Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/9qJ45O6Iq8xetTeGWwal1dw4GUw.roa
File: 9qJ45O6Iq8xetTeGWwal1dw4GUw.roa (raw, json)
Hash identifier: KjVUoucwVI8tkQiNYU5/rOLwIT8HPCXFvwCfsrFOH6c=
Subject key identifier: F6:A2:78:E4:EE:88:AB:CC:5E:B5:37:86:5B:06:A5:D5:DC:38:19:4C
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018684CB36BE5F1CC19A1490F45A304985E3
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/9qJ45O6Iq8xetTeGWwal1dw4GUw.roa
Signing time: Fri 24 Feb 2023 18:59:15 +0000
ROA not before: Fri 24 Feb 2023 18:59:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50354
IP address blocks: 81.22.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Feb 2023 23:52:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:84:cb:36:be:5f:1c:c1:9a:14:90:f4:5a:30:49:85:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Feb 24 18:59:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6a278e4ee88abcc5eb537865b06a5d5dc38194c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d2:52:1f:e7:d7:43:c8:42:ca:6e:a8:f9:f8:
d2:11:7d:eb:a8:2b:8a:df:b7:78:31:42:98:ae:bd:
df:19:a5:0b:0f:c3:aa:b8:c1:8c:7c:ac:91:dc:51:
d1:9a:59:72:5c:ac:c5:2b:61:eb:5c:f5:c8:a8:06:
f5:0e:3d:06:16:d7:4c:ed:b8:b2:0e:df:fa:0e:a9:
23:24:17:a1:d5:19:ec:ee:54:23:45:48:e9:b4:94:
ae:a9:50:ee:1d:ac:90:7d:89:08:ab:a4:dc:bb:fe:
c7:7a:8b:a1:07:ff:36:a9:98:78:d8:8b:03:c2:11:
0b:34:de:c3:82:e8:77:4e:d5:3f:e5:11:48:75:2b:
ec:02:bd:0a:33:91:48:26:a4:65:d9:2e:61:b5:70:
d5:0a:11:2b:6b:2e:f9:d0:65:02:9d:06:23:92:b8:
38:29:f4:a5:f9:ef:11:d8:c3:97:04:bd:c6:2e:26:
78:41:40:bb:40:39:c5:1d:2f:07:95:82:1a:fb:65:
86:da:e7:ca:f0:08:6e:0d:e3:eb:b9:32:d1:7d:77:
0b:03:98:61:64:3d:d5:e3:30:4a:cd:25:c7:33:64:
22:82:d5:93:72:cd:63:a3:ed:8b:19:e6:cd:19:f2:
3c:3e:54:32:bd:77:9a:50:ba:f0:64:af:83:54:94:
a5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A2:78:E4:EE:88:AB:CC:5E:B5:37:86:5B:06:A5:D5:DC:38:19:4C
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/9qJ45O6Iq8xetTeGWwal1dw4GUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.133.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:b6:51:6e:c7:27:b0:13:2b:31:3e:3c:ca:47:17:02:7a:1d:
46:f9:85:0d:31:fb:3e:80:05:3c:7e:41:44:48:77:2f:58:92:
11:70:4f:1a:ea:ea:34:82:89:0c:ed:b6:36:8c:ba:45:39:ef:
99:39:2e:ab:60:9a:20:88:ee:40:6c:b3:39:85:6a:10:2e:34:
af:fc:80:70:2e:5d:e7:05:22:5e:be:f6:42:6f:e6:b8:7a:7f:
f9:bb:1a:c0:c3:4f:1a:7f:c1:65:0a:21:37:2b:da:e8:0b:9d:
4e:7c:03:b3:9b:2b:07:e0:8e:db:40:f1:07:40:74:fc:9c:cd:
a9:5e:d9:3f:3c:6b:9c:cb:d1:71:6b:47:a0:48:e7:54:2e:fd:
63:6c:85:82:5e:44:a6:82:d9:49:bd:16:ed:ff:51:06:94:27:
24:36:d8:e3:70:83:05:c5:d7:dd:8d:ba:f5:71:f6:81:30:2f:
74:16:c4:d9:4a:af:e7:2a:9f:e1:61:a3:e3:bf:86:a7:87:dc:
0a:1a:e4:a8:5d:73:32:79:96:33:a3:5d:42:21:4a:7d:8e:fc:
10:38:7b:7a:00:25:59:56:69:68:85:60:38:69:5a:71:bf:d6:
3c:cf:11:c3:89:f6:4e:6c:c8:d0:16:a3:ca:69:b0:de:d2:a6:
6b:42:fa:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org