Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/4lPw-KcPFD1CGcodmAzGsEWODxY.roa
File: 4lPw-KcPFD1CGcodmAzGsEWODxY.roa (raw, json)
Hash identifier: HGnvLW6RL7mieC3kHmAgcMYX+Ruw4Yn8Hmsv6rycyeI=
Subject key identifier: E2:53:F0:F8:A7:0F:14:3D:42:19:CA:1D:98:0C:C6:B0:45:8E:0F:16
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 01936F20A3848E450608C07EC42549B62BAF
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/4lPw-KcPFD1CGcodmAzGsEWODxY.roa
Signing time: Wed 27 Nov 2024 19:37:10 +0000
ROA not before: Wed 27 Nov 2024 19:37:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 212.16.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Nov 2024 15:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6f:20:a3:84:8e:45:06:08:c0:7e:c4:25:49:b6:2b:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Nov 27 19:37:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e253f0f8a70f143d4219ca1d980cc6b0458e0f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:eb:d1:ca:cb:ca:c5:16:74:ca:9b:af:00:2a:
80:5c:89:62:8e:1d:24:b5:53:26:90:ed:a2:b1:c7:
39:e9:2d:06:33:09:86:68:7f:0d:b7:fb:1e:11:63:
e5:e1:98:26:47:ff:76:3f:83:51:77:05:ca:1a:bf:
e5:33:9b:91:71:15:46:a7:dc:f2:fa:c3:03:19:69:
27:f3:56:da:3a:e4:80:89:30:57:62:6f:97:eb:48:
04:a3:93:4c:58:cd:8d:57:c7:07:14:82:99:f1:2a:
cf:c9:05:4f:17:12:8d:f7:5f:43:54:18:5d:69:a6:
18:e0:89:15:24:1e:90:06:1f:07:c3:95:75:59:8a:
7d:d5:66:b2:ee:fa:78:d7:6e:a2:47:2e:30:6b:53:
00:a3:6f:01:7a:af:cf:d4:03:61:a3:ef:e6:19:d3:
00:0a:74:fd:99:64:95:96:87:25:d6:c5:66:4c:1b:
63:f0:c9:c4:22:76:bf:3a:f2:1d:32:73:5d:6a:84:
e2:51:a8:86:7d:34:0b:49:c8:29:55:bd:e4:17:f8:
cc:06:09:45:d8:bc:dd:d8:54:de:15:12:a2:5f:2e:
a5:87:e5:1c:89:73:b2:b5:e2:da:f8:0a:4f:67:cd:
09:cb:75:f3:1c:36:fa:26:8e:30:56:c4:b7:e1:77:
db:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:53:F0:F8:A7:0F:14:3D:42:19:CA:1D:98:0C:C6:B0:45:8E:0F:16
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/4lPw-KcPFD1CGcodmAzGsEWODxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.79.0/24
Signature Algorithm: sha256WithRSAEncryption
18:03:47:4d:f2:92:ba:1d:b8:95:0e:de:8e:42:f7:2d:f4:29:
41:99:77:68:28:2e:7b:4f:68:fb:dd:aa:ca:a1:80:a8:48:71:
6e:4b:51:6f:2b:41:8e:94:d8:da:d4:b0:5e:6e:6f:18:8a:ff:
b7:cf:16:47:8d:d2:ce:c8:f5:34:d1:06:ff:83:a8:51:3a:27:
05:b8:ac:ec:ca:0b:37:71:fc:2d:72:53:ac:70:38:13:ef:96:
07:57:dd:13:a8:91:8a:18:cb:fa:2a:3b:f2:08:8b:8e:a7:31:
12:b6:a1:f5:5b:a7:88:f9:cf:95:59:0d:15:16:18:cc:9e:5e:
ff:cd:88:52:33:dd:a8:94:a9:e8:36:c8:9c:89:ea:53:60:78:
9d:08:db:b3:f3:93:00:1b:6f:4c:0f:ae:74:cd:8d:12:7f:93:
bb:89:01:e5:78:48:97:b7:d3:50:a4:aa:a1:75:62:b4:8d:b5:
51:7f:2f:9f:7c:1c:11:ab:b8:d3:55:c0:9a:eb:d2:74:59:2a:
da:96:5a:74:51:39:28:76:05:03:c3:5d:0b:ef:65:27:a5:1e:
6e:8f:de:f1:f9:f2:78:97:45:e8:d3:e3:1d:67:b9:79:b2:89:
b9:01:c5:a9:3b:1d:f0:12:17:b3:71:a6:cf:5c:4d:62:36:12:
03:97:72:d7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNvIKOEjkUGCMB+xCVJtiuvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjQxMTI3MTkzNzEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjUzZjBmOGE3MGYxNDNkNDIxOWNhMWQ5ODBjYzZiMDQ1OGUwZjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+vRysvKxRZ0ypuvACqAXIlijh0k
tVMmkO2iscc56S0GMwmGaH8Nt/seEWPl4ZgmR/92P4NRdwXKGr/lM5uRcRVGp9zy
+sMDGWkn81baOuSAiTBXYm+X60gEo5NMWM2NV8cHFIKZ8SrPyQVPFxKN919DVBhd
aaYY4IkVJB6QBh8Hw5V1WYp91Way7vp4126iRy4wa1MAo28Beq/P1ANho+/mGdMA
CnT9mWSVlocl1sVmTBtj8MnEIna/OvIdMnNdaoTiUaiGfTQLScgpVb3kF/jMBglF
2Lzd2FTeFRKiXy6lh+UciXOyteLa+ApPZ80Jy3XzHDb6Jo4wVsS34XfbYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOJT8PinDxQ9QhnKHZgMxrBFjg8WMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvNGxQdy1LY1BGRDFDR2NvZG1BekdzRVdPRHhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BBPMA0G
CSqGSIb3DQEBCwUAA4IBAQAYA0dN8pK6HbiVDt6OQvct9ClBmXdoKC57T2j73arK
oYCoSHFuS1FvK0GOlNja1LBebm8Yiv+3zxZHjdLOyPU00Qb/g6hROicFuKzsygs3
cfwtclOscDgT75YHV90TqJGKGMv6KjvyCIuOpzEStqH1W6eI+c+VWQ0VFhjMnl7/
zYhSM92olKnoNsiciepTYHidCNuz85MAG29MD650zY0Sf5O7iQHleEiXt9NQpKqh
dWK0jbVRfy+ffBwRq7jTVcCa69J0WSrallp0UTkodgUDw10L72UnpR5uj97x+fJ4
l0Xo0+MdZ7l5som5AcWpOx3wEhezcabPXE1iNhIDl3LX
-----END CERTIFICATE-----
Generated at Mon Apr 28 14:59:39 2025 by rpki-client