Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/3ll9eKXRS4rT_0Eqz1VAvKGUl7s.roa
File: 3ll9eKXRS4rT_0Eqz1VAvKGUl7s.roa (raw, json)
Hash identifier: Woiw2p3Qw07w07lHlww5WTHbqDT+Y97pkzpK4YD7z/A=
Subject key identifier: DE:59:7D:78:A5:D1:4B:8A:D3:FF:41:2A:CF:55:40:BC:A1:94:97:BB
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 01886666ABB3D2A81707562C838B7D851812
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/3ll9eKXRS4rT_0Eqz1VAvKGUl7s.roa
Signing time: Mon 29 May 2023 07:26:24 +0000
ROA not before: Mon 29 May 2023 07:26:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61106
IP address blocks: 81.162.54.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:66:66:ab:b3:d2:a8:17:07:56:2c:83:8b:7d:85:18:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: May 29 07:26:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de597d78a5d14b8ad3ff412acf5540bca19497bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c3:e6:83:77:49:57:2d:e0:be:5c:a6:e0:1a:
84:e4:68:e2:6c:41:0f:c9:fb:6a:90:a1:a0:98:e5:
36:5b:71:23:b9:02:9f:5b:a4:7c:5f:47:64:72:29:
e8:b5:27:cc:f9:7b:a5:bf:65:b8:17:ef:7a:3b:9a:
b2:5f:21:0b:3c:b9:20:16:eb:14:67:e3:1c:06:c9:
71:12:97:de:b5:34:29:12:e6:6d:3c:0d:3f:0b:36:
70:4b:84:d8:cd:f5:b2:11:99:f7:89:fa:f0:ee:54:
ce:29:8f:7e:5f:fe:3f:e7:35:62:61:1f:57:dc:81:
2d:fb:aa:88:5d:58:3d:25:b8:67:f7:b5:eb:3c:84:
eb:4d:e1:f7:02:73:d4:de:81:e8:cc:6d:cf:6c:f3:
5e:ef:3e:54:7d:42:10:21:d6:69:4a:7a:fc:83:75:
2c:ab:7d:18:64:ad:5b:d9:08:d5:6a:20:43:9d:0e:
6f:3b:b6:2b:65:fe:59:08:df:50:e1:db:74:87:e1:
07:1b:58:15:1e:1c:55:48:0b:49:30:ee:e8:96:da:
25:73:74:cd:46:53:6a:4f:c8:f0:9c:ad:6f:40:9b:
52:96:01:5f:62:80:79:3c:07:31:a9:25:0e:00:c1:
f5:4f:d3:9c:54:9b:ff:0a:3b:1c:3d:4d:f2:44:17:
82:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:59:7D:78:A5:D1:4B:8A:D3:FF:41:2A:CF:55:40:BC:A1:94:97:BB
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/3ll9eKXRS4rT_0Eqz1VAvKGUl7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.162.54.0/23
Signature Algorithm: sha256WithRSAEncryption
03:8e:f7:fe:e2:cd:e4:f6:32:e3:24:24:fe:13:8f:f3:04:a9:
90:3b:c7:d8:ca:5c:4f:fb:cc:03:9f:82:1c:9e:d9:81:54:fb:
f5:1d:42:6a:2c:f1:d9:ef:53:d3:6f:14:62:1c:d3:6d:8a:57:
b2:e8:11:d8:09:fb:5c:52:b9:40:24:59:dd:47:e7:30:ee:06:
5d:6d:53:62:bd:a3:98:04:9e:de:ce:8c:7c:f5:4d:49:4c:93:
70:e1:e0:d6:2f:4c:45:72:64:a0:af:a1:41:26:cd:e9:1c:dc:
35:33:48:aa:93:08:b7:2b:46:f0:f2:82:22:e1:be:f9:57:08:
39:5f:16:9e:95:ab:47:e2:1d:b3:d6:ff:d3:f2:bb:5b:f2:61:
15:2f:ac:3f:06:00:a0:df:71:b5:42:53:43:2f:eb:b1:f2:00:
c1:91:12:0d:13:c7:6f:23:44:e8:49:3f:c4:b6:ba:e7:a0:ff:
15:35:ae:a6:ba:9a:27:70:32:88:87:23:df:15:66:e0:a2:b4:
2f:87:8a:0a:0c:0e:b4:f6:9c:03:53:d3:7a:d7:2f:29:81:74:
fb:93:3f:03:e7:3d:1c:bf:9f:45:44:a0:f4:36:90:a0:3c:b8:
23:06:74:bb:e7:39:b4:dd:aa:d7:84:93:4a:47:3e:74:15:bc:
35:ac:8a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:06 2024 by rpki-client on console-ams.rpki-client.org