Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/eKuJUJw1LCje5kNeRu-lYoCjblw.roa
File: eKuJUJw1LCje5kNeRu-lYoCjblw.roa (raw, json)
Hash identifier: HaBWoaOWDA71vOtZ11BhhCon6AdrMnS/gd2otGAj540=
Subject key identifier: 78:AB:89:50:9C:35:2C:28:DE:E6:43:5E:46:EF:A5:62:80:A3:6E:5C
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018D5FFC24BA1FB2899339A378CD46F2B215
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/eKuJUJw1LCje5kNeRu-lYoCjblw.roa
Signing time: Wed 31 Jan 2024 14:46:16 +0000
ROA not before: Wed 31 Jan 2024 14:46:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 81.22.129.0/24 maxlen: 24
81.22.130.0/24 maxlen: 24
81.22.135.0/24 maxlen: 24
89.185.1.0/24 maxlen: 24
89.185.3.0/24 maxlen: 24
109.72.117.0/24 maxlen: 24
109.72.120.0/24 maxlen: 24
109.72.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Feb 2024 13:35:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:fc:24:ba:1f:b2:89:93:39:a3:78:cd:46:f2:b2:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jan 31 14:46:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78ab89509c352c28dee6435e46efa56280a36e5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3a:1b:1b:b5:2e:99:4a:f3:fc:8a:a6:d4:f2:
9b:a7:4a:da:6c:69:c6:a9:0f:c5:34:1c:4d:da:46:
57:e7:75:5e:40:04:f0:5a:cf:f1:98:e4:eb:40:bc:
81:90:26:56:9e:cb:e4:b1:23:ea:e9:0f:4e:d9:e9:
01:2e:75:70:49:00:6b:c3:61:b3:37:d2:c7:a8:45:
a8:6d:d3:91:5c:93:f1:42:08:e9:df:14:ef:ac:f7:
69:5f:a0:29:7f:c6:df:a4:d0:8c:5c:40:08:0d:e7:
60:e3:13:05:14:54:d8:a6:9f:2b:6f:a0:a9:61:6b:
04:a7:80:d7:18:a0:d9:a0:a0:74:bb:9e:0c:9f:4a:
92:9a:da:07:ba:ac:91:5a:b3:3e:7f:55:c3:af:95:
a4:c3:c4:61:a4:6b:44:f4:0b:b6:c9:10:e0:29:b3:
34:3f:33:f0:4f:43:db:7e:ea:90:c4:21:d7:3b:3a:
c4:cc:e3:da:52:3d:52:2b:d7:73:92:3b:66:0c:8f:
57:a1:30:de:67:56:d0:71:32:fb:c9:bd:ab:88:2c:
70:74:43:70:3e:76:ea:02:23:13:ba:02:96:d0:0f:
bb:03:15:57:09:fc:b6:ba:a8:c2:95:7b:3f:f1:9e:
fe:c7:89:23:29:77:3f:b2:e4:cf:6b:17:22:3d:4b:
3f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:AB:89:50:9C:35:2C:28:DE:E6:43:5E:46:EF:A5:62:80:A3:6E:5C
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/eKuJUJw1LCje5kNeRu-lYoCjblw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.129.0-81.22.130.255
81.22.135.0/24
89.185.1.0/24
89.185.3.0/24
109.72.117.0/24
109.72.120.0/24
109.72.127.0/24
Signature Algorithm: sha256WithRSAEncryption
35:85:f6:ff:d9:6e:da:40:33:c2:07:f6:19:26:5c:43:e3:55:
29:de:2c:00:19:24:e9:a5:02:0a:43:75:1e:11:ba:ba:b1:3e:
cc:41:b7:4f:c4:8d:2e:08:a2:aa:87:41:b6:31:66:f5:f4:a8:
56:66:d2:aa:b3:00:e8:7e:04:ea:5a:cf:b5:9b:bb:6a:6c:07:
85:26:01:14:c9:34:f6:9b:14:03:20:b4:ca:58:14:61:79:97:
94:ec:a2:d4:9c:0b:77:ab:9c:54:45:d3:3f:d9:7d:a1:18:19:
3f:7e:27:38:a8:0a:61:7c:bc:1e:f4:f7:5d:35:3b:23:25:2a:
86:d3:eb:1e:71:c6:ce:18:13:35:57:c0:66:74:74:b3:ba:8c:
9a:a4:25:69:85:a5:60:de:a2:48:5c:92:3b:e2:9f:4e:82:4f:
96:f2:67:0e:b8:4f:99:a9:fa:e5:71:b7:c9:0d:d4:58:53:35:
3e:0f:f4:18:5e:a7:68:61:86:4e:85:19:f0:90:1d:9a:a7:5c:
fa:91:f0:76:a2:14:f8:27:1b:91:50:7d:82:70:f0:04:c7:41:
c5:b5:ef:c1:94:14:77:b4:03:63:93:44:14:e5:a0:d7:d7:66:
9d:34:67:f0:1f:67:10:3b:0c:b5:17:78:bf:d6:1a:9f:7e:3e:
10:8c:ef:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org