Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/d4Hwa6HxtqkO-TdC620V-3ONxIM.roa
File: d4Hwa6HxtqkO-TdC620V-3ONxIM.roa (raw, json)
Hash identifier: k3hLd8rheCsUYTDyYRzsILH+bPQBPyuBeV87KRa+T0E=
Subject key identifier: 77:81:F0:6B:A1:F1:B6:A9:0E:F9:37:42:EB:6D:15:FB:73:8D:C4:83
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018CC649CA96BC2D77829F2A0EEAB8FCE2FF
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/d4Hwa6HxtqkO-TdC620V-3ONxIM.roa
Signing time: Mon 01 Jan 2024 18:29:33 +0000
ROA not before: Mon 01 Jan 2024 18:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61135
IP address blocks: 81.22.141.0/24 maxlen: 24
109.72.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 08:28:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:ca:96:bc:2d:77:82:9f:2a:0e:ea:b8:fc:e2:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 1 18:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7781f06ba1f1b6a90ef93742eb6d15fb738dc483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c5:ff:0b:1e:67:e9:e3:b5:cb:1c:ed:29:cf:
db:3d:89:48:82:82:08:a3:f2:75:ff:a6:d4:a9:71:
b4:c7:11:47:b8:cc:e0:59:da:5f:ea:f1:8d:cf:db:
0d:0c:02:ff:c6:59:d9:11:e1:42:a2:ba:33:72:8b:
81:4c:86:a4:eb:de:20:06:c2:ad:4e:af:88:12:88:
b7:23:28:ee:78:f3:8e:5f:a2:d8:e3:1e:45:8a:11:
7d:06:a3:f8:0c:bd:f2:48:13:41:a6:3e:c8:a4:57:
99:34:95:92:16:2c:3a:52:54:86:93:41:2e:b9:47:
0d:5d:13:20:04:c8:99:f8:2e:25:80:5b:24:90:b7:
60:af:97:4d:d5:6b:34:49:6e:28:92:b0:b5:4b:b0:
93:a8:09:ab:48:c2:1d:0b:b0:58:04:37:9a:ff:d8:
13:50:13:40:06:db:05:0b:e4:aa:25:ac:35:4f:72:
b6:2a:14:55:62:93:04:ac:f0:b7:ae:98:cf:52:2c:
0a:ad:0f:fa:b6:2d:85:06:9e:74:9e:62:4d:fc:e8:
11:18:dc:46:67:79:77:f0:b4:c0:5f:ee:a1:f5:96:
1b:bf:79:02:b0:34:95:60:2d:c2:3f:4c:45:44:ee:
22:d5:cd:2d:63:24:18:c5:86:bc:29:89:3a:4f:87:
c2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:81:F0:6B:A1:F1:B6:A9:0E:F9:37:42:EB:6D:15:FB:73:8D:C4:83
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/d4Hwa6HxtqkO-TdC620V-3ONxIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.141.0/24
109.72.113.0/24
Signature Algorithm: sha256WithRSAEncryption
96:d1:68:4c:c4:99:f8:95:c5:d6:ab:a2:b8:a4:97:3f:fb:06:
30:2a:89:92:68:58:1c:e9:e0:f8:a2:f3:6d:d4:6c:7c:e9:24:
12:56:95:47:f4:0a:59:8f:a5:19:12:28:38:d3:dd:35:b3:89:
6b:c7:e7:0b:31:d9:5e:d0:bc:11:bd:ef:14:37:b2:37:41:5b:
6c:7c:08:c0:bf:7e:73:ab:f2:0e:22:06:49:83:de:cc:68:3d:
00:0e:83:61:50:69:9f:91:fe:87:28:85:cc:e8:2e:f0:50:45:
a4:fe:b0:11:11:b1:f6:8c:84:89:5e:7b:01:ad:fe:9b:5e:bb:
41:68:f4:a3:92:c0:d0:b2:a2:a7:4c:2d:0e:be:72:a6:6c:4c:
fa:33:e4:b5:f9:b8:86:7b:a6:2e:9b:95:2b:33:5e:98:f8:e4:
af:56:81:7d:4a:8b:3e:d6:26:64:d7:90:28:eb:3b:32:1c:06:
46:fd:aa:15:e6:52:96:30:7c:2b:92:2e:14:92:a6:07:71:f9:
25:24:64:e4:69:82:14:61:b7:2e:a0:36:0b:a7:4e:d4:20:47:
5a:bf:69:da:18:8f:e1:8b:7c:3c:8e:31:f9:80:78:ed:b9:8e:
67:30:fa:78:e7:80:14:2d:94:e5:f8:b6:f5:fe:96:0b:24:68:
93:e0:c2:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org