Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wrTt4ompKJunRmDYZkZM8cEVb0Y.roa
File: wrTt4ompKJunRmDYZkZM8cEVb0Y.roa (raw, json)
Hash identifier: tP5rg4yD7ZSdVN/4DZMaMK6TE7X+UPQ38Mici1Lhgb4=
Subject key identifier: C2:B4:ED:E2:89:A9:28:9B:A7:46:60:D8:66:46:4C:F1:C1:15:6F:46
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0189B6AA8EF7E93C843871D988EC70EB5906
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wrTt4ompKJunRmDYZkZM8cEVb0Y.roa
Signing time: Wed 02 Aug 2023 14:32:58 +0000
ROA not before: Wed 02 Aug 2023 14:32:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60528
IP address blocks: 81.22.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b6:aa:8e:f7:e9:3c:84:38:71:d9:88:ec:70:eb:59:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Aug 2 14:32:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2b4ede289a9289ba74660d866464cf1c1156f46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:01:cb:9f:ce:e3:a5:ea:1c:49:d7:58:ce:40:
94:6f:6d:82:3c:84:06:d2:40:68:42:5b:6f:42:ce:
2d:a0:9a:30:7a:b8:e8:1e:46:35:85:f0:bc:de:03:
62:d0:25:da:8d:78:82:33:49:a7:f7:89:85:fc:e3:
6c:76:e4:34:ed:f6:44:93:02:43:86:d5:cf:37:af:
6e:50:c8:0c:1a:2f:e8:d5:37:8e:03:7d:14:4a:d6:
78:d7:7c:eb:9b:3c:6c:be:a9:00:05:8d:84:5f:60:
64:e7:b2:c0:c2:00:26:20:02:d7:c4:7e:b9:e1:fd:
07:00:9a:0f:f0:bf:b7:d0:75:49:88:8e:de:18:41:
16:32:3c:be:3c:cb:93:ce:5b:ed:77:72:de:a1:5b:
a5:73:1f:24:0a:4b:4b:40:b9:e2:cd:82:ff:8d:55:
29:15:c0:74:57:4d:39:d2:6e:e7:8b:b7:85:b7:13:
af:5d:c4:33:dd:79:20:61:65:a6:1b:9c:2a:07:00:
25:1a:d1:a9:42:c0:a5:4b:a8:e9:ef:28:2c:49:0e:
26:15:2e:a2:02:f9:43:ee:55:ad:60:44:59:ed:19:
f7:76:78:b2:30:b2:7e:59:fa:74:b2:34:5a:3c:53:
4e:e7:94:c7:a0:f9:5a:32:db:f6:dd:6f:d1:e1:5f:
2f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B4:ED:E2:89:A9:28:9B:A7:46:60:D8:66:46:4C:F1:C1:15:6F:46
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/wrTt4ompKJunRmDYZkZM8cEVb0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.131.0/24
Signature Algorithm: sha256WithRSAEncryption
56:e9:7c:36:95:d1:95:dd:46:74:04:15:e3:c2:29:27:15:96:
4c:97:7c:d2:95:a5:40:c5:fb:40:af:23:86:e5:0f:41:5b:f3:
7f:cb:a1:85:ee:d3:07:84:09:31:a0:10:6b:22:52:97:5d:1e:
35:92:fe:68:2a:8a:96:31:b7:7d:64:33:3c:29:18:09:e5:e5:
88:40:f4:ea:3f:7b:7f:b8:ff:c9:44:e9:33:55:9f:fb:70:25:
84:fe:8f:2d:32:ba:f8:33:44:1d:99:20:39:e8:07:e0:6d:b8:
bd:81:6b:42:73:2a:a2:d3:f5:56:f2:d8:28:17:0d:b3:2c:86:
92:11:a3:09:b2:04:fd:fd:a3:30:10:0a:d6:d8:85:f9:2b:92:
2c:13:34:04:e8:9e:bb:8d:72:b9:44:61:5c:c1:f0:25:3b:9e:
3b:8c:ad:3a:44:61:2e:0c:29:35:39:bd:dd:ec:ef:10:c5:09:
58:a5:e8:9b:aa:54:13:75:1c:d3:45:01:38:f8:cb:1a:80:95:
ee:41:26:e3:10:e4:39:35:0e:23:97:12:a4:61:68:56:f6:3d:
3f:a0:57:a5:f1:8c:e1:26:26:c9:f1:23:f5:69:e0:2f:75:a1:
f3:57:1c:0d:2e:d0:a8:2a:36:f5:93:54:c1:cf:45:69:96:f5:
33:8a:65:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYm2qo736TyEOHHZiOxw61kGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjMwODAyMTQzMjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMmI0ZWRlMjg5YTkyODliYTc0NjYwZDg2NjQ2NGNmMWMxMTU2ZjQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngHLn87jpeocSddYzkCUb22CPIQG
0kBoQltvQs4toJowerjoHkY1hfC83gNi0CXajXiCM0mn94mF/ONsduQ07fZEkwJD
htXPN69uUMgMGi/o1TeOA30UStZ413zrmzxsvqkABY2EX2Bk57LAwgAmIALXxH65
4f0HAJoP8L+30HVJiI7eGEEWMjy+PMuTzlvtd3LeoVulcx8kCktLQLnizYL/jVUp
FcB0V0050m7ni7eFtxOvXcQz3XkgYWWmG5wqBwAlGtGpQsClS6jp7ygsSQ4mFS6i
AvlD7lWtYERZ7Rn3dniyMLJ+Wfp0sjRaPFNO55THoPlaMtv23W/R4V8v7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMK07eKJqSibp0Zg2GZGTPHBFW9GMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvd3JUdDRvbXBLSnVuUm1EWVprWk04Y0VWYjBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURaDMA0G
CSqGSIb3DQEBCwUAA4IBAQBW6Xw2ldGV3UZ0BBXjwiknFZZMl3zSlaVAxftAryOG
5Q9BW/N/y6GF7tMHhAkxoBBrIlKXXR41kv5oKoqWMbd9ZDM8KRgJ5eWIQPTqP3t/
uP/JROkzVZ/7cCWE/o8tMrr4M0QdmSA56Afgbbi9gWtCcyqi0/VW8tgoFw2zLIaS
EaMJsgT9/aMwEArW2IX5K5IsEzQE6J67jXK5RGFcwfAlO547jK06RGEuDCk1Ob3d
7O8QxQlYpeibqlQTdRzTRQE4+MsagJXuQSbjEOQ5NQ4jlxKkYWhW9j0/oFel8Yzh
JibJ8SP1aeAvdaHzVxwNLtCoKjb1k1TBz0VplvUzimU5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:15 2024 by rpki-client on console-fra.rpki-client.org