Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/u3kt666A3vyzLw6opXmSiWmmhbw.roa
File: u3kt666A3vyzLw6opXmSiWmmhbw.roa (raw, json)
Hash identifier: Mn9V2A02hZrF9EgMLsTPIoP90gL+ZDqBXqPUmXkdz+0=
Subject key identifier: BB:79:2D:EB:AE:80:DE:FC:B3:2F:0E:A8:A5:79:92:89:69:A6:85:BC
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 018CA0D4EE7DA89C4F9BCF7F962E4D6E63C8
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/u3kt666A3vyzLw6opXmSiWmmhbw.roa
Signing time: Mon 25 Dec 2023 11:55:58 +0000
ROA not before: Mon 25 Dec 2023 11:55:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 81.22.135.0/24 maxlen: 24
109.72.117.0/24 maxlen: 24
109.72.120.0/24 maxlen: 24
109.72.127.0/24 maxlen: 24
89.185.1.0/24 maxlen: 24
89.185.3.0/24 maxlen: 24
81.22.129.0/24 maxlen: 24
81.22.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a0:d4:ee:7d:a8:9c:4f:9b:cf:7f:96:2e:4d:6e:63:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Dec 25 11:55:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb792debae80defcb32f0ea8a579928969a685bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:50:f1:79:c9:23:82:2a:39:73:1e:73:07:68:
2e:a3:e2:a7:ab:d6:bd:cc:54:98:b4:14:0c:6a:9a:
2f:55:86:cd:e8:a8:fb:a9:c7:3b:93:5f:49:06:5d:
34:b8:a9:0b:3f:d9:b7:de:52:dc:e8:e8:f2:22:50:
6d:32:f7:d6:49:7c:04:f7:44:fb:35:8f:bb:68:b7:
9d:39:28:07:51:a2:e1:55:90:5c:c6:f0:ec:02:e2:
14:96:a9:55:67:16:72:56:b8:cb:8d:6d:34:59:d9:
29:09:a5:23:d0:c4:42:c2:de:4d:75:ba:b6:47:44:
b7:3e:4e:1c:fd:c0:1c:e3:e3:f6:f1:4e:d0:a9:00:
bb:75:18:c3:29:a7:38:97:77:14:e4:b8:85:0a:13:
54:3f:71:11:a1:20:81:6d:ac:6a:b5:20:e1:06:2c:
cc:9e:67:37:89:ba:d0:48:12:6b:2c:88:28:93:fd:
60:5e:f5:6a:79:3f:0e:21:8c:92:55:d9:23:5a:9c:
cc:76:61:ab:77:0b:95:b0:3a:c0:ee:c9:22:6a:7d:
a0:ae:62:ed:d7:41:28:0d:88:0e:cc:da:0a:93:e3:
60:4f:01:00:bf:51:97:94:e4:8d:57:63:ef:4b:c9:
e8:6e:17:ae:a1:b0:8e:cc:c0:aa:62:f3:d8:b7:02:
0c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:79:2D:EB:AE:80:DE:FC:B3:2F:0E:A8:A5:79:92:89:69:A6:85:BC
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/u3kt666A3vyzLw6opXmSiWmmhbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.129.0-81.22.130.255
81.22.135.0/24
89.185.1.0/24
89.185.3.0/24
109.72.117.0/24
109.72.120.0/24
109.72.127.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:00:3c:7a:52:e8:51:88:d8:c6:29:0a:e1:56:29:3f:96:09:
4c:3f:0a:d7:d6:22:fd:f4:68:04:cc:31:be:99:a8:75:fb:fb:
51:4c:59:31:8f:d6:ab:3a:53:21:55:ea:7f:bc:7c:b7:c8:c0:
08:89:b4:fd:a9:0c:57:f8:28:10:65:ce:23:5b:f9:89:22:cf:
1d:f2:52:2e:a9:a0:a0:f8:d0:aa:40:07:a0:47:b2:e5:71:ef:
9d:23:53:3f:19:ce:73:6a:6b:be:d2:6a:46:b8:91:e4:f5:bf:
71:65:6a:e5:b6:35:a0:c9:8b:b6:6c:9c:d5:9c:7d:c7:77:05:
17:ad:23:3b:67:57:b3:4c:e1:83:a5:a0:37:03:19:41:86:bd:
f0:94:fb:70:ed:61:64:33:46:e6:7f:5c:0c:0b:48:0c:21:d8:
f3:d3:05:f4:97:1c:08:c5:0d:f3:1b:af:1f:fa:49:92:3c:bb:
88:0a:b9:db:2d:15:57:28:8b:f0:fb:17:65:b3:cf:0c:96:4e:
d6:69:a0:ac:8e:ca:9c:20:1b:9e:d5:4e:24:9f:ad:ef:b6:83:
21:6e:63:30:6a:da:22:78:04:6d:ad:d3:81:13:44:4c:25:22:
5f:fe:b2:7b:d7:76:b8:80:63:91:99:2c:39:36:f5:bf:8f:2c:
24:27:17:2c
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgISAYyg1O59qJxPm89/li5NbmPIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMxMjI1MTE1NTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjc5MmRlYmFlODBkZWZjYjMyZjBlYThhNTc5OTI4OTY5YTY4NWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFDxeckjgio5cx5zB2guo+Knq9a9
zFSYtBQMapovVYbN6Kj7qcc7k19JBl00uKkLP9m33lLc6OjyIlBtMvfWSXwE90T7
NY+7aLedOSgHUaLhVZBcxvDsAuIUlqlVZxZyVrjLjW00WdkpCaUj0MRCwt5Ndbq2
R0S3Pk4c/cAc4+P28U7QqQC7dRjDKac4l3cU5LiFChNUP3ERoSCBbaxqtSDhBizM
nmc3ibrQSBJrLIgok/1gXvVqeT8OIYySVdkjWpzMdmGrdwuVsDrA7skian2grmLt
10EoDYgOzNoKk+NgTwEAv1GXlOSNV2PvS8nobheuobCOzMCqYvPYtwIMrQIDAQAB
o4ICNTCCAjEwHQYDVR0OBBYEFLt5LeuugN78sy8OqKV5kolppoW8MB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvdTNrdDY2NkEzdnl6THc2b3BYbVNpV21taGJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyMAwDBABRFoED
BABRFoIDBABRFocDBABZuQEDBABZuQMDBABtSHUDBABtSHgDBABtSH8wDQYJKoZI
hvcNAQELBQADggEBAIoAPHpS6FGI2MYpCuFWKT+WCUw/CtfWIv30aATMMb6ZqHX7
+1FMWTGP1qs6UyFV6n+8fLfIwAiJtP2pDFf4KBBlziNb+Ykizx3yUi6poKD40KpA
B6BHsuVx750jUz8ZznNqa77Saka4keT1v3FlauW2NaDJi7ZsnNWcfcd3BRetIztn
V7NM4YOloDcDGUGGvfCU+3DtYWQzRuZ/XAwLSAwh2PPTBfSXHAjFDfMbrx/6SZI8
u4gKudstFVcoi/D7F2WzzwyWTtZpoKyOypwgG57VTiSfre+2gyFuYzBq2iJ4BG2t
04ETREwlIl/+snvXdriAY5GZLDk29b+PLCQnFyw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org