Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/I1oCpkRqkL6eF55CW7NB1PjLCfY.roa
File: I1oCpkRqkL6eF55CW7NB1PjLCfY.roa (raw, json)
Hash identifier: uyF4+PTvO+E7WKgz/iOPucfH9O4rBAtn5ayhdyIGmOk=
Subject key identifier: 23:5A:02:A6:44:6A:90:BE:9E:17:9E:42:5B:B3:41:D4:F8:CB:09:F6
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0186B68479EFB64907CC5362B51A0A941201
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/I1oCpkRqkL6eF55CW7NB1PjLCfY.roa
Signing time: Mon 06 Mar 2023 10:43:00 +0000
ROA not before: Mon 06 Mar 2023 10:43:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200017
IP address blocks: 81.22.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b6:84:79:ef:b6:49:07:cc:53:62:b5:1a:0a:94:12:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Mar 6 10:43:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=235a02a6446a90be9e179e425bb341d4f8cb09f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0f:b8:4f:21:22:ff:93:04:2d:52:2f:ac:96:
46:f6:dc:a7:5e:d5:d5:2f:58:32:f0:be:6b:38:20:
af:5b:8d:a7:15:be:cc:01:4d:4f:ee:ac:d5:14:a3:
2c:d2:ef:8f:3a:b4:02:e2:f2:1b:95:b5:ed:96:62:
d0:53:d5:f7:56:e6:16:69:4a:05:bd:28:a6:f4:ab:
da:7f:d5:9d:f1:a1:6f:f9:c8:3d:e5:2b:7b:a3:12:
5e:5b:5d:68:3b:07:d7:aa:89:df:38:a9:e7:78:7d:
fa:33:26:80:33:1d:3b:84:75:d8:30:75:62:b5:7f:
18:dc:f9:57:f5:89:a8:68:f5:dc:db:b1:a7:d6:12:
b0:cb:72:f5:1a:d4:ec:b4:44:91:e1:15:38:da:aa:
94:84:93:21:fb:8d:45:dc:ce:3b:fe:84:2e:a6:e2:
7a:15:25:d1:da:7a:87:0a:bb:e4:57:bd:ff:dc:ea:
8b:48:f0:e2:bb:68:13:6f:91:95:13:e2:13:33:2d:
6f:c8:65:81:11:fa:58:86:3b:a7:27:13:74:f2:34:
81:77:4d:ac:6f:0e:1b:01:c7:1f:6b:a9:bc:38:f2:
9d:7c:9b:cf:8e:64:8d:76:2f:09:7c:11:ad:e4:a7:
49:a4:df:8c:53:2b:47:fa:9c:d8:b1:c6:bd:d3:72:
09:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5A:02:A6:44:6A:90:BE:9E:17:9E:42:5B:B3:41:D4:F8:CB:09:F6
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/I1oCpkRqkL6eF55CW7NB1PjLCfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.133.0/24
Signature Algorithm: sha256WithRSAEncryption
59:ee:72:a2:34:0b:d8:77:47:1a:37:1b:a2:2d:38:4f:a9:45:
c8:80:51:f8:0a:4f:20:24:2d:56:e2:bd:ea:61:50:45:f8:cb:
d9:1d:6e:6f:b0:f0:e9:26:9d:b0:ed:06:4f:2a:89:f7:26:75:
ea:72:d5:00:9e:1f:fb:08:dd:bd:b6:42:6c:18:42:6f:8d:d2:
3b:7a:7b:26:15:27:00:18:05:1c:f0:62:f2:c6:60:28:e7:2a:
c0:83:60:29:25:28:d2:19:b9:10:9a:40:48:5a:62:92:a1:f8:
fc:a1:4f:c2:23:73:d0:54:c8:9f:b8:b2:d5:59:4c:aa:7a:5a:
d0:66:e1:9d:3d:6b:80:b9:7c:05:74:0d:ff:ba:14:44:43:32:
59:f7:f7:8e:67:3b:1d:a3:cf:58:e9:4b:c2:65:b6:f1:69:af:
2d:60:8b:cf:3b:0b:79:e5:3d:73:1c:18:9e:ac:97:e4:17:3c:
e0:9a:b0:1d:5f:e8:cf:78:37:ee:f1:03:31:0e:fe:1d:bc:1a:
8c:e7:a8:dd:1a:1f:63:81:94:53:b9:c7:42:97:2b:70:43:4e:
25:54:2e:7b:27:4e:13:63:01:34:38:43:dd:5e:de:69:d7:10:
8e:fc:fc:49:d2:0b:02:ab:49:59:c8:95:9b:0d:b7:a3:4b:47:
f8:33:ce:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:45 2024 by rpki-client on console-ams.rpki-client.org