Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ta8halriwEYvAHnH68JwwatJnqo.roa
File: ta8halriwEYvAHnH68JwwatJnqo.roa (raw, json)
Hash identifier: cClp4TjVAcBSxgV+cMfGHA8MtU8QXw3U5wjKpAigkEc=
Subject key identifier: B5:AF:21:6A:5A:E2:C0:46:2F:00:79:C7:EB:C2:70:C1:AB:49:9E:AA
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018B47847C8466578B81D662C97FE0C2FD20
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ta8halriwEYvAHnH68JwwatJnqo.roa
Signing time: Thu 19 Oct 2023 10:39:06 +0000
ROA not before: Thu 19 Oct 2023 10:39:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 151604
IP address blocks: 81.22.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Oct 2023 16:04:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:84:7c:84:66:57:8b:81:d6:62:c9:7f:e0:c2:fd:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Oct 19 10:39:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5af216a5ae2c0462f0079c7ebc270c1ab499eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:39:ba:1d:69:32:cb:91:78:91:b9:14:f0:fd:
81:d7:fa:5a:89:a0:bd:fc:58:61:41:b0:ce:8d:a8:
31:3f:b2:28:7d:73:d4:e8:9a:85:30:1a:1d:58:8a:
2a:b5:0d:1c:20:6c:82:8c:e3:dc:1a:ae:f0:8e:a5:
3e:12:e6:86:96:15:37:26:61:03:8a:ca:dc:d6:0e:
2c:bf:d8:26:4a:80:af:bf:d9:02:86:9f:70:a2:2b:
04:8a:6c:ce:2c:5a:ba:c8:44:41:33:9c:40:e0:55:
73:f1:e3:5c:91:f1:91:2b:e3:2d:2e:dc:91:fa:35:
5c:c0:7b:58:aa:d0:cb:bf:39:03:54:b0:dd:8b:be:
6b:0c:72:98:14:eb:e6:14:10:85:42:ff:93:b6:fa:
58:0d:4e:07:4b:3b:aa:91:46:8d:30:9a:77:8c:4e:
c7:39:86:9f:c2:1d:74:68:00:60:0a:43:e5:f7:9e:
2b:3a:ca:5b:39:91:98:ff:02:1c:27:e1:e1:60:44:
06:e4:49:a8:78:ee:11:9d:fd:30:03:ea:15:ba:a2:
a0:93:9c:0d:8c:89:72:7b:b9:5c:ec:f6:07:1f:f6:
2a:e6:b1:dc:dd:4b:63:c0:ce:da:b7:80:86:41:18:
c2:64:57:64:2f:fe:11:f5:6a:b2:04:ba:5a:d6:8b:
8a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AF:21:6A:5A:E2:C0:46:2F:00:79:C7:EB:C2:70:C1:AB:49:9E:AA
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/ta8halriwEYvAHnH68JwwatJnqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.130.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:e1:86:b6:75:bb:a9:95:4e:66:eb:8c:c5:e9:37:16:f7:2f:
5e:08:01:cc:2b:c2:8f:3e:2d:83:8b:cd:d7:41:0e:a1:44:ef:
1a:5f:bf:e1:59:0e:6b:30:15:f2:ed:ab:33:0e:42:dd:b2:26:
f7:c1:8c:f7:04:f8:af:59:98:e1:94:6a:4b:9f:87:8e:20:fe:
ed:b9:f9:87:45:58:98:7b:86:f4:e6:14:64:c9:3c:55:2c:96:
ec:9e:29:3e:30:e3:41:7b:0a:0c:84:ed:16:a0:62:8e:d6:a0:
7f:e3:1c:d4:5c:15:a9:42:03:6d:1f:be:c9:8b:a3:34:8a:fe:
fc:cf:fc:56:fe:0f:54:e0:43:ef:13:0c:35:62:04:d0:d7:65:
05:7c:b4:e0:0f:65:f2:fc:99:8d:8f:3c:19:97:89:7e:99:75:
b5:59:0d:e9:38:3b:06:13:d7:b1:04:33:93:59:76:04:46:04:
42:12:9b:4f:86:27:d1:06:95:50:9b:54:48:7b:d7:38:68:df:
b3:d5:dd:ae:da:87:4f:85:79:5a:38:8a:b0:44:ea:b2:84:9b:
42:22:cc:e2:e8:61:c5:08:c1:34:32:0b:52:b6:b0:69:98:36:
33:69:97:53:d2:cc:60:26:df:e4:52:91:9f:f7:98:a8:92:ef:
45:a9:1a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org