Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/0k8eYO-T9C3o8dqIxjPNE77qgOA.roa
File: 0k8eYO-T9C3o8dqIxjPNE77qgOA.roa (raw, json)
Hash identifier: XDSXKXEUczcK2+1OSw1xZ0n95azE50K7+ilo5n5YS88=
Subject key identifier: D2:4F:1E:60:EF:93:F4:2D:E8:F1:DA:88:C6:33:CD:13:BE:EA:80:E0
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018A463702DA0FB439F7314A90A5D27737D9
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/0k8eYO-T9C3o8dqIxjPNE77qgOA.roa
Signing time: Wed 30 Aug 2023 11:32:04 +0000
ROA not before: Wed 30 Aug 2023 11:32:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205275
IP address blocks: 81.181.66.0/23 maxlen: 24
194.102.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Sep 2023 11:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:46:37:02:da:0f:b4:39:f7:31:4a:90:a5:d2:77:37:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Aug 30 11:32:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d24f1e60ef93f42de8f1da88c633cd13beea80e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7d:b0:7f:6c:ce:d4:43:11:61:95:64:49:31:
2f:db:a6:fe:17:d4:81:65:4d:c0:39:49:3b:4b:5d:
f0:65:49:38:90:8e:78:85:2f:fb:00:ac:08:79:42:
ea:0d:84:c8:48:f3:65:77:a1:e3:34:69:e3:24:cf:
b1:ed:94:d0:5b:37:d3:3a:46:7f:1a:37:e0:93:ae:
8e:15:85:96:c4:12:8f:04:7e:f6:ea:ad:59:3e:71:
28:ec:6a:08:55:1a:64:00:0f:38:c2:05:1b:29:44:
49:f1:04:23:8d:2f:e3:68:7b:11:95:a7:d9:4d:b3:
e4:f1:2c:d3:73:a5:af:55:c3:2f:55:a9:3b:a4:58:
8b:c1:89:7e:ce:67:f7:b9:2d:02:fe:c5:ad:76:f9:
97:0b:d9:55:48:37:4e:3e:bd:14:c0:c5:88:72:ff:
72:d4:e2:46:df:86:cf:d9:c7:10:0d:1d:a7:41:37:
8e:24:63:7c:34:85:92:eb:5d:50:14:d5:34:ad:3f:
30:6a:92:b4:67:f6:4f:0e:1f:99:4c:c2:54:bc:54:
1e:22:89:7f:67:8e:d2:68:ba:8a:9a:67:d7:34:58:
d6:2f:a2:ba:88:6b:35:5b:6a:dc:08:04:8a:e9:09:
02:54:9a:8b:f0:a8:8a:cd:e9:c3:2c:99:b0:81:d6:
85:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:4F:1E:60:EF:93:F4:2D:E8:F1:DA:88:C6:33:CD:13:BE:EA:80:E0
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/0k8eYO-T9C3o8dqIxjPNE77qgOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.181.66.0/23
194.102.33.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:28:ac:a4:79:ad:a0:26:b6:df:32:ab:9c:d9:b2:29:4b:6c:
db:65:2b:9a:51:70:fc:4c:98:28:d3:4f:73:78:fe:bf:7a:09:
53:b0:d2:5c:99:26:e0:43:b1:44:a4:02:83:25:71:13:af:f1:
67:1a:18:c2:2f:10:ee:7e:52:13:59:44:cc:df:6f:af:89:aa:
69:8c:15:49:b8:9d:8f:b7:84:90:7f:62:33:c2:70:a2:96:f1:
a0:69:13:72:c9:e9:2b:94:31:17:de:b0:0c:a9:db:f2:d2:65:
29:ae:27:c5:4e:f1:b0:a0:8e:0e:0c:e7:35:c7:b1:35:30:f9:
d7:45:12:48:eb:a5:88:3c:73:1d:1f:f8:75:72:65:67:89:60:
46:55:4e:03:06:7c:f8:66:45:8a:d2:dd:c5:e4:c4:c5:7c:e5:
e1:b4:93:51:af:bf:b8:0e:5a:be:e7:c0:bf:c7:6d:47:6c:2b:
46:42:df:51:d1:71:60:77:0d:f4:ea:46:8b:18:2f:ce:d3:86:
28:76:c9:5c:63:7c:4f:b5:c4:14:63:f5:0d:d3:42:65:bf:8f:
fc:16:b6:32:a5:64:ba:ab:c7:1d:dd:83:9a:3e:14:7e:c5:39:
77:dd:c3:a1:6a:30:8d:03:f0:f9:80:1a:a1:86:02:7a:aa:75:
75:a6:e6:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org