Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/17ac67-2d5f-439a-8ff9-cacfb67bff9d/1/7dHIkkkYtq7P91TY--EyUVFisVo.roa
File: 7dHIkkkYtq7P91TY--EyUVFisVo.roa (raw, json)
Hash identifier: Mchc0S8R5pnhQ6e66lwJzPz/MTmpRAmxdu1I9GXLq7A=
Subject key identifier: ED:D1:C8:92:49:18:B6:AE:CF:F7:54:D8:FB:E1:32:51:51:62:B1:5A
Certificate issuer: /CN=521d2c07c28ac7b726a825d3693afe2397209de6
Certificate serial: 01856BAEC473DC428F4FE28FFF656BB82BB1
Authority key identifier: 52:1D:2C:07:C2:8A:C7:B7:26:A8:25:D3:69:3A:FE:23:97:20:9D:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uh0sB8KKx7cmqCXTaTr-I5cgneY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/17ac67-2d5f-439a-8ff9-cacfb67bff9d/1/7dHIkkkYtq7P91TY--EyUVFisVo.roa
Signing time: Sun 01 Jan 2023 04:54:53 +0000
ROA not before: Sun 01 Jan 2023 04:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25100
IP address blocks: 81.5.64.0/18 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:c4:73:dc:42:8f:4f:e2:8f:ff:65:6b:b8:2b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=521d2c07c28ac7b726a825d3693afe2397209de6
Validity
Not Before: Jan 1 04:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edd1c8924918b6aecff754d8fbe132515162b15a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8a:a1:e6:a5:b0:4b:2e:03:f8:b1:0b:ce:9d:
0e:fc:9f:54:c4:aa:9d:4b:f8:ea:50:66:16:85:0d:
7e:e9:d0:33:5e:99:82:f6:29:48:61:8f:25:ab:72:
dd:5e:01:bb:0f:03:76:d6:13:56:85:3a:93:46:5f:
66:75:56:7c:2a:ab:97:b8:b7:1d:78:0c:5e:23:c7:
bf:76:a4:69:84:cc:45:38:d1:3d:0e:1c:ed:4a:82:
a8:dc:10:71:c8:86:4b:62:4f:73:27:38:e5:10:e9:
83:87:b9:34:0a:b5:e5:40:83:b0:fb:26:e8:1a:b2:
f7:55:32:a9:64:42:c3:b4:5a:6d:8c:9d:00:c6:74:
11:a3:b2:54:b2:ec:e7:67:80:06:c3:9d:e3:e6:87:
bd:1f:76:53:ee:75:43:3d:06:8a:7b:b4:2f:11:6a:
15:60:c5:f1:08:89:6c:b6:85:80:25:00:97:55:2b:
5a:3b:b2:fa:5a:64:94:4a:06:fc:92:11:0a:31:76:
44:1a:b4:2a:fa:70:1f:51:d4:76:49:fc:25:bb:0a:
51:08:5c:13:b1:6c:aa:53:ca:a8:c0:0b:97:5b:b4:
17:e4:56:7e:9f:03:b7:60:f9:43:20:d3:84:68:53:
34:5a:d3:21:10:c6:17:22:e1:a8:17:ab:08:01:60:
d6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D1:C8:92:49:18:B6:AE:CF:F7:54:D8:FB:E1:32:51:51:62:B1:5A
X509v3 Authority Key Identifier:
keyid:52:1D:2C:07:C2:8A:C7:B7:26:A8:25:D3:69:3A:FE:23:97:20:9D:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uh0sB8KKx7cmqCXTaTr-I5cgneY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/17ac67-2d5f-439a-8ff9-cacfb67bff9d/1/7dHIkkkYtq7P91TY--EyUVFisVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/17ac67-2d5f-439a-8ff9-cacfb67bff9d/1/Uh0sB8KKx7cmqCXTaTr-I5cgneY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.5.64.0/18
Signature Algorithm: sha256WithRSAEncryption
4b:6a:68:df:1f:44:40:9a:ec:25:00:ba:7d:45:8e:63:3f:34:
6c:3c:d5:44:3d:93:22:6c:e2:75:9d:0f:9c:6f:f5:e1:f8:b1:
e3:77:dc:c5:ea:b3:7b:a6:29:06:bb:be:46:1b:ff:d2:53:69:
40:1e:31:f5:57:aa:de:dd:1d:f2:35:01:6e:e5:be:21:87:68:
94:d7:09:28:69:a4:48:a7:26:77:dc:d5:d4:c7:2f:fd:91:d1:
ef:6e:ed:72:8f:7e:67:f6:fe:13:26:f9:ce:e3:d6:ae:4f:5a:
16:38:18:11:2e:c1:91:49:9c:b4:a5:6e:92:46:4a:1e:8e:66:
be:aa:a4:77:ae:2f:8d:1c:51:c0:fd:b2:bb:52:21:bb:cf:d2:
5c:6b:8b:df:79:69:b6:59:ee:67:4e:08:dc:48:70:2e:9b:fe:
b2:ec:fc:0c:2a:83:3b:3c:4a:a8:a2:3a:49:05:80:9c:1e:36:
01:1b:b6:be:0f:d3:2c:6f:ff:4c:d2:a5:fc:8b:9d:55:e3:bc:
64:03:98:15:90:67:bc:65:8a:29:bb:bb:89:58:78:9f:64:59:
87:28:e3:a3:f1:be:59:8f:b5:50:c9:7a:36:18:8a:db:9c:b1:
53:60:30:a9:e7:77:ec:c4:d4:e3:e3:9c:07:f3:c9:3f:e3:cf:
e6:05:a1:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:50 2024 by rpki-client on console-ams.rpki-client.org