Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/Ajyw3j3tqinhf5DuYixPbIZurTE.roa
File: Ajyw3j3tqinhf5DuYixPbIZurTE.roa (raw, json)
Hash identifier: SJDad1tnwFodt+OQtACgUL/1fQLXQmlW5pUGmLh8190=
Subject key identifier: 02:3C:B0:DE:3D:ED:AA:29:E1:7F:90:EE:62:2C:4F:6C:86:6E:AD:31
Certificate issuer: /CN=68383ffa9f20bf021c090262994212d71667ed02
Certificate serial: 01856CCAFB4E9B440B243E3560679E465957
Authority key identifier: 68:38:3F:FA:9F:20:BF:02:1C:09:02:62:99:42:12:D7:16:67:ED:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDg_-p8gvwIcCQJimUIS1xZn7QI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/Ajyw3j3tqinhf5DuYixPbIZurTE.roa
Signing time: Sun 01 Jan 2023 10:05:19 +0000
ROA not before: Sun 01 Jan 2023 10:05:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 81.90.143.0/24 maxlen: 24
2a00:e27:143::/48 maxlen: 48
2a00:e20:150::/44 maxlen: 48
2a00:e20:143::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:fb:4e:9b:44:0b:24:3e:35:60:67:9e:46:59:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68383ffa9f20bf021c090262994212d71667ed02
Validity
Not Before: Jan 1 10:05:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=023cb0de3dedaa29e17f90ee622c4f6c866ead31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:48:e8:c6:42:95:96:5e:c2:01:ec:e8:66:97:
f3:f0:16:76:61:68:77:b4:f3:79:ac:96:3e:1c:1b:
e6:a7:e6:13:d4:a7:10:0c:7d:7c:1c:2f:df:0f:c6:
e6:6e:5d:f9:94:4b:26:53:e8:42:b8:13:de:0d:f9:
4a:94:da:73:f9:af:67:ad:17:79:08:4d:19:6d:79:
98:74:49:7e:3c:ce:53:2c:0d:43:33:f4:65:ec:5e:
a4:23:dc:91:b5:99:89:0f:bf:0a:81:93:74:c8:f7:
58:b3:fa:6f:c9:e0:24:50:ec:fd:09:2c:07:65:d9:
6f:08:02:33:0e:71:f6:d2:80:62:a1:b6:b5:29:2f:
55:1f:1b:54:00:5a:8b:dc:1f:3f:19:0e:cf:12:f5:
01:95:03:b5:07:e1:ff:32:34:6c:f5:ad:6d:63:89:
49:82:49:6a:19:88:7d:18:32:8f:0c:f4:00:08:5b:
a7:19:2e:06:1a:34:37:77:10:a7:25:2b:bf:3b:b2:
de:9b:95:2a:6b:be:39:1b:17:a7:a3:6e:ac:d3:51:
74:63:f8:ce:47:87:ba:29:06:42:18:47:4e:77:c9:
c0:18:e6:34:15:2f:10:cf:47:3e:27:7c:8c:11:23:
08:07:28:16:93:d4:d0:3d:62:fa:01:80:b6:f8:16:
61:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:3C:B0:DE:3D:ED:AA:29:E1:7F:90:EE:62:2C:4F:6C:86:6E:AD:31
X509v3 Authority Key Identifier:
keyid:68:38:3F:FA:9F:20:BF:02:1C:09:02:62:99:42:12:D7:16:67:ED:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDg_-p8gvwIcCQJimUIS1xZn7QI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/Ajyw3j3tqinhf5DuYixPbIZurTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/aDg_-p8gvwIcCQJimUIS1xZn7QI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.143.0/24
IPv6:
2a00:e20:143::/48
2a00:e20:150::/44
2a00:e27:143::/48
Signature Algorithm: sha256WithRSAEncryption
31:2b:2d:ef:64:82:14:d3:8e:6c:6f:3c:7b:f4:30:8c:81:96:
5d:20:c2:a3:10:dd:7f:3b:1a:d7:c1:e8:0f:64:5c:20:e7:3e:
a0:d8:53:3b:8e:ec:56:e6:45:8f:a8:5b:81:9c:5d:80:f7:54:
5d:10:51:f1:47:0c:63:b5:79:d9:4e:35:ac:09:61:63:92:f6:
58:ed:5c:49:bc:1f:98:37:20:38:d8:04:35:40:86:b4:3f:a5:
3f:ec:30:e7:ae:b5:4b:af:fe:26:4a:60:56:e1:33:ab:c0:c9:
d0:0d:00:25:4c:9c:9e:14:a1:55:1e:11:dd:86:54:20:36:fd:
b1:a4:46:31:09:6d:49:c3:56:9d:7c:8f:4f:cf:cc:55:c6:4b:
6d:35:b6:65:82:35:e9:46:3a:6f:c2:e3:14:5b:6e:04:41:cc:
ea:ef:03:be:3d:8e:0f:68:2e:14:8e:1a:71:d5:24:42:8d:c5:
8a:9c:4c:85:50:bb:d6:91:2f:8f:08:6a:9e:40:6a:c6:74:95:
77:de:69:ab:b3:ca:f8:01:c6:7f:05:b3:34:46:ae:3d:fb:e4:
11:41:1a:d4:ce:6f:71:29:6a:ea:94:72:87:e7:00:c9:62:e0:
a7:90:56:0d:7a:06:cd:84:3e:f3:18:1f:50:2d:39:5b:c4:29:
18:d5:f2:61
-----BEGIN CERTIFICATE-----
MIIFIDCCBAigAwIBAgISAYVsyvtOm0QLJD41YGeeRllXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzgzZmZhOWYyMGJmMDIxYzA5MDI2Mjk5NDIxMmQ3MTY2
N2VkMDIwHhcNMjMwMTAxMTAwNTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjNjYjBkZTNkZWRhYTI5ZTE3ZjkwZWU2MjJjNGY2Yzg2NmVhZDMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUjoxkKVll7CAezoZpfz8BZ2YWh3
tPN5rJY+HBvmp+YT1KcQDH18HC/fD8bmbl35lEsmU+hCuBPeDflKlNpz+a9nrRd5
CE0ZbXmYdEl+PM5TLA1DM/Rl7F6kI9yRtZmJD78KgZN0yPdYs/pvyeAkUOz9CSwH
ZdlvCAIzDnH20oBioba1KS9VHxtUAFqL3B8/GQ7PEvUBlQO1B+H/MjRs9a1tY4lJ
gklqGYh9GDKPDPQACFunGS4GGjQ3dxCnJSu/O7Lem5Uqa745Gxeno26s01F0Y/jO
R4e6KQZCGEdOd8nAGOY0FS8Qz0c+J3yMESMIBygWk9TQPWL6AYC2+BZhuQIDAQAB
o4ICLDCCAigwHQYDVR0OBBYEFAI8sN497aop4X+Q7mIsT2yGbq0xMB8GA1UdIwQY
MBaAFGg4P/qfIL8CHAkCYplCEtcWZ+0CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURnXy1wOGd2d0ljQ1FKaW1VSVMxeFpuN1FJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9iOGU5NDAtMjIwMS00MDZlLThhYWYt
NDA2MGU5ZWVlYjllLzEvQWp5dzNqM3RxaW5oZjVEdVlpeFBiSVp1clRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi9iOGU5NDAtMjIwMS00MDZlLThhYWYtNDA2MGU5ZWVlYjll
LzEvYURnXy1wOGd2d0ljQ1FKaW1VSVMxeFpuN1FJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEIGCCsGAQUFBwEHAQH/BDMwMTAMBAIAATAGAwQAUVqPMCEE
AgACMBsDBwAqAA4gAUMDBwQqAA4gAVADBwAqAA4nAUMwDQYJKoZIhvcNAQELBQAD
ggEBADErLe9kghTTjmxvPHv0MIyBll0gwqMQ3X87GtfB6A9kXCDnPqDYUzuO7Fbm
RY+oW4GcXYD3VF0QUfFHDGO1edlONawJYWOS9ljtXEm8H5g3IDjYBDVAhrQ/pT/s
MOeutUuv/iZKYFbhM6vAydANACVMnJ4UoVUeEd2GVCA2/bGkRjEJbUnDVp18j0/P
zFXGS201tmWCNelGOm/C4xRbbgRBzOrvA749jg9oLhSOGnHVJEKNxYqcTIVQu9aR
L48Iap5AasZ0lXfeaauzyvgBxn8FszRGrj375BFBGtTOb3EpauqUcofnAMli4KeQ
Vg16Bs2EPvMYH1AtOVvEKRjV8mE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:04 2024 by rpki-client on console-fra.rpki-client.org