Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/iBK15Sl_2FEx3025xqj9vGrnVf4.roa
File: iBK15Sl_2FEx3025xqj9vGrnVf4.roa (raw, json)
Hash identifier: CPp6SNE97sTBsFxtncpncRREGuSsuaiKl4iFyKKThcE=
Subject key identifier: 88:12:B5:E5:29:7F:D8:51:31:DF:4D:B9:C6:A8:FD:BC:6A:E7:55:FE
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018A97A9ECB19139BC4E2DBCAA9EACE5C719
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/iBK15Sl_2FEx3025xqj9vGrnVf4.roa
Signing time: Fri 15 Sep 2023 07:06:50 +0000
ROA not before: Fri 15 Sep 2023 07:06:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 81.22.136.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Dec 2023 08:21:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:97:a9:ec:b1:91:39:bc:4e:2d:bc:aa:9e:ac:e5:c7:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Sep 15 07:06:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8812b5e5297fd85131df4db9c6a8fdbc6ae755fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fb:d6:87:f2:b5:7a:a4:7c:57:78:1a:79:a3:
14:79:55:06:96:b3:09:fa:df:5c:57:30:56:2b:ba:
1f:c7:07:26:62:7f:b2:c4:f6:98:1f:5d:ba:e8:55:
ca:fe:2d:ff:42:6b:4c:3b:6d:4f:78:b0:32:47:8f:
2b:56:e7:e6:cb:b4:8f:f2:ee:f8:e7:6d:92:52:85:
ae:3e:ff:dc:08:51:70:bf:62:64:f1:d2:a3:b4:e5:
d1:e6:3c:50:3f:a4:3b:2a:44:53:72:05:4f:03:96:
b1:e8:da:34:f1:e2:7a:8a:a6:91:b4:21:a5:0d:47:
fb:84:a9:49:b7:9f:d9:a8:20:83:10:26:a6:48:c8:
c9:cc:7f:ec:72:64:ab:40:9f:57:4e:cc:4e:44:b8:
62:52:15:39:70:ec:1b:4c:41:af:bb:ec:8a:1f:12:
57:1f:af:cb:22:16:3c:a3:f7:56:e3:a3:48:5a:d5:
69:96:05:5a:a4:4b:6b:95:af:0c:bc:20:55:1f:97:
66:33:a9:eb:9a:99:3c:db:97:85:b0:b5:d6:e5:16:
14:0d:28:1d:04:d8:c2:dc:16:fd:46:61:f9:0a:5c:
d8:b5:68:6f:19:9c:b1:d4:7f:d4:27:dd:d6:81:78:
e8:6f:3f:b1:29:64:a6:05:96:d6:78:f8:56:e6:83:
bd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:12:B5:E5:29:7F:D8:51:31:DF:4D:B9:C6:A8:FD:BC:6A:E7:55:FE
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/iBK15Sl_2FEx3025xqj9vGrnVf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.136.0/22
Signature Algorithm: sha256WithRSAEncryption
05:00:20:9c:92:17:0c:68:7b:80:f4:3e:76:ba:61:ce:e3:d6:
7c:a1:c4:78:eb:68:64:6e:41:52:e0:4e:8d:08:6f:5b:b8:d6:
8b:f4:1b:7d:77:2e:d1:6d:d5:e0:5c:2c:90:86:be:72:dd:ca:
ef:cf:b8:42:9b:10:af:db:90:de:4f:27:e4:59:af:7f:cc:0f:
06:98:90:53:b2:7b:ec:69:c3:f4:4c:af:50:ff:5c:4f:87:54:
eb:47:62:f7:bc:76:ef:59:e0:4f:3b:24:fc:d8:ab:ce:fa:01:
ff:42:56:73:cc:0a:22:d6:85:9e:95:e6:36:9b:a5:3d:01:f1:
31:08:e7:88:fd:2f:9e:06:32:b2:0e:16:84:de:2e:5e:85:61:
6c:08:83:a2:9a:ab:0f:e6:32:0a:e5:6e:b9:d3:95:97:77:2d:
9e:3b:16:d5:25:b3:a3:e6:ea:79:80:0a:77:e3:6c:91:5b:52:
86:88:47:9e:8a:d2:0b:58:da:4c:6b:e7:88:6a:a3:09:28:b0:
a7:40:13:76:c8:af:c5:85:13:8a:8c:cb:66:fe:1b:47:2e:2b:
d8:87:95:fb:d8:2e:3d:0e:c0:d5:1a:47:aa:e3:8b:c2:f4:1c:
4c:75:8a:88:a2:fa:d1:88:4c:86:b5:5c:a7:4f:0b:80:e3:74:
35:5c:df:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org