Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/oDq6Sfb2r1QgMmh_AdutTitMjPY.roa
File: oDq6Sfb2r1QgMmh_AdutTitMjPY.roa (raw, json)
Hash identifier: jwu7a3eGNkT/lnc+uU4y+prme+aL6rfPESyxpuddcYE=
Subject key identifier: A0:3A:BA:49:F6:F6:AF:54:20:32:68:7F:01:DB:AD:4E:2B:4C:8C:F6
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018946052E35711962F7F5EC6C69F5F4654A
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/oDq6Sfb2r1QgMmh_AdutTitMjPY.roa
Signing time: Tue 11 Jul 2023 17:34:51 +0000
ROA not before: Tue 11 Jul 2023 17:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 81.22.136.0/22 maxlen: 24
109.72.116.0/24 maxlen: 24
109.72.118.0/24 maxlen: 24
109.72.117.0/24 maxlen: 24
109.72.115.0/24 maxlen: 24
109.72.114.0/24 maxlen: 24
81.22.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Aug 2023 07:53:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:46:05:2e:35:71:19:62:f7:f5:ec:6c:69:f5:f4:65:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jul 11 17:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a03aba49f6f6af542032687f01dbad4e2b4c8cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f7:72:22:60:d9:84:ce:b9:5d:0a:93:bf:41:
65:ea:ce:88:51:9d:2f:0f:d2:ad:4e:53:58:85:6f:
0a:86:04:4f:82:86:5a:42:6b:ad:95:5d:aa:81:69:
d6:75:3f:8f:8f:67:8f:0b:31:99:b1:48:85:93:e1:
42:57:89:61:4d:2c:15:7f:c8:98:93:fb:de:ac:2f:
ac:a2:ff:b3:f6:2c:3f:6f:48:e5:1c:42:bd:fc:84:
eb:2c:8c:53:02:5d:3c:4a:2b:d4:dc:a2:4c:85:6d:
cc:27:f0:35:f0:bf:aa:8d:a0:98:90:f5:18:a5:0f:
3b:d5:38:97:6c:66:1d:b8:6f:b8:d3:b9:23:c4:ad:
97:9b:f5:d8:11:8d:96:52:48:cf:2c:53:8b:21:63:
3e:16:f0:d2:2b:c9:2e:bf:3b:be:f6:64:f2:37:a6:
7c:d9:b5:9d:1c:10:8a:4c:bc:f8:a3:f8:a0:be:57:
db:a1:f4:f6:9d:e3:7a:f6:f4:4a:d3:4e:cf:3f:9b:
65:b9:8d:a3:b7:a4:f5:99:c9:a1:49:77:13:e9:13:
2f:39:97:2a:ba:cb:99:75:04:83:9d:4e:a0:a5:bb:
d3:01:58:71:69:2e:fa:5f:64:ac:86:23:e4:32:fe:
81:2f:13:5b:cc:65:bb:a0:95:2a:f7:5a:b9:d7:23:
dd:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:3A:BA:49:F6:F6:AF:54:20:32:68:7F:01:DB:AD:4E:2B:4C:8C:F6
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/oDq6Sfb2r1QgMmh_AdutTitMjPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.129.0/24
81.22.136.0/22
109.72.114.0-109.72.118.255
Signature Algorithm: sha256WithRSAEncryption
67:bd:f1:44:1e:59:f9:04:c2:f5:b8:a5:c7:17:40:c0:18:16:
09:85:72:92:07:31:fc:b6:91:4f:21:d0:71:ff:5a:3f:26:38:
78:d5:20:13:b6:9d:b9:0a:f2:57:14:32:eb:71:5b:94:cd:fb:
c7:cc:b9:b7:a6:2a:fa:a8:e9:dc:b7:eb:38:8b:c5:f6:61:36:
75:7f:e2:d5:77:77:e9:d7:a5:d6:c0:0b:79:9c:a7:b1:8e:ac:
0a:a4:59:c6:ac:c2:d3:ad:b3:1f:4b:c9:80:d8:ea:fb:a6:95:
05:c9:c7:68:b9:e3:51:11:ad:ff:91:c5:22:80:54:68:25:29:
fa:2e:1e:bf:80:01:6f:e9:c5:95:31:d1:16:c5:ee:99:f3:6e:
02:4e:97:9d:0f:15:a6:1e:3e:6b:ac:23:b7:f7:36:fc:3d:1f:
4b:a7:11:ec:17:f8:e5:fd:37:40:a6:0e:39:06:84:bd:ed:43:
de:0a:8c:86:ac:76:f7:b0:1f:8b:18:0c:7d:a8:93:88:1e:59:
1c:30:a2:84:f1:d1:9d:49:a8:30:a9:1b:e9:2f:29:0f:94:a9:
a0:69:cc:c3:1a:12:68:fb:b3:c8:74:42:42:ef:4f:72:00:e4:
49:b2:fe:c4:bc:fa:8e:66:d5:ff:48:70:84:c6:bd:19:c0:ee:
4c:1d:f1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org