Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/2y5AN-7zenSpmYZiZt0vcZYJLHU.roa
File: 2y5AN-7zenSpmYZiZt0vcZYJLHU.roa (raw, json)
Hash identifier: ZZcwl3u/lx01ZpKiee0/KlLAiT9H34jfQmJl1NZZnao=
Subject key identifier: DB:2E:40:37:EE:F3:7A:74:A9:99:86:62:66:DD:2F:71:96:09:2C:75
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018CC64AF59C720F0B6AB291D2DB47A76D43
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/2y5AN-7zenSpmYZiZt0vcZYJLHU.roa
Signing time: Mon 01 Jan 2024 18:30:50 +0000
ROA not before: Mon 01 Jan 2024 18:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205275
IP address blocks: 81.181.66.0/23 maxlen: 24
194.102.33.0/24 maxlen: 24
217.156.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 11:28:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:f5:9c:72:0f:0b:6a:b2:91:d2:db:47:a7:6d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 18:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db2e4037eef37a74a999866266dd2f7196092c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:06:dd:f3:75:cc:fc:19:4e:aa:26:8c:26:9a:
f6:83:ff:d8:21:61:79:63:ea:da:93:cd:db:bf:cb:
c6:43:3c:59:1a:b8:be:cf:97:04:c8:a5:9d:31:33:
1e:d8:71:e3:6f:5e:29:f0:5d:ed:d7:a9:fe:b3:49:
15:38:b5:d2:ff:0d:4f:3a:da:a6:d1:44:b2:3a:38:
5c:b2:0c:0a:7e:ba:4f:f8:1c:98:9e:0e:59:4c:f6:
e2:99:c0:f0:6d:30:7c:36:49:28:b2:ec:ba:20:f4:
a3:37:5c:64:7e:80:14:b8:7d:45:5c:70:02:e0:05:
1d:dc:69:eb:93:7d:72:8e:48:0b:02:53:bc:9b:b7:
8b:2c:fc:48:78:9e:99:61:ba:d6:b9:b3:f8:e0:aa:
57:1c:d4:71:3f:6f:ed:cc:63:48:c9:92:12:b8:df:
93:4c:bc:93:c4:34:e6:db:60:87:17:0c:f1:77:38:
b6:04:01:ca:6e:52:b4:7d:f4:ca:c4:6e:2a:29:78:
cd:c6:aa:a1:46:0e:94:55:48:42:f1:9e:09:fa:c7:
c7:f0:fc:b4:25:1b:11:d0:f0:af:92:2a:fb:52:ba:
d6:1b:b6:33:d4:1c:5f:70:d9:ac:c4:86:e4:4a:eb:
06:9f:fe:42:74:8b:3d:3c:a6:74:95:92:e2:ef:67:
57:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:2E:40:37:EE:F3:7A:74:A9:99:86:62:66:DD:2F:71:96:09:2C:75
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/2y5AN-7zenSpmYZiZt0vcZYJLHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.181.66.0/23
194.102.33.0/24
217.156.26.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:1b:4a:da:ea:9c:dc:25:3a:30:c9:c1:3b:57:6e:f2:7f:48:
90:0b:a7:dd:c2:fc:ef:1e:0d:09:fe:4a:3b:a2:91:7c:92:c1:
81:03:b2:d9:5e:1a:a4:da:a3:f2:a8:a8:47:2c:fa:eb:c8:cb:
0a:f8:39:fc:f3:4d:c5:1e:97:1d:40:88:17:23:e2:5b:12:20:
c3:2c:e3:5e:d1:d1:4a:42:21:30:57:0c:4e:d7:26:b1:d5:39:
c0:69:7c:f7:4f:95:8d:cf:c9:42:19:13:52:80:cf:b2:e2:01:
ac:38:85:00:df:75:cf:59:3f:4e:9c:d3:b5:ae:23:86:b4:7b:
c0:35:42:a2:36:40:65:0b:72:62:ac:3e:cc:61:7b:30:df:2f:
bb:9b:3d:54:ae:69:05:4e:5f:dd:c2:19:7b:bb:d9:0f:ae:4d:
f5:67:70:3d:0b:b1:84:b0:ee:d3:c5:d6:ba:ae:f8:bd:cc:76:
3b:00:0a:f8:3a:ce:7d:7d:c9:72:33:80:5e:e5:cf:38:64:94:
43:61:0a:09:53:4e:ff:1b:32:dd:63:df:52:4d:c2:e0:bb:aa:
7d:f3:54:d1:a0:b5:df:e7:20:45:f4:e9:07:bb:0b:12:74:50:
4e:6c:25:a2:e8:0c:22:54:92:87:1f:e1:71:7e:c8:25:f5:41:
55:07:d6:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org