:58:C2:86:56:27:AA:62:17:9C:11:9F:4D:F6:AD:43:E4
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/VS2ED1jChlYnqmIXnBGfTfatQ-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.220.3.0/24
Signature Algorithm: sha256WithRSAEncryption
27:e8:87:db:69:0d:ce:76:6a:1c:ba:ae:25:02:ab:5e:f3:49:
14:e5:f5:12:9b:53:d8:dc:3f:7a:2b:77:b0:cc:df:d8:6d:67:
78:68:93:20:9d:6d:f0:9a:f0:4a:3b:28:61:42:0f:26:9f:70:
64:13:50:89:94:19:f6:d8:a4:3a:ec:c5:b9:f7:65:3b:0e:c0:
85:8e:ff:f9:04:6c:63:10:05:2c:8f:69:62:50:80:2c:4c:8e:
b1:4c:7f:44:9d:d8:1f:ea:f9:c5:a8:2a:c6:07:45:87:a1:13:
1a:67:98:21:bf:9b:8a:7d:ad:4b:84:8f:56:e5:7a:ca:b2:1f:
86:71:2f:fe:cd:d9:92:19:00:b2:97:b2:d1:e9:b9:d5:73:81:
40:3e:ea:69:b8:0b:a0:c7:2c:5b:ca:51:c4:3c:8d:21:c8:01:
dc:02:56:e2:4a:43:50:ac:89:85:41:9c:b5:77:6a:b1:dd:b5:
5c:aa:5c:1e:58:6c:41:2e:c0:30:1b:22:ab:c1:5c:89:63:00:
7b:4d:99:09:05:43:ac:c8:94:75:a4:f0:6c:dd:95:19:62:7b:
c0:9e:b1:fc:a4:d6:a3:47:23:0c:02:c7:1d:a1:47:95:68:cc:
08:0e:a8:51:31:62:ad:b6:3f:75:ed:f4:b8:7e:77:50:14:94:
ad:7a:ba:1a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNtrsO0ddBvy8wJLBahyKVEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NzFkY2M3YTlhYzczNTFjNzFlMGJjMjI3OGNmNDVmZDAy
MGFlMmUwHhcNMjQxMTI3MTI1MzEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTJkODQwZjU4YzI4NjU2MjdhYTYyMTc5YzExOWY0ZGY2YWQ0M2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/GV3EQrrBeWtQiNtmDinXm3WOeM
Po5Xz3+71msGtsgKqFf75AhpxohWuD+vV7JK2jG3YCBfypJZ/zJlVW2Scc4ZOp0j
V3p+re86Wj2EHYWlrpDnjjLMzzaeu+Gkz6s4bfBp5DnWuhyILTa9FRJGLgtVtTOX
w/VUugoskiqKRqTD6OmND4M+SXbtx9ZdfaxG4/QPje32iKpXX4M4QstA+W4FQ9BH
6iz7GGlHGB1Ubxmw1XqEjxhYQYgbDZqk8NYDoC0v5Q9IG1IWsUX/X1U4Iy1X2F2o
y8m0IkGLM4sfTH5vh0kJ3mywYpwfR4+pyQ4A5Nv2m6OLbSi21vS8OslpfwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFUthA9YwoZWJ6piF5wRn032rUPkMB8GA1UdIwQY
MBaAFAZx3MeprHNRxx4LwieM9F/QIK4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGIt
MWRkZWM0Y2NlMjRjLzEvVlMyRUQxakNobFlucW1JWG5CR2ZUZmF0US1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGItMWRkZWM0Y2NlMjRj
LzEvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1dwDMA0G
CSqGSIb3DQEBCwUAA4IBAQAn6IfbaQ3Odmocuq4lAqte80kU5fUSm1PY3D96K3ew
zN/YbWd4aJMgnW3wmvBKOyhhQg8mn3BkE1CJlBn22KQ67MW592U7DsCFjv/5BGxj
EAUsj2liUIAsTI6xTH9Endgf6vnFqCrGB0WHoRMaZ5ghv5uKfa1LhI9W5XrKsh+G
cS/+zdmSGQCyl7LR6bnVc4FAPuppuAugxyxbylHEPI0hyAHcAlbiSkNQrImFQZy1
d2qx3bVcqlweWGxBLsAwGyKrwVyJYwB7TZkJBUOsyJR1pPBs3ZUZYnvAnrH8pNaj
RyMMAscdoUeVaMwIDqhRMWKttj917fS4fndQFJSteroa
-----END CERTIFICATE-----
Generated at Thu Apr 17 02:08:56 2025 by rpki-client