Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/vOnQE0ytHZXh60C5ZBhAmRLaQiM.roa
File: vOnQE0ytHZXh60C5ZBhAmRLaQiM.roa (raw, json)
Hash identifier: RaocM1f3VQyYl5Z8VXmkq88MIcOKOiPosE98HXpGwlY=
Subject key identifier: BC:E9:D0:13:4C:AD:1D:95:E1:EB:40:B9:64:18:40:99:12:DA:42:23
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 018CC56E1E26CFC726851A209BB687585687
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/vOnQE0ytHZXh60C5ZBhAmRLaQiM.roa
Signing time: Mon 01 Jan 2024 14:29:37 +0000
ROA not before: Mon 01 Jan 2024 14:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 185.81.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 20:54:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:1e:26:cf:c7:26:85:1a:20:9b:b6:87:58:56:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Jan 1 14:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bce9d0134cad1d95e1eb40b96418409912da4223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f4:89:42:0c:4a:ee:a0:4b:3a:98:9f:21:ef:
96:e7:5b:16:fd:8c:ee:56:01:c8:57:1c:cd:41:2a:
2f:31:3c:44:6c:62:08:4c:78:3d:c7:f4:61:2c:91:
00:dd:89:32:90:de:87:f1:e0:67:94:60:0a:c6:88:
74:a1:46:86:11:66:b8:08:23:b6:51:4d:f8:4d:a4:
eb:fa:e3:f5:0e:0a:3e:17:4c:d0:34:33:f8:f5:88:
b8:5e:2c:85:d6:bb:1b:52:d9:e8:02:28:cd:30:53:
1d:37:09:1d:26:0a:91:8a:e1:2d:1a:a7:a2:da:ad:
bf:4a:1e:b0:14:96:ed:9b:40:e0:d2:59:30:a5:ca:
8a:69:e3:df:fd:c9:db:0b:77:ad:7a:80:32:1c:a5:
df:5a:eb:22:f0:96:a0:c5:48:6e:a4:2a:40:07:07:
01:82:c8:5e:c4:04:91:81:f5:f4:b5:98:4e:27:80:
68:4f:fc:38:6e:58:fd:0b:bd:c3:12:ba:19:a2:21:
26:53:76:52:67:16:4a:39:a7:9d:44:48:e4:fc:53:
4e:57:51:f9:0d:6b:70:1a:31:4e:1d:dc:66:9a:87:
70:e3:e4:69:a3:78:e5:24:03:67:f4:d9:8c:76:e4:
e6:be:20:4e:56:ac:82:41:3a:65:7b:b3:25:44:dc:
ff:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:E9:D0:13:4C:AD:1D:95:E1:EB:40:B9:64:18:40:99:12:DA:42:23
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/vOnQE0ytHZXh60C5ZBhAmRLaQiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.183.0/24
Signature Algorithm: sha256WithRSAEncryption
43:4c:f0:95:6d:55:66:7a:5d:51:3a:68:79:91:55:39:15:49:
56:d6:bb:8d:a3:26:c8:2e:58:c3:37:2a:0b:09:0f:5b:5d:ca:
c2:b0:67:11:f6:25:46:60:41:57:58:32:fe:1b:28:65:ec:be:
09:6e:83:cc:85:51:d4:6d:40:ca:00:c9:ab:2d:fd:55:4d:f3:
25:3a:f0:b6:be:5a:e0:d4:90:62:9f:a6:80:d6:95:00:ee:f4:
1f:0a:92:93:c7:b2:19:88:f6:6c:dd:ee:f2:5d:cf:77:4e:6e:
7b:ed:54:c7:50:0d:bf:d5:78:9c:eb:20:52:23:b1:cb:4c:9a:
05:05:dc:0f:4b:a9:13:11:65:bf:c5:04:f3:fa:d1:3a:19:96:
2c:47:fb:b5:40:12:35:65:f3:fe:f9:ee:0a:43:ac:98:cc:ae:
c5:e0:b1:33:1c:d2:5d:10:eb:96:bb:69:02:3a:15:3a:9f:33:
93:4b:ef:62:98:7e:46:72:cd:57:5e:2f:61:31:8d:a8:a6:aa:
94:a6:12:9f:64:9f:2a:84:31:35:be:fa:a7:09:3c:56:0b:6e:
51:2f:90:45:ba:4b:45:f2:84:4e:42:a3:20:2e:e6:06:b5:ec:
5a:db:ff:9a:93:fc:28:1b:99:13:5c:d1:a8:34:50:34:1a:72:
05:d3:8d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:14 2024 by rpki-client on console-ams.rpki-client.org