Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/9KX7YGJIR3RESKKJ0tQ1X8DBtbo.roa
File: 9KX7YGJIR3RESKKJ0tQ1X8DBtbo.roa (raw, json)
Hash identifier: k1byaEJBrhL1TjVTr2TmRjUkn11feDJc6lQq1Hh/vjU=
Subject key identifier: F4:A5:FB:60:62:48:47:74:44:48:A2:89:D2:D4:35:5F:C0:C1:B5:BA
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018C405189F5D704668B3B5669F680DD8E5D
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/9KX7YGJIR3RESKKJ0tQ1X8DBtbo.roa
Signing time: Wed 06 Dec 2023 18:08:54 +0000
ROA not before: Wed 06 Dec 2023 18:08:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215955
IP address blocks: 81.22.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:40:51:89:f5:d7:04:66:8b:3b:56:69:f6:80:dd:8e:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Dec 6 18:08:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4a5fb60624847744448a289d2d4355fc0c1b5ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8e:eb:ce:af:90:66:de:78:53:e6:17:b8:a1:
9e:65:ef:6c:f8:e2:94:08:df:5a:24:75:5f:e5:3b:
33:56:ba:71:41:ea:c9:f4:9f:a2:96:3d:36:11:ff:
01:14:6b:d5:72:ab:f6:93:11:c8:43:e8:36:56:c1:
99:b5:3c:8e:d6:67:06:3c:25:a2:25:77:78:93:34:
fe:52:b2:6e:eb:6e:12:71:99:e2:70:30:c5:35:fb:
e3:0c:b5:b4:c1:26:b0:f7:56:3a:f8:bc:a8:02:df:
04:6b:bb:a9:c2:79:b1:42:5a:b4:1f:d9:98:90:b3:
a8:2d:c8:00:5c:00:5b:ef:29:56:45:ac:e3:75:f2:
8f:aa:b0:cf:23:a3:4d:91:f6:f4:61:20:cf:34:56:
01:a4:f6:d0:9f:bf:67:80:22:7e:d9:3a:52:10:8b:
78:42:38:48:7a:1f:65:cc:2f:90:ee:9b:b2:e7:bb:
4a:8a:4a:02:3f:60:59:6f:de:50:6d:cc:c5:af:fa:
cf:d2:f8:72:4e:c7:e7:f8:a3:b9:af:89:35:16:1b:
b4:27:91:03:6e:e1:4b:e7:17:cf:75:8d:b5:fa:eb:
e1:a1:17:d7:a2:c1:20:0c:1f:22:d8:b3:28:41:61:
13:91:cf:55:bb:e1:33:dc:a6:38:c8:59:1b:b5:8c:
47:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A5:FB:60:62:48:47:74:44:48:A2:89:D2:D4:35:5F:C0:C1:B5:BA
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/9KX7YGJIR3RESKKJ0tQ1X8DBtbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.136.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:31:e9:79:63:a5:07:58:c6:d2:b2:67:06:e0:ee:2c:11:ce:
b0:78:f3:e6:df:df:b9:97:ee:45:3b:f6:fa:5f:14:99:04:52:
79:e4:d6:55:c2:b6:17:05:25:0b:4c:1b:cc:eb:00:41:ef:db:
47:1f:fe:1f:3c:fd:00:b0:41:f7:fe:60:89:3c:6a:aa:ac:69:
1d:b7:c4:be:97:d9:52:7a:5a:59:56:d6:6b:e9:52:4b:87:ec:
3d:89:85:e6:6f:0c:14:eb:73:87:50:31:8c:95:49:db:3d:a0:
de:0f:c8:7f:f5:ff:8a:c6:7b:3b:91:1b:5a:ef:4a:97:e4:e1:
7f:e2:e5:45:a5:65:16:7a:98:1e:a9:8a:f3:75:1a:86:08:66:
d3:bd:09:7f:98:ea:d0:73:95:60:31:9c:73:b4:0d:78:e9:1e:
2f:65:2d:5e:27:10:42:25:ea:59:d1:ce:01:7e:63:5e:49:f7:
53:89:2f:c7:68:a4:fd:03:c5:94:54:e7:1a:f9:8a:1e:a1:e1:
4a:57:b1:a8:ed:10:ac:a1:0b:01:f7:36:86:4e:99:51:c1:dc:
ec:62:cb:d7:a1:7d:6b:a1:21:a8:7a:bc:52:46:19:04:f4:2b:
fc:11:03:aa:1d:d7:01:e6:ac:e5:65:51:41:fb:39:29:64:5e:
e6:a9:6c:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxAUYn11wRmiztWafaA3Y5dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMxMjA2MTgwODU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNGE1ZmI2MDYyNDg0Nzc0NDQ0OGEyODlkMmQ0MzU1ZmMwYzFiNWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApo7rzq+QZt54U+YXuKGeZe9s+OKU
CN9aJHVf5TszVrpxQerJ9J+ilj02Ef8BFGvVcqv2kxHIQ+g2VsGZtTyO1mcGPCWi
JXd4kzT+UrJu624ScZnicDDFNfvjDLW0wSaw91Y6+LyoAt8Ea7upwnmxQlq0H9mY
kLOoLcgAXABb7ylWRazjdfKPqrDPI6NNkfb0YSDPNFYBpPbQn79ngCJ+2TpSEIt4
QjhIeh9lzC+Q7puy57tKikoCP2BZb95QbczFr/rP0vhyTsfn+KO5r4k1Fhu0J5ED
buFL5xfPdY21+uvhoRfXosEgDB8i2LMoQWETkc9Vu+Ez3KY4yFkbtYxHpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPSl+2BiSEd0REiiidLUNV/AwbW6MB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvOUtYN1lHSklSM1JFU0tLSjB0UTFYOERCdGJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURaIMA0G
CSqGSIb3DQEBCwUAA4IBAQANMel5Y6UHWMbSsmcG4O4sEc6wePPm39+5l+5FO/b6
XxSZBFJ55NZVwrYXBSULTBvM6wBB79tHH/4fPP0AsEH3/mCJPGqqrGkdt8S+l9lS
elpZVtZr6VJLh+w9iYXmbwwU63OHUDGMlUnbPaDeD8h/9f+Kxns7kRta70qX5OF/
4uVFpWUWepgeqYrzdRqGCGbTvQl/mOrQc5VgMZxztA146R4vZS1eJxBCJepZ0c4B
fmNeSfdTiS/HaKT9A8WUVOca+YoeoeFKV7Go7RCsoQsB9zaGTplRwdzsYsvXoX1r
oSGoerxSRhkE9Cv8EQOqHdcB5qzlZVFB+zkpZF7mqWyw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org