Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/curRHnqgcUh0CDqo-Ny_gsX0L-A.roa
File: curRHnqgcUh0CDqo-Ny_gsX0L-A.roa (raw, json)
Hash identifier: 8aa2gb7P5UzV/R0sYMCZieGQY0x1B6fQLj0evjtcXpo=
Subject key identifier: 72:EA:D1:1E:7A:A0:71:48:74:08:3A:A8:F8:DC:BF:82:C5:F4:2F:E0
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018D5EC827B667BF075032990AA896239C08
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/curRHnqgcUh0CDqo-Ny_gsX0L-A.roa
Signing time: Wed 31 Jan 2024 09:09:52 +0000
ROA not before: Wed 31 Jan 2024 09:09:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 81.22.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Feb 2024 13:35:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5e:c8:27:b6:67:bf:07:50:32:99:0a:a8:96:23:9c:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 31 09:09:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72ead11e7aa0714874083aa8f8dcbf82c5f42fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cc:9f:e3:df:f4:9e:ff:99:e6:28:47:74:95:
be:4e:62:b3:57:95:d0:6a:90:99:20:4d:c4:cd:ae:
73:0c:00:9e:d5:98:4f:a3:50:39:dc:fb:9b:25:75:
73:f1:61:00:c4:21:2f:1d:0e:e5:7d:e2:07:8a:77:
17:9e:ed:76:28:8a:eb:c0:82:d1:ae:76:75:c4:43:
56:6c:44:09:a3:62:4e:c1:f0:b4:17:c9:04:4a:60:
6e:28:82:ce:f9:7e:41:23:fd:61:1c:29:ff:92:95:
22:26:f8:98:9b:49:a0:af:ff:c3:e7:e9:c7:ff:f5:
d7:9d:ef:c9:11:6e:72:df:c7:d3:3d:4c:2d:f1:fa:
3b:b7:ab:87:35:f5:54:fc:dc:cf:59:a4:82:29:e4:
99:3e:54:f2:80:59:37:10:04:50:a0:14:0c:fd:21:
68:e3:01:bf:f1:16:f2:63:48:5e:88:6e:16:cb:07:
9a:7e:dc:31:14:43:cc:5d:c7:2a:ef:14:16:49:61:
c4:8a:7c:f1:9b:c3:0f:8c:4a:39:ed:56:e8:3c:f6:
7b:f6:dc:ed:8e:47:d9:8d:77:1c:09:17:5a:14:a9:
c0:1b:12:ca:48:f7:af:9f:1e:f6:b4:f9:56:26:4a:
cb:5e:48:10:dd:4e:e1:3d:43:f9:62:eb:7b:8f:e2:
2d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EA:D1:1E:7A:A0:71:48:74:08:3A:A8:F8:DC:BF:82:C5:F4:2F:E0
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/curRHnqgcUh0CDqo-Ny_gsX0L-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.128.0/24
Signature Algorithm: sha256WithRSAEncryption
23:c3:93:70:9e:45:53:29:ed:b3:cc:cc:b4:ac:e6:42:01:c0:
2c:a4:26:ae:72:57:be:a2:1e:f7:f4:26:8a:d2:22:39:af:0f:
6b:0d:e9:01:8e:8c:59:88:b8:0a:25:18:a7:aa:3d:f4:c9:41:
a7:34:72:fb:21:82:dc:ca:ad:0e:80:b4:3b:49:6d:b9:3f:d0:
f4:3e:55:00:07:81:a5:8a:85:e2:71:e6:84:23:57:d2:38:35:
41:f5:a8:82:85:65:dc:a8:7e:57:b9:1e:db:12:c4:46:8b:a3:
6c:1d:6f:8e:7c:94:f1:0f:38:91:b7:67:98:95:6d:32:c3:86:
f6:7a:5e:e4:c1:84:b2:28:8b:cc:60:44:c8:24:e1:77:61:c5:
1c:8f:07:65:70:ec:b5:b9:4d:ca:2e:c1:55:dd:14:52:4a:b5:
52:f7:96:bd:d9:34:4d:3b:96:3f:0b:11:db:91:cf:a9:da:b3:
16:3b:d8:0a:97:e6:44:bd:0a:74:27:07:5f:b6:16:cc:60:14:
ed:6b:d7:7e:94:8a:b3:6b:35:37:a8:de:a2:72:44:dc:4b:b6:
86:ac:26:76:99:00:33:bd:65:6a:a1:11:68:a4:f0:6a:00:a5:
4d:25:cf:2a:a6:6d:98:57:51:f0:ca:4a:41:de:39:3f:d1:ae:
30:97:fd:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org