Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/2yf57dLNSkRiX1oQghRLk_VBqSo.roa
File: 2yf57dLNSkRiX1oQghRLk_VBqSo.roa (raw, json)
Hash identifier: sHwdS6JPCFX5rSJ5yKkiUQRt2AUo4nIj4ts07ACZa/w=
Subject key identifier: DB:27:F9:ED:D2:CD:4A:44:62:5F:5A:10:82:14:4B:93:F5:41:A9:2A
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0193749396FF6C70B6FFE4DD203A348748A3
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/2yf57dLNSkRiX1oQghRLk_VBqSo.roa
Signing time: Thu 28 Nov 2024 21:00:49 +0000
ROA not before: Thu 28 Nov 2024 21:00:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60602
IP address blocks: 77.111.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:74:93:96:ff:6c:70:b6:ff:e4:dd:20:3a:34:87:48:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Nov 28 21:00:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db27f9edd2cd4a44625f5a1082144b93f541a92a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e8:e3:91:f0:6d:d6:1e:d4:8d:41:b3:d4:9a:
e5:e8:13:f1:97:97:08:d0:95:88:bb:16:84:3a:b2:
94:35:a3:d7:15:85:ce:07:2b:07:dc:0c:37:74:26:
e1:14:7b:de:9f:3b:65:a8:01:73:2a:f1:c3:70:8c:
1d:92:0c:51:c2:8c:75:41:5e:37:f9:46:45:26:ce:
ae:c6:92:4d:17:52:96:1f:41:e8:dc:4b:1e:4c:25:
e8:9b:a4:81:50:77:c1:90:36:55:5f:be:cf:4e:b5:
bc:eb:0e:e5:90:6c:20:08:53:33:85:3d:a7:b9:c9:
28:42:77:96:88:2e:bb:9a:bc:bc:cb:1f:9b:0a:7a:
3a:56:97:d1:fe:a4:5f:34:51:ec:54:8c:1d:1b:26:
29:9e:d4:e5:9a:77:1e:e7:11:32:a8:3f:75:a7:5f:
2f:b5:19:1a:94:0c:49:dc:b1:9b:5d:fb:d8:66:5e:
e5:e2:8b:12:8a:c1:fe:07:86:a2:cc:42:31:0d:e8:
eb:73:62:49:40:e3:cd:05:5f:ee:f7:83:a8:1d:f6:
25:7b:f7:bc:a9:16:21:c3:e3:dc:d1:ea:ae:d9:25:
91:c3:ab:1c:27:b4:8f:d3:28:4d:dd:ce:76:b2:94:
ba:2f:ab:ff:7f:96:2d:27:f1:3d:c7:43:93:21:3e:
c1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:27:F9:ED:D2:CD:4A:44:62:5F:5A:10:82:14:4B:93:F5:41:A9:2A
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/2yf57dLNSkRiX1oQghRLk_VBqSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.108.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:65:3c:0b:83:85:97:56:6c:3c:97:43:87:fc:df:9d:b5:33:
f6:39:16:02:59:88:01:1e:00:8f:c3:08:77:b1:70:1a:8e:23:
3d:3b:d4:94:82:08:8a:44:11:45:60:c0:e7:a4:b2:02:88:9f:
f1:c4:88:2a:2d:82:9f:ad:98:0f:08:7a:ca:23:ff:e9:3a:ac:
88:c7:7c:ae:19:5c:28:73:d2:aa:d4:b7:1e:b5:e7:cc:cb:8e:
23:75:2a:50:7e:8c:dd:36:01:6e:4d:22:a5:38:7a:64:b7:b5:
eb:f5:ea:63:3a:f5:17:aa:21:98:88:34:94:7f:f5:f6:66:10:
ec:b7:fd:f0:32:ec:88:1c:12:dd:d9:e8:a0:2b:61:d6:8c:dc:
3d:ae:ae:00:f0:07:17:76:e2:63:79:74:f0:06:43:ec:e5:95:
37:6a:17:fb:d2:c8:3c:44:b5:aa:e5:b9:a9:4a:8e:af:01:5f:
b4:91:e6:2d:e8:4f:b0:28:8e:90:db:96:d3:04:04:59:02:cd:
cb:23:3b:e5:13:e9:8e:fd:c4:cd:39:13:3a:52:44:4e:04:72:
2f:ee:59:fa:c7:2f:d1:d6:86:97:b5:2a:f7:cf:33:33:d9:19:
f9:ee:ce:05:49:7a:c2:d5:b8:f0:45:86:77:bb:86:1b:82:2b:
e1:e2:85:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZN0k5b/bHC2/+TdIDo0h0ijMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjQxMTI4MjEwMDQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjI3ZjllZGQyY2Q0YTQ0NjI1ZjVhMTA4MjE0NGI5M2Y1NDFhOTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvejjkfBt1h7UjUGz1Jrl6BPxl5cI
0JWIuxaEOrKUNaPXFYXOBysH3Aw3dCbhFHvenztlqAFzKvHDcIwdkgxRwox1QV43
+UZFJs6uxpJNF1KWH0Ho3EseTCXom6SBUHfBkDZVX77PTrW86w7lkGwgCFMzhT2n
uckoQneWiC67mry8yx+bCno6VpfR/qRfNFHsVIwdGyYpntTlmnce5xEyqD91p18v
tRkalAxJ3LGbXfvYZl7l4osSisH+B4aizEIxDejrc2JJQOPNBV/u94OoHfYle/e8
qRYhw+Pc0equ2SWRw6scJ7SP0yhN3c52spS6L6v/f5YtJ/E9x0OTIT7BFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNsn+e3SzUpEYl9aEIIUS5P1QakqMB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvMnlmNTdkTE5Ta1JpWDFvUWdoUkxrX1ZCcVNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATW9sMA0G
CSqGSIb3DQEBCwUAA4IBAQCeZTwLg4WXVmw8l0OH/N+dtTP2ORYCWYgBHgCPwwh3
sXAajiM9O9SUggiKRBFFYMDnpLICiJ/xxIgqLYKfrZgPCHrKI//pOqyIx3yuGVwo
c9Kq1LcetefMy44jdSpQfozdNgFuTSKlOHpkt7Xr9epjOvUXqiGYiDSUf/X2ZhDs
t/3wMuyIHBLd2eigK2HWjNw9rq4A8AcXduJjeXTwBkPs5ZU3ahf70sg8RLWq5bmp
So6vAV+0keYt6E+wKI6Q25bTBARZAs3LIzvlE+mO/cTNORM6UkROBHIv7ln6xy/R
1oaXtSr3zzMz2Rn57s4FSXrC1bjwRYZ3u4Ybgivh4oWJ
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:53 2025 by rpki-client