Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/6bd-NivMPPa9_3AHQNvyL3pXUew.roa
File: 6bd-NivMPPa9_3AHQNvyL3pXUew.roa (raw, json)
Hash identifier: otID9HY7XVA0td+d2UlFDXnC3jpwCJuT0Qn0xyHCylc=
Subject key identifier: E9:B7:7E:36:2B:CC:3C:F6:BD:FF:70:07:40:DB:F2:2F:7A:57:51:EC
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018CC64AF3801C9C8DFC59AAD8C1206AF846
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/6bd-NivMPPa9_3AHQNvyL3pXUew.roa
Signing time: Mon 01 Jan 2024 18:30:49 +0000
ROA not before: Mon 01 Jan 2024 18:30:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200298
IP address blocks: 81.181.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:f3:80:1c:9c:8d:fc:59:aa:d8:c1:20:6a:f8:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 18:30:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9b77e362bcc3cf6bdff700740dbf22f7a5751ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:aa:34:9d:01:79:27:53:cc:7b:3c:e6:15:99:
f7:81:f0:6a:a0:39:61:de:5c:16:d1:e1:4e:2d:c6:
6b:10:17:24:a7:7c:10:5d:cb:aa:44:c5:c1:be:fc:
f1:dc:c8:bf:48:32:04:37:80:e7:36:ff:fe:d1:1f:
99:29:81:d9:02:a0:f2:ad:ab:98:24:08:64:ae:a6:
b9:03:c6:92:c8:dd:19:5f:a7:fe:b8:35:d7:3b:3f:
64:71:06:56:62:fe:7a:92:f1:a8:b0:ec:aa:75:98:
d4:e1:61:b5:b2:36:26:29:49:c8:ac:15:c0:4e:3b:
8e:7d:96:e3:ce:ff:bf:95:a2:a5:59:5b:d3:15:22:
57:b2:ef:6b:1b:c8:12:19:fd:de:f9:70:67:f2:26:
8c:1d:1e:71:f7:b3:4d:39:6a:71:f0:65:41:e8:d6:
36:d2:ee:be:f1:4c:91:8a:86:a9:60:0d:05:64:7f:
f2:ec:28:c5:f5:dd:f2:48:2f:a1:f8:1f:56:ef:3a:
24:3b:98:d8:c2:1f:bf:ac:65:51:c6:57:77:d5:53:
2e:55:dd:ac:61:3f:b1:10:e5:07:d1:b9:e0:33:a4:
56:6e:3a:d9:0a:25:13:3e:e0:a8:22:ac:7f:90:e7:
e8:3f:68:7d:cf:e5:d1:2d:1c:af:a6:9e:45:ea:1b:
a9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B7:7E:36:2B:CC:3C:F6:BD:FF:70:07:40:DB:F2:2F:7A:57:51:EC
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/6bd-NivMPPa9_3AHQNvyL3pXUew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.181.195.0/24
Signature Algorithm: sha256WithRSAEncryption
04:86:8e:79:3c:1e:0a:fb:9d:3c:a0:67:40:2b:b7:0a:31:6a:
25:8a:98:29:b4:67:60:e8:76:32:e9:d8:1a:dd:c7:6c:dc:84:
bf:a3:6f:2c:c2:43:a8:e4:7a:59:d6:97:2f:8b:cf:09:bf:49:
42:ef:88:40:b2:09:87:2c:1f:32:3e:f4:8b:42:6f:5e:32:9b:
d9:fe:0e:12:2b:2e:fa:91:95:73:39:4a:8b:96:4b:ad:4e:c5:
4a:88:a9:2e:e2:fc:e0:90:f9:ec:e2:bb:16:b6:82:38:4d:f6:
d8:67:b6:4e:b7:c1:79:72:9f:ab:63:88:ae:47:91:5c:cb:19:
3a:e2:d7:af:8b:7d:73:0c:67:18:50:0c:7b:03:7f:bf:cf:11:
98:ab:57:de:08:0a:06:c8:e2:a2:01:4b:a7:35:2c:2e:98:d6:
52:75:aa:19:8d:71:aa:69:be:31:3b:f4:fa:12:07:13:97:34:
0d:51:c5:a2:cf:7a:94:e0:3c:74:1e:16:58:78:be:f3:7d:0c:
83:44:7d:b9:e7:b9:6e:f3:eb:4b:e4:e3:f5:a0:c6:04:22:a3:
6a:f9:1c:a9:2c:fd:c8:c6:e6:f0:85:c8:b8:2c:4d:9c:ce:64:
00:15:c6:86:d8:a7:a1:8c:1a:eb:a7:11:cd:5f:ad:0c:7b:b3:
4a:5a:06:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:56 2025 by rpki-client