Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/XEqQmowWpwLXgarLtY9Apjeatrg.roa
File: XEqQmowWpwLXgarLtY9Apjeatrg.roa (raw, json)
Hash identifier: /TShHJsOYg9tAOvOvZbjGECLolBRr0Cw4ZAkpmmzx7U=
Subject key identifier: 5C:4A:90:9A:8C:16:A7:02:D7:81:AA:CB:B5:8F:40:A6:37:9A:B6:B8
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0187FF8A0AB6EA49CD44B0C1023FD0A5936A
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/XEqQmowWpwLXgarLtY9Apjeatrg.roa
Signing time: Tue 09 May 2023 08:04:09 +0000
ROA not before: Tue 09 May 2023 08:04:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42508
IP address blocks: 81.181.102.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ff:8a:0a:b6:ea:49:cd:44:b0:c1:02:3f:d0:a5:93:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 9 08:04:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c4a909a8c16a702d781aacbb58f40a6379ab6b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:89:a7:df:87:e3:17:ad:e8:0a:11:f2:47:3d:
e4:d4:7d:2d:82:58:52:78:71:da:29:68:dc:fe:16:
45:15:e5:a2:3c:76:52:63:97:c9:71:69:71:aa:99:
18:b6:03:91:9d:d9:b3:9d:07:8c:ba:a6:cd:02:6a:
c1:e0:0b:b8:cb:d9:16:35:2e:a2:d6:10:81:6f:a1:
12:7f:96:80:e3:46:7b:6a:be:ec:db:1b:84:4d:73:
f6:42:0c:6b:bf:87:33:16:ed:2b:40:b2:51:a0:4a:
44:f6:39:fb:6f:68:8a:3a:35:dc:8a:37:6f:94:cd:
da:b7:06:5f:9a:fc:10:58:78:a4:72:22:6d:50:66:
04:39:98:73:28:63:9b:73:10:96:26:0f:70:4e:26:
be:8e:d9:cd:87:d8:11:52:49:0e:75:6d:97:23:5f:
a1:89:5c:c5:6a:46:e5:ac:52:e6:30:71:d4:e6:b5:
e2:e0:2d:5f:72:f9:54:90:32:d0:c6:78:28:17:51:
f8:6c:92:5a:e6:87:86:a2:ae:7e:df:ab:b0:f2:83:
3f:01:0e:3e:68:c1:99:57:f4:2a:c2:5b:83:ef:1f:
2d:7f:a0:bf:ec:20:15:d2:ae:1a:e0:c4:c6:c7:ab:
54:36:1c:4f:2e:6a:04:be:15:cd:4e:12:3c:f7:bd:
45:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:4A:90:9A:8C:16:A7:02:D7:81:AA:CB:B5:8F:40:A6:37:9A:B6:B8
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/XEqQmowWpwLXgarLtY9Apjeatrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.181.102.0/24
Signature Algorithm: sha256WithRSAEncryption
69:8a:67:d8:59:1a:d2:1f:f2:e8:20:51:ac:27:35:fe:16:53:
27:cd:66:11:e0:5d:2f:e7:83:5a:85:f6:9a:a1:dc:aa:74:b5:
fe:61:9f:51:0e:c6:47:43:6e:be:f2:c0:bb:8b:75:ec:db:fb:
b5:a3:69:8f:42:75:c2:fb:9b:24:42:b9:dc:27:9b:95:50:8e:
39:4e:74:ca:92:91:71:4e:77:cb:4d:da:85:27:c6:51:9e:8f:
3b:1a:19:d3:27:a2:17:0a:1d:ec:31:f2:93:d8:ef:8a:8a:59:
09:c8:c2:f2:41:7c:f5:19:f5:a7:40:96:0c:63:d5:a2:e0:1e:
63:be:22:48:61:2d:19:44:5d:b8:3c:ba:7c:fb:fa:04:48:08:
d4:a7:71:06:cc:33:72:2c:c5:e8:c5:56:b5:30:57:28:0e:b1:
ea:aa:a3:72:70:09:93:b9:9a:86:be:65:b3:f7:2b:80:f7:b4:
4c:2a:76:0f:87:5b:ee:84:e2:5c:af:da:de:ed:5e:fe:95:51:
2e:3a:13:eb:87:ad:16:8a:89:08:00:01:c3:1b:b1:85:00:d5:
3a:ae:4b:fe:dc:a6:ce:b6:dd:62:c7:df:06:a5:fd:41:c5:a9:
d8:66:c9:01:67:8b:20:e5:2c:ed:8c:16:ea:a8:e6:d7:44:29:
34:96:78:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:06 2024 by rpki-client on console-fra.rpki-client.org