Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/P9Pllqy2bsTJXxusNX37l6C_4Sg.roa
File: P9Pllqy2bsTJXxusNX37l6C_4Sg.roa (raw, json)
Hash identifier: y6eQRcmJ3w8tJCitrCE4xROuVWFL0n3wDNZs8qJ9bxY=
Subject key identifier: 3F:D3:E5:96:AC:B6:6E:C4:C9:5F:1B:AC:35:7D:FB:97:A0:BF:E1:28
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 018CCA29BAFFEC7EF676CBCAA1E03C8C8275
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/P9Pllqy2bsTJXxusNX37l6C_4Sg.roa
Signing time: Tue 02 Jan 2024 12:33:01 +0000
ROA not before: Tue 02 Jan 2024 12:33:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51822
IP address blocks: 89.226.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:ba:ff:ec:7e:f6:76:cb:ca:a1:e0:3c:8c:82:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Jan 2 12:33:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3fd3e596acb66ec4c95f1bac357dfb97a0bfe128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:eb:da:a5:6b:92:a7:7f:51:2d:c1:a0:b2:bf:
0d:0e:02:7c:b3:87:1c:ba:67:98:41:05:4d:a7:5e:
a6:6b:0b:ab:fc:b4:ec:9a:a4:ac:15:e7:ba:91:4a:
1c:5b:ef:20:52:0a:42:f0:89:33:90:40:62:d7:01:
ab:f6:f3:2b:04:32:34:8b:cf:7a:91:bc:b0:da:87:
4a:79:36:fb:9f:b0:0e:c6:47:07:3c:62:33:7a:1b:
03:2d:b7:31:e7:b3:db:8c:26:71:f9:06:d7:ae:21:
80:9d:a3:2d:09:87:df:d2:b3:4f:cd:2c:96:f7:bd:
3b:db:02:d9:85:d8:42:44:b4:e3:3b:aa:2f:08:a1:
ad:ee:5e:0c:66:61:9d:13:45:e8:69:35:4a:fa:31:
1b:c2:0b:80:8f:e6:3f:01:3f:bd:85:bb:d7:d5:1b:
70:db:ab:5b:9d:0d:3b:43:b2:4d:6e:a6:69:d9:33:
17:c4:07:43:ba:4d:fa:c0:2a:1f:b9:58:df:09:cb:
49:a9:45:4f:9a:fe:0b:7d:28:6d:2b:52:73:46:74:
69:fe:0b:7d:c3:a8:50:28:f3:c0:e2:0c:67:c8:77:
b8:81:81:d1:bf:1a:3c:15:1f:04:fb:e0:55:1a:6d:
6a:49:08:fb:f8:10:1a:cc:1c:3a:d5:5e:a6:48:7b:
c0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:D3:E5:96:AC:B6:6E:C4:C9:5F:1B:AC:35:7D:FB:97:A0:BF:E1:28
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/P9Pllqy2bsTJXxusNX37l6C_4Sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.226.253.0/24
Signature Algorithm: sha256WithRSAEncryption
87:e4:a6:b9:a7:14:23:19:e0:42:50:d7:1a:5e:13:01:85:63:
df:ee:61:e7:8b:99:fe:2d:61:af:58:55:86:a6:02:a5:aa:47:
16:f5:ae:86:ab:35:f1:12:48:ed:fe:77:8c:ce:94:11:59:04:
08:48:58:ef:87:ca:b9:f1:22:be:f1:81:e7:74:40:0c:d7:ff:
8d:94:83:37:85:1a:ed:a9:cb:12:17:47:cb:3a:65:eb:5a:2d:
f9:89:88:5a:cc:f8:0f:41:73:12:b3:78:97:50:cd:d5:27:a0:
27:ce:f6:2e:6c:59:6e:82:3d:f9:65:7e:c8:fa:03:ff:e2:98:
e4:72:80:a4:82:20:73:b8:c6:3c:f5:94:43:92:95:b1:ba:91:
e9:8b:4b:f7:49:68:e8:fe:cd:0e:86:9d:61:f8:de:61:b6:55:
b0:93:0c:dc:d6:84:60:fa:d6:e4:04:2a:f9:c2:5d:55:41:af:
0f:2e:a9:01:d7:aa:b3:be:b5:49:9c:b3:51:53:61:df:a7:de:
5d:2a:0c:da:61:52:d8:8a:de:b3:24:c1:e6:6b:c0:6c:ec:57:
84:49:6d:1b:1e:53:6c:fd:a7:d4:04:7f:7e:4c:0b:11:75:6a:
a5:cc:5c:97:f8:b5:65:ba:d5:6c:3a:d1:8e:0a:8d:9e:30:da:
37:cf:df:a8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKbr/7H72dsvKoeA8jIJ1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyZTI4MTBmNDliMzZmZGQ2NDFjMzI2YmQxZGU0ZTQyZDEy
OGIwNDYwHhcNMjQwMTAyMTIzMzAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZmQzZTU5NmFjYjY2ZWM0Yzk1ZjFiYWMzNTdkZmI5N2EwYmZlMTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+vapWuSp39RLcGgsr8NDgJ8s4cc
umeYQQVNp16mawur/LTsmqSsFee6kUocW+8gUgpC8IkzkEBi1wGr9vMrBDI0i896
kbyw2odKeTb7n7AOxkcHPGIzehsDLbcx57PbjCZx+QbXriGAnaMtCYff0rNPzSyW
97072wLZhdhCRLTjO6ovCKGt7l4MZmGdE0XoaTVK+jEbwguAj+Y/AT+9hbvX1Rtw
26tbnQ07Q7JNbqZp2TMXxAdDuk36wCofuVjfCctJqUVPmv4LfShtK1JzRnRp/gt9
w6hQKPPA4gxnyHe4gYHRvxo8FR8E++BVGm1qSQj7+BAazBw61V6mSHvAIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD/T5Zastm7EyV8brDV9+5egv+EoMB8GA1UdIwQY
MBaAFPLigQ9Js2/dZBwya9HeTkLRKLBGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOHVLQkQwbXpiOTFrSERKcjBkNU9RdEVvc0VZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi83OWU5MDUtZmIwZC00YjhiLTkzOTAt
NTBkMmI3MGJjZjMxLzEvUDlQbGxxeTJic1RKWHh1c05YMzdsNkNfNFNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi83OWU5MDUtZmIwZC00YjhiLTkzOTAtNTBkMmI3MGJjZjMx
LzEvOHVLQkQwbXpiOTFrSERKcjBkNU9RdEVvc0VZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWeL9MA0G
CSqGSIb3DQEBCwUAA4IBAQCH5Ka5pxQjGeBCUNcaXhMBhWPf7mHni5n+LWGvWFWG
pgKlqkcW9a6GqzXxEkjt/neMzpQRWQQISFjvh8q58SK+8YHndEAM1/+NlIM3hRrt
qcsSF0fLOmXrWi35iYhazPgPQXMSs3iXUM3VJ6AnzvYubFlugj35ZX7I+gP/4pjk
coCkgiBzuMY89ZRDkpWxupHpi0v3SWjo/s0Ohp1h+N5htlWwkwzc1oRg+tbkBCr5
wl1VQa8PLqkB16qzvrVJnLNRU2Hfp95dKgzaYVLYit6zJMHma8Bs7FeESW0bHlNs
/afUBH9+TAsRdWqlzFyX+LVlutVsOtGOCo2eMNo3z9+o
-----END CERTIFICATE-----
Generated at Wed Apr 16 05:03:30 2025 by rpki-client