Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/D799zbU3zOEgliqeoNvbtvQ3yFc.roa
File: D799zbU3zOEgliqeoNvbtvQ3yFc.roa (raw, json)
Hash identifier: 1yJxbPzeJYDte0QlFseKFcvJs2f+bKQr1NRTAqCY++M=
Subject key identifier: 0F:BF:7D:CD:B5:37:CC:E1:20:96:2A:9E:A0:DB:DB:B6:F4:37:C8:57
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018A3FD33033B1072CCAC4ECE526842A6BAE
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/D799zbU3zOEgliqeoNvbtvQ3yFc.roa
Signing time: Tue 29 Aug 2023 05:45:19 +0000
ROA not before: Tue 29 Aug 2023 05:45:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205275
IP address blocks: 81.181.66.0/23 maxlen: 24
194.102.33.0/24 maxlen: 24
217.156.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Aug 2023 11:32:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3f:d3:30:33:b1:07:2c:ca:c4:ec:e5:26:84:2a:6b:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Aug 29 05:45:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fbf7dcdb537cce120962a9ea0dbdbb6f437c857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6a:47:ee:54:68:4b:21:16:95:33:77:e8:ef:
e7:e9:73:31:b8:d3:ba:7b:22:f2:d8:f4:51:49:b0:
2e:29:7a:07:54:98:f0:0f:fd:e5:00:7d:ea:41:30:
e9:7d:3d:95:0c:85:d1:5c:27:c0:0b:96:13:0a:de:
fa:8e:e3:d3:c0:d5:d3:0b:73:6a:da:9b:99:e1:1a:
65:a1:49:c0:d3:4e:72:79:ff:0d:4a:46:ec:95:bd:
b0:77:66:1e:b8:c7:ff:52:89:50:a3:dd:9f:29:7d:
86:95:81:d3:ae:1c:a5:57:b3:bf:9f:5b:8d:c1:36:
f2:c4:6d:99:03:e0:53:81:34:f8:aa:24:0e:67:3a:
45:0b:a7:a0:f2:a6:01:90:5e:52:10:e0:a5:52:fa:
5f:ac:99:06:ae:af:80:9c:1b:fc:52:6e:2c:b3:1a:
9a:9b:85:84:7d:2b:16:71:85:19:e8:a3:1f:fa:f5:
63:ae:fb:1b:b5:e4:2b:30:13:e4:93:86:ac:13:8b:
39:e2:ea:48:28:03:6c:3d:b0:7f:4c:db:43:72:5e:
b4:a1:fb:30:9d:1b:e4:ee:fc:d6:c9:40:84:b5:10:
f1:55:80:42:97:ae:7c:1e:c7:7c:16:d5:02:04:30:
cd:eb:c8:50:e9:97:d5:99:74:fd:21:b3:83:c9:25:
e5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:BF:7D:CD:B5:37:CC:E1:20:96:2A:9E:A0:DB:DB:B6:F4:37:C8:57
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/D799zbU3zOEgliqeoNvbtvQ3yFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.181.66.0/23
194.102.33.0/24
217.156.26.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:40:5f:98:dd:aa:c3:59:7a:e0:5e:54:a6:71:39:99:46:c2:
9a:65:8a:d4:c9:d5:36:7b:9b:11:8b:1c:ad:f4:54:d4:b7:76:
f4:28:20:53:ea:17:99:2d:80:38:5d:d6:f6:57:da:eb:4e:14:
76:80:b7:8b:69:ee:fb:90:c9:b4:82:e5:63:63:3a:fc:7c:78:
86:fd:f6:ba:e2:f8:5a:4f:72:c7:0a:95:8c:86:4c:40:9d:21:
1a:18:d0:f1:69:c1:f7:55:58:ea:e1:3f:86:d4:ff:a6:94:f1:
fe:17:81:d1:90:a2:93:15:8a:af:79:65:5b:57:9d:da:38:dd:
f9:ff:65:8a:fd:73:c8:e0:0f:34:1a:b7:8f:2e:8d:48:b9:d0:
7e:3c:92:06:e2:11:18:17:a7:73:7c:c5:83:60:81:93:d4:13:
d5:1c:f5:2a:f3:f5:30:3c:e0:13:3d:a9:e9:3b:58:cd:d5:6e:
c6:0a:d7:62:0e:03:e0:f6:03:78:c6:df:3a:8b:29:58:1c:01:
fa:53:6d:62:c3:65:07:76:fc:e4:c9:04:f3:16:c4:8c:ef:b8:
c0:bd:6d:19:02:d0:ea:d3:83:df:f4:ac:34:54:b6:8e:b4:fc:
4b:ed:15:c6:3e:52:92:03:28:de:f2:4f:0e:85:69:7a:ca:a3:
d0:a1:38:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org