Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/c0j8isWj2PNjE8_TDVSTWyZxlZo.roa
File: c0j8isWj2PNjE8_TDVSTWyZxlZo.roa (raw, json)
Hash identifier: JsUCeuo1IyEnjM4l9lm5K5NAE+b7941jd+6aEQrT0FA=
Subject key identifier: 73:48:FC:8A:C5:A3:D8:F3:63:13:CF:D3:0D:54:93:5B:26:71:95:9A
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018570672E628B02991EEEC009D5C65415BC
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/c0j8isWj2PNjE8_TDVSTWyZxlZo.roa
Signing time: Mon 02 Jan 2023 02:54:48 +0000
ROA not before: Mon 02 Jan 2023 02:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 81.22.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jan 2023 11:07:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:2e:62:8b:02:99:1e:ee:c0:09:d5:c6:54:15:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 2 02:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7348fc8ac5a3d8f36313cfd30d54935b2671959a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ea:61:73:c5:1c:d7:d0:11:a1:ab:55:39:91:
87:ed:df:d8:e6:29:72:1e:50:e2:c6:f1:c4:dc:fe:
42:e1:ef:13:79:c2:3a:dd:f3:9b:54:03:75:ca:b0:
fd:da:14:a9:0b:41:c1:17:ba:68:2c:f6:d9:70:bc:
82:a0:12:a5:50:c2:13:b5:28:95:df:e1:6b:aa:7b:
15:08:40:b3:eb:a7:f4:8f:3b:75:95:e4:c5:c1:92:
24:c7:59:0a:b6:3d:2a:52:ed:63:d0:b4:a3:be:12:
a5:b9:a2:ee:7b:73:cf:c8:a3:90:15:bc:fb:86:01:
82:df:3f:37:5b:2d:53:34:c9:2f:b4:c5:a0:82:e4:
95:c4:53:dc:0e:64:4a:38:be:33:73:ec:f1:ba:f3:
10:6b:b7:93:f8:01:91:f6:91:38:5b:23:0c:8c:6a:
28:b0:7b:02:b8:96:7e:44:07:96:5d:5d:4b:11:f3:
29:22:8b:ce:ae:25:22:9a:2d:e9:d7:92:e6:32:ac:
83:42:d1:06:63:b1:f4:c7:21:35:6c:5a:36:9c:2c:
d2:86:83:a8:74:22:32:4a:c9:f8:d0:17:d3:d9:e7:
2b:29:bc:5d:27:e6:ed:25:d1:bf:27:b0:e5:86:ee:
f8:06:66:bc:5c:ce:ba:32:9c:f7:83:76:a1:01:5a:
1a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:48:FC:8A:C5:A3:D8:F3:63:13:CF:D3:0D:54:93:5B:26:71:95:9A
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/c0j8isWj2PNjE8_TDVSTWyZxlZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.135.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:48:fd:99:9f:37:79:6c:35:fc:c7:ca:4c:45:5f:ad:b5:5f:
9c:7d:a0:84:fe:9e:e2:3d:5c:6b:1a:db:65:2e:2f:1d:96:e4:
29:e3:da:6b:15:e4:90:c5:ad:f0:ef:16:07:8e:64:13:34:1a:
cf:86:eb:00:82:86:dc:39:27:54:c6:7e:5d:2d:8d:56:75:93:
e3:7b:43:ac:2a:61:da:7a:2f:7d:d1:85:d9:bf:ce:13:f5:2b:
81:68:6b:d6:ad:dc:1d:2b:f5:30:42:68:49:67:d2:80:1f:6a:
87:f0:d1:78:c8:37:a3:0b:7e:78:f0:27:48:98:13:79:db:e3:
bd:00:a1:50:52:f9:30:cd:f1:5d:c7:fd:29:6c:d8:67:22:b5:
3b:f8:4f:62:72:0e:9c:c1:5d:b9:c6:80:46:fc:e2:31:00:7a:
79:77:29:33:31:1f:39:58:4a:72:93:e3:e6:bf:36:96:6a:1c:
0d:e3:b9:b9:86:f0:50:cf:4f:78:22:1f:89:64:14:e5:44:4c:
5e:72:5a:22:ba:30:56:10:f8:5a:07:61:69:6a:cd:6a:5a:4c:
28:ca:54:cb:06:f5:66:79:66:fe:81:ab:cb:85:d2:00:59:d5:
12:eb:ff:19:81:ae:52:3d:3d:78:74:c0:32:95:19:28:9d:dd:
fc:b9:9f:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org