Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/3kj4FJCoh0JJVdL-v0hWOSuh0vI.roa
File: 3kj4FJCoh0JJVdL-v0hWOSuh0vI.roa (raw, json)
Hash identifier: ISh6MgQGRXz6vdHD3KFRb6MuSkLBtvWCFlOJO2pNqQI=
Subject key identifier: DE:48:F8:14:90:A8:87:42:49:55:D2:FE:BF:48:56:39:2B:A1:D2:F2
Certificate issuer: /CN=cf40e25606651a075484c709fa766d80dad52d9c
Certificate serial: 019081E3F57C71315E483C60655DF481B1A5
Authority key identifier: CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/3kj4FJCoh0JJVdL-v0hWOSuh0vI.roa
Signing time: Fri 05 Jul 2024 07:55:18 +0000
ROA not before: Fri 05 Jul 2024 07:55:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25350
IP address blocks: 81.200.224.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 05 Jul 2024 08:26:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:81:e3:f5:7c:71:31:5e:48:3c:60:65:5d:f4:81:b1:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf40e25606651a075484c709fa766d80dad52d9c
Validity
Not Before: Jul 5 07:55:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de48f81490a887424955d2febf4856392ba1d2f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:17:09:5c:38:0a:e9:91:48:2d:54:3a:ce:e6:
9a:a6:58:49:99:f1:dd:d8:d5:0a:29:34:b4:81:52:
f8:31:da:86:df:19:f3:a2:f9:65:fd:8f:64:da:94:
b7:16:46:91:fd:bd:d3:70:d9:a3:ef:d1:5c:df:d8:
1c:57:87:ef:b1:22:17:cf:b6:0a:92:4a:16:0c:e9:
2f:d0:8d:ca:bd:cc:fd:a1:b8:6f:6a:a2:26:7a:54:
22:3c:a1:57:28:f6:4d:52:a5:ab:66:ae:b0:55:e2:
0d:e9:c6:91:56:28:59:24:9f:41:a9:d7:4c:a7:b3:
76:ea:bc:4e:44:f7:5d:63:30:4f:b8:4c:d9:ce:22:
57:7c:2d:63:8c:19:a5:6f:6e:db:c4:1d:d0:13:05:
50:73:93:0e:eb:c7:04:56:8b:d0:fe:31:d9:a0:8c:
35:89:b6:cd:47:6a:0b:a1:62:26:62:c0:a2:3d:b8:
82:44:37:5f:9e:92:37:5b:a2:3d:58:64:57:e3:d6:
2e:6c:62:c1:fb:6c:65:e3:89:b1:5b:45:55:73:05:
9f:b9:f8:95:f6:9a:39:2a:ec:2c:e1:f6:6b:ee:8c:
c6:da:19:af:b9:61:33:0f:99:dc:3c:49:02:91:57:
3f:a8:5b:8a:66:a1:42:23:d1:aa:32:33:ac:cc:3d:
e5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:48:F8:14:90:A8:87:42:49:55:D2:FE:BF:48:56:39:2B:A1:D2:F2
X509v3 Authority Key Identifier:
keyid:CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/3kj4FJCoh0JJVdL-v0hWOSuh0vI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.200.224.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:54:f7:0d:a4:2d:2d:45:95:e5:bc:85:6e:fa:dd:10:07:c2:
c3:80:94:c5:75:ac:58:da:ec:53:00:a4:40:3d:f7:13:61:1a:
d0:c3:da:f9:4e:11:4f:e8:fd:58:89:e9:16:44:94:cb:e2:8f:
3a:0a:92:85:1a:51:33:02:ab:7c:b1:f0:3b:d1:2d:ed:c4:34:
3d:35:60:6e:fc:55:d3:b9:9d:40:0a:b5:87:a2:5d:eb:84:fe:
92:ae:c8:c6:d8:4e:c4:d6:86:c1:b9:a8:f0:7e:0b:54:1f:d7:
73:28:28:89:61:f8:8e:d9:8a:75:26:16:e4:26:ad:ea:c3:e9:
64:45:2b:ee:ae:c0:2b:ed:e0:40:8a:c4:83:d0:99:da:6c:62:
56:82:d1:4d:ce:e6:8c:71:3a:dc:cd:4f:92:16:19:22:59:d3:
a9:c7:0c:c0:f1:d3:81:a7:a8:91:27:e0:c0:33:50:b3:8e:be:
5b:87:cc:65:5e:28:78:d4:f6:86:f2:31:5a:b1:10:ea:ae:81:
28:d4:1e:ef:ba:63:33:79:2d:f8:77:80:10:41:c8:bf:17:7e:
92:59:cf:1b:9c:20:9b:52:1f:2b:1f:3c:a6:c8:8a:55:7c:bc:
e2:a8:c7:5e:f9:cf:61:4e:eb:fd:57:91:c1:7d:dd:97:4b:cb:
14:63:20:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 10:30:55 2024 by rpki-client on console-ams.rpki-client.org