Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/1cdridm9aMS0HQ7EQNITKjiFy5A.roa
File: 1cdridm9aMS0HQ7EQNITKjiFy5A.roa (raw, json)
Hash identifier: 9jNO19Lwq1FiaAvR5nNVs1bUvEkImLj358tGx808nto=
Subject key identifier: D5:C7:6B:89:D9:BD:68:C4:B4:1D:0E:C4:40:D2:13:2A:38:85:CB:90
Certificate issuer: /CN=afb4e04a0ed344112c1853cab09f52e1cd9abaf2
Certificate serial: 019132EA59F77DC068E52523DF0C849BB9BE
Authority key identifier: AF:B4:E0:4A:0E:D3:44:11:2C:18:53:CA:B0:9F:52:E1:CD:9A:BA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/1cdridm9aMS0HQ7EQNITKjiFy5A.roa
Signing time: Thu 08 Aug 2024 16:55:04 +0000
ROA not before: Thu 08 Aug 2024 16:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47964
IP address blocks: 81.163.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 19:17:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:32:ea:59:f7:7d:c0:68:e5:25:23:df:0c:84:9b:b9:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afb4e04a0ed344112c1853cab09f52e1cd9abaf2
Validity
Not Before: Aug 8 16:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5c76b89d9bd68c4b41d0ec440d2132a3885cb90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:79:40:15:49:ae:28:d7:1a:65:31:cb:fa:74:
04:ae:96:56:02:51:c7:a3:0c:e4:6e:43:6a:59:ae:
e5:a3:fd:c4:28:cf:cb:ea:f4:48:7c:11:88:5b:9c:
46:b8:22:6a:78:a0:86:94:42:07:26:d4:80:66:de:
a1:42:ce:73:30:ca:c0:c1:12:4e:f1:f0:8c:0a:10:
c2:42:09:54:5b:cd:c2:77:7f:ab:a7:5a:4c:a0:b7:
26:0e:10:1f:73:bd:5d:0e:f6:da:28:0d:94:74:bf:
f7:3d:5f:65:16:89:1f:69:f7:f3:2b:6c:14:49:be:
af:05:1b:18:25:33:4f:78:a6:9d:22:98:97:11:47:
00:9e:25:15:83:51:51:8e:d6:fd:1e:aa:d4:1c:c3:
99:63:8b:61:f5:e1:65:e4:9e:01:05:b6:d7:95:e5:
e5:2b:2b:5a:80:05:d4:11:dc:03:0f:4d:86:8c:fb:
6c:40:ee:cf:a6:3c:3f:20:54:fc:42:03:c6:97:ed:
4a:c8:ae:d5:84:10:84:51:eb:75:21:df:8a:1f:31:
88:e2:70:99:82:c0:4f:6b:56:1a:07:82:a0:c6:61:
f2:1e:7d:c1:e2:51:38:18:2d:7e:e9:55:07:b2:ee:
16:0e:57:6c:9e:f3:95:90:30:4e:39:5f:e5:86:01:
a5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C7:6B:89:D9:BD:68:C4:B4:1D:0E:C4:40:D2:13:2A:38:85:CB:90
X509v3 Authority Key Identifier:
keyid:AF:B4:E0:4A:0E:D3:44:11:2C:18:53:CA:B0:9F:52:E1:CD:9A:BA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r7TgSg7TRBEsGFPKsJ9S4c2auvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/1cdridm9aMS0HQ7EQNITKjiFy5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/19f2e6-1bf3-4f7a-8817-8095f3297179/1/r7TgSg7TRBEsGFPKsJ9S4c2auvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.163.211.0/24
Signature Algorithm: sha256WithRSAEncryption
70:bc:e7:2e:d3:ca:26:a3:fc:dc:88:8c:31:58:96:74:9d:e3:
d5:fe:00:9a:ca:3a:89:e6:ef:1c:39:94:1a:96:da:82:1a:6b:
a7:ce:8b:b7:57:7c:dc:93:79:ff:e5:7b:87:d5:81:b6:97:e7:
8b:89:a8:77:9f:ec:ec:4b:4f:c6:76:61:7f:95:84:ff:5c:cb:
77:a8:fc:fd:05:f1:1a:23:7c:c1:2a:17:b5:96:51:59:33:f4:
e6:21:2e:16:b0:1b:94:6f:8a:33:fd:03:63:97:5d:8a:98:77:
f7:09:df:1b:bf:a8:b4:86:33:59:89:d8:3d:f1:54:1e:f3:00:
ff:19:92:41:a1:12:c7:7a:74:fe:a9:a8:aa:f1:9b:32:22:f1:
8d:e2:00:a0:52:e3:80:91:39:a6:e8:16:cb:97:0a:89:b7:b0:
48:bd:a9:14:39:7b:27:e1:74:bf:85:ea:f8:23:ce:0d:11:a5:
61:24:3a:4b:b8:7f:03:1e:5d:a9:86:28:1f:0b:d4:52:ef:d1:
98:d9:21:e4:c4:5e:18:76:ab:0d:84:8f:b5:e5:bf:8f:c4:fb:
75:4e:64:39:02:64:ca:39:78:ac:ab:0f:68:17:2a:ba:56:a1:
1d:87:c6:cd:6c:94:a5:62:e2:da:2b:c9:93:ab:91:b2:3c:26:
36:17:bf:3b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZEy6ln3fcBo5SUj3wyEm7m+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmYjRlMDRhMGVkMzQ0MTEyYzE4NTNjYWIwOWY1MmUxY2Q5
YWJhZjIwHhcNMjQwODA4MTY1NTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNWM3NmI4OWQ5YmQ2OGM0YjQxZDBlYzQ0MGQyMTMyYTM4ODVjYjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0XlAFUmuKNcaZTHL+nQErpZWAlHH
owzkbkNqWa7lo/3EKM/L6vRIfBGIW5xGuCJqeKCGlEIHJtSAZt6hQs5zMMrAwRJO
8fCMChDCQglUW83Cd3+rp1pMoLcmDhAfc71dDvbaKA2UdL/3PV9lFokfaffzK2wU
Sb6vBRsYJTNPeKadIpiXEUcAniUVg1FRjtb9HqrUHMOZY4th9eFl5J4BBbbXleXl
KytagAXUEdwDD02GjPtsQO7Ppjw/IFT8QgPGl+1KyK7VhBCEUet1Id+KHzGI4nCZ
gsBPa1YaB4KgxmHyHn3B4lE4GC1+6VUHsu4WDldsnvOVkDBOOV/lhgGlvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNXHa4nZvWjEtB0OxEDSEyo4hcuQMB8GA1UdIwQY
MBaAFK+04EoO00QRLBhTyrCfUuHNmrryMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjdUZ1NnN1RSQkVzR0ZQS3NKOVM0YzJhdXZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8xOWYyZTYtMWJmMy00ZjdhLTg4MTct
ODA5NWYzMjk3MTc5LzEvMWNkcmlkbTlhTVMwSFE3RVFOSVRLamlGeTVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy8xOWYyZTYtMWJmMy00ZjdhLTg4MTctODA5NWYzMjk3MTc5
LzEvcjdUZ1NnN1RSQkVzR0ZQS3NKOVM0YzJhdXZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUaPTMA0G
CSqGSIb3DQEBCwUAA4IBAQBwvOcu08omo/zciIwxWJZ0nePV/gCayjqJ5u8cOZQa
ltqCGmunzou3V3zck3n/5XuH1YG2l+eLiah3n+zsS0/GdmF/lYT/XMt3qPz9BfEa
I3zBKhe1llFZM/TmIS4WsBuUb4oz/QNjl12KmHf3Cd8bv6i0hjNZidg98VQe8wD/
GZJBoRLHenT+qaiq8ZsyIvGN4gCgUuOAkTmm6BbLlwqJt7BIvakUOXsn4XS/her4
I84NEaVhJDpLuH8DHl2phigfC9RS79GY2SHkxF4YdqsNhI+15b+PxPt1TmQ5AmTK
OXisqw9oFyq6VqEdh8bNbJSlYuLaK8mTq5GyPCY2F787
-----END CERTIFICATE-----
Generated at Tue Apr 15 12:45:53 2025 by rpki-client