Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/seH5dde93u9QcbOujWQJ209c150.roa
File: seH5dde93u9QcbOujWQJ209c150.roa (raw, json)
Hash identifier: Kf1WTkpRPJkxjpSS1pbFYp1X2Pb2jDpcBEF+qBZhIgw=
Subject key identifier: B1:E1:F9:75:D7:BD:DE:EF:50:71:B3:AE:8D:64:09:DB:4F:5C:D7:9D
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018B2D73F5AB17FC1BD1EEF564B8B87194B6
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/seH5dde93u9QcbOujWQJ209c150.roa
Signing time: Sat 14 Oct 2023 09:10:56 +0000
ROA not before: Sat 14 Oct 2023 09:10:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 81.22.140.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 27 Oct 2023 08:32:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2d:73:f5:ab:17:fc:1b:d1:ee:f5:64:b8:b8:71:94:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Oct 14 09:10:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1e1f975d7bddeef5071b3ae8d6409db4f5cd79d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:71:ba:65:81:bc:d9:98:44:1b:45:94:ef:f4:
3b:65:c1:d7:5f:3a:fe:53:a7:90:15:75:96:39:6a:
9f:ad:53:60:1d:55:21:aa:1f:47:62:31:1f:32:20:
71:60:01:99:17:2c:ff:92:0e:56:fa:ac:55:ea:2e:
bf:8b:dd:5f:00:cb:2c:de:01:8c:81:03:c2:82:5b:
57:6c:7d:fc:1a:57:01:e4:6a:d5:e4:2b:f6:91:51:
8d:ac:e6:a3:5d:95:c4:71:39:33:f1:ee:aa:cf:57:
b0:cc:8a:e1:d7:17:ef:7e:c7:70:32:a0:b6:ec:cd:
c1:b9:af:4d:e8:91:95:0e:38:4e:c0:63:4c:10:66:
bd:07:40:76:b3:a0:7e:b0:8c:a2:4c:d5:c6:f5:e7:
cb:33:39:25:e6:8e:41:d0:f7:fc:b2:34:c8:6f:b1:
7b:dd:75:69:29:af:b1:c6:96:85:e7:79:0e:0e:24:
e3:35:70:03:12:36:1f:3f:32:3d:97:0d:3f:fd:5c:
f6:60:06:3f:f2:ca:f0:9f:41:91:3b:52:2d:9d:dc:
0c:c5:ce:8f:6d:e0:a9:7d:d0:37:bb:14:f0:10:5c:
ba:6f:b0:5c:17:f1:30:d3:a0:5f:83:c7:0f:4a:f1:
a2:86:9a:0d:b6:c6:7c:27:07:14:54:6f:15:13:35:
eb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E1:F9:75:D7:BD:DE:EF:50:71:B3:AE:8D:64:09:DB:4F:5C:D7:9D
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/seH5dde93u9QcbOujWQJ209c150.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.140.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:08:35:d9:03:9a:e0:b1:1e:3f:58:44:dc:1d:96:4a:ad:fb:
0b:a6:c7:62:53:aa:1f:a5:ce:02:6d:00:48:49:bb:5d:8c:82:
83:e2:be:c6:94:50:66:bf:86:3c:6c:86:e9:9a:97:f8:7d:e0:
24:33:25:c7:16:5c:a5:d1:23:83:73:cf:23:ff:fa:fd:4d:e0:
fc:01:b1:67:a1:bf:3c:b6:2e:fb:10:e5:de:d7:13:c6:3e:bf:
fa:8d:23:8f:15:96:62:47:1d:61:d5:e5:ae:d2:b8:d1:f8:46:
d2:43:61:51:4e:d0:19:97:43:c8:a2:8b:f1:88:12:03:bd:63:
0f:0e:46:83:79:09:db:96:f8:f5:9c:57:6c:eb:f9:19:4b:5b:
da:f2:90:46:93:46:af:cc:b6:3a:53:ce:61:59:dd:50:7a:f4:
80:51:9c:5c:42:65:19:25:81:74:35:8f:17:ba:2d:d1:60:9a:
53:5e:47:ed:17:12:0d:0f:18:d6:a5:d1:7b:d5:c7:78:88:16:
fc:f8:25:3b:be:11:bd:94:42:c7:69:2c:45:c2:aa:e6:28:41:
59:04:bc:39:64:e0:32:4f:60:45:a4:2d:c2:ca:e9:d2:fc:ce:
e6:9f:38:08:69:81:fb:d2:a2:88:d1:8e:28:5f:39:37:15:e6:
b6:c5:68:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org