Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/Cr8FRdkT817YYFRwJS3qc6hvwok.roa
File: Cr8FRdkT817YYFRwJS3qc6hvwok.roa (raw, json)
Hash identifier: ImZOTqckrr3e1neWnUKdlhIOM6vg30iXJR0g9MYu7Ws=
Subject key identifier: 0A:BF:05:45:D9:13:F3:5E:D8:60:54:70:25:2D:EA:73:A8:6F:C2:89
Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Certificate serial: 0187B7DACDFA37CC23F0238CD095FB92B8CD
Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/Cr8FRdkT817YYFRwJS3qc6hvwok.roa
Signing time: Tue 25 Apr 2023 09:59:42 +0000
ROA not before: Tue 25 Apr 2023 09:59:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43486
IP address blocks: 81.93.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b7:da:cd:fa:37:cc:23:f0:23:8c:d0:95:fb:92:b8:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Validity
Not Before: Apr 25 09:59:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0abf0545d913f35ed8605470252dea73a86fc289
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ac:95:bd:2e:a5:69:c7:62:2a:9e:17:ca:23:
b3:e0:07:cc:4c:34:2f:62:25:28:7d:5b:2b:d7:e3:
f5:93:04:0b:47:c8:13:d0:fa:2c:f8:4f:5a:af:59:
11:c3:09:d1:2e:1b:76:12:2f:2b:33:bc:c6:ec:73:
b6:72:ce:8c:51:ef:c2:a2:49:5c:ea:0f:fa:83:f8:
6b:6f:57:e4:0e:a5:94:9a:31:69:4c:41:81:0e:4c:
70:bc:6d:b4:45:49:94:47:c5:a0:a6:37:59:78:02:
55:cf:9c:79:c2:e8:61:fe:02:c0:56:10:b7:62:32:
3a:e4:a8:5e:2f:cd:0e:b1:a5:88:4f:91:96:b6:17:
6a:73:90:14:a7:ba:09:78:cf:83:ce:0b:be:e7:ca:
88:be:49:73:64:bf:18:df:77:d0:8e:f4:b8:ed:bd:
1e:16:bc:28:ff:6b:3f:8c:a7:35:9b:9b:98:8c:a2:
8b:f5:55:a6:fa:d3:6a:56:d7:97:ca:f2:fb:d4:ad:
3c:9a:c4:bc:d1:16:d5:26:e3:65:7c:57:4c:ff:b8:
4b:26:63:ab:6f:a2:68:85:9c:ae:31:4b:e1:35:6a:
9e:49:bc:ad:96:39:01:b5:1c:98:54:8c:0b:a0:30:
29:c6:a3:6a:ac:ab:07:6b:cb:61:d0:71:a5:9d:bc:
5f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:BF:05:45:D9:13:F3:5E:D8:60:54:70:25:2D:EA:73:A8:6F:C2:89
X509v3 Authority Key Identifier:
keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/Cr8FRdkT817YYFRwJS3qc6hvwok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.93.191.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b4:f1:ef:3d:c8:f0:3b:29:cf:07:7e:cc:f8:52:db:90:b4:
72:69:31:29:2d:00:9f:5b:e2:13:61:c5:25:60:a4:f6:60:76:
21:e2:dd:ea:84:e3:82:9f:66:ba:c0:aa:36:81:96:19:13:7d:
17:ba:90:73:41:27:e7:ad:42:a0:73:e5:a2:49:b0:a5:d3:5f:
2e:39:be:40:97:fc:02:40:ac:c8:f6:39:2b:b4:4e:f9:ed:19:
9d:4b:5e:7c:65:77:49:53:d0:2a:21:d0:8f:11:9f:98:53:52:
56:45:b0:f4:78:aa:48:93:b9:74:b7:e2:50:f6:ba:e1:9b:86:
78:e4:e8:cb:f0:a2:ea:63:05:df:ae:aa:b6:59:ca:55:8e:21:
f7:97:85:70:c8:36:c2:1c:52:c0:f4:2f:96:22:a1:6e:73:05:
14:59:2a:16:ea:1f:86:d7:cd:22:79:23:75:a5:06:01:ed:bf:
65:07:1a:34:29:aa:77:ba:9b:b2:9b:22:fb:24:91:81:a0:47:
d8:ad:e7:b7:ff:49:25:2c:37:7d:2b:90:73:2b:67:e7:fb:10:
be:8b:7b:aa:98:2e:d8:ee:24:d7:86:ed:02:3f:d7:c0:e0:6c:
5c:be:e2:0d:4f:0d:fa:3f:b8:8d:75:12:fb:31:d6:61:18:a1:
a1:be:52:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:03 2024 by rpki-client on console-ams.rpki-client.org