Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/DyVMjph4dkddTNEnhxy8EXxyt8A.roa
File: DyVMjph4dkddTNEnhxy8EXxyt8A.roa (raw, json)
Hash identifier: uWg3dI2uQg7H5T72d08KPnkUw24lcle2J1SGdgP77To=
Subject key identifier: 0F:25:4C:8E:98:78:76:47:5D:4C:D1:27:87:1C:BC:11:7C:72:B7:C0
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 0192D38E639385B1652848E76C8A4B423F09
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/DyVMjph4dkddTNEnhxy8EXxyt8A.roa
Signing time: Mon 28 Oct 2024 14:36:16 +0000
ROA not before: Mon 28 Oct 2024 14:36:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 81.199.28.0/24 maxlen: 24
81.199.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 15:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d3:8e:63:93:85:b1:65:28:48:e7:6c:8a:4b:42:3f:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Oct 28 14:36:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f254c8e987876475d4cd127871cbc117c72b7c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7c:d8:19:2b:73:12:52:47:ae:91:ca:aa:a3:
72:1d:b2:02:9e:f3:68:5d:33:5b:06:21:6e:5d:08:
de:98:90:53:e5:1c:37:9e:24:86:43:ae:fe:5f:84:
08:ba:0f:56:dc:a6:dc:cc:b8:73:da:0a:2e:be:90:
e6:98:68:f7:ea:7d:71:3d:ce:c9:3a:cc:84:4d:e9:
1e:7e:f6:42:a4:e1:90:83:4b:44:a0:94:cc:28:72:
7b:d8:fa:f5:69:76:96:d7:a7:90:b1:91:4c:5a:a5:
0e:6c:3d:97:b5:66:ff:2b:d7:cf:ec:c4:87:bc:64:
b4:0e:a8:5c:1e:8f:7d:3f:89:63:dc:1a:91:41:44:
50:0a:15:d5:90:55:26:ac:09:3f:b1:ed:2f:da:62:
53:e1:b1:2f:f4:b0:6d:a7:74:76:f8:e8:1e:41:bb:
66:89:ff:89:68:70:83:b1:ac:49:71:86:82:ec:53:
ec:f6:c1:b9:9e:f4:b2:97:31:2f:05:cf:c9:4f:3a:
82:a0:28:03:38:9e:c7:89:c8:fd:82:1c:2b:69:72:
7f:94:e9:c8:5a:9d:f5:86:fa:7c:c5:27:2b:6a:ef:
63:c8:3f:df:f2:b1:98:e7:15:0e:32:70:0a:80:c4:
81:3a:b7:7b:57:30:6b:a5:43:36:2d:91:eb:4f:68:
03:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:25:4C:8E:98:78:76:47:5D:4C:D1:27:87:1C:BC:11:7C:72:B7:C0
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/DyVMjph4dkddTNEnhxy8EXxyt8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.28.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:51:b3:08:d0:79:3b:cd:1f:39:4d:bb:02:c4:ea:9d:2c:2a:
50:95:4f:93:a8:ff:cd:55:54:20:86:b4:d9:bb:f0:96:61:75:
3f:43:de:d4:50:2c:d7:11:4f:90:92:c8:3d:15:1a:50:df:c6:
4f:d1:f4:c9:ce:17:5d:5e:80:1f:16:8a:7b:c5:d3:a8:d6:b0:
44:00:e9:92:ad:39:fd:6c:0f:24:f2:41:08:a0:4b:cc:4b:cc:
db:3f:a8:a1:19:8f:27:95:c8:3d:b3:08:ef:de:fe:3e:3a:72:
11:c6:e7:f6:c4:0a:d8:ff:28:ba:ec:b8:dc:b4:ac:1d:ee:81:
f2:cc:18:ab:4b:f6:ef:93:62:f3:65:a8:23:df:b8:24:9c:e3:
24:bc:45:4a:94:72:cb:e0:ec:92:51:70:06:d7:c8:09:c0:3c:
de:47:56:34:36:d4:d9:62:e8:cb:07:3f:d4:c6:67:47:f7:60:
9b:02:ab:bc:dc:2b:16:7f:d4:2b:58:af:52:01:1c:f7:a5:dd:
a9:bd:c8:84:1d:d3:b9:80:0c:2c:39:b0:cc:24:56:1e:ec:b5:
b7:4c:89:0c:89:ec:59:44:2b:ff:94:ba:40:58:88:00:6f:70:
8f:be:4d:e1:f9:d7:a1:8c:77:71:49:a6:7f:83:80:f4:eb:79:
07:ec:cf:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZLTjmOThbFlKEjnbIpLQj8JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZGUxMjRlMGY4YWRiNGU3ZDk1NzZjZWFlMzI1ZjY2OGRk
MjI0YjEwHhcNMjQxMDI4MTQzNjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjI1NGM4ZTk4Nzg3NjQ3NWQ0Y2QxMjc4NzFjYmMxMTdjNzJiN2MwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnzYGStzElJHrpHKqqNyHbICnvNo
XTNbBiFuXQjemJBT5Rw3niSGQ67+X4QIug9W3KbczLhz2gouvpDmmGj36n1xPc7J
OsyETekefvZCpOGQg0tEoJTMKHJ72Pr1aXaW16eQsZFMWqUObD2XtWb/K9fP7MSH
vGS0DqhcHo99P4lj3BqRQURQChXVkFUmrAk/se0v2mJT4bEv9LBtp3R2+OgeQbtm
if+JaHCDsaxJcYaC7FPs9sG5nvSylzEvBc/JTzqCoCgDOJ7Hicj9ghwraXJ/lOnI
Wp31hvp8xScrau9jyD/f8rGY5xUOMnAKgMSBOrd7VzBrpUM2LZHrT2gDewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA8lTI6YeHZHXUzRJ4ccvBF8crfAMB8GA1UdIwQY
MBaAFNHeEk4PittOfZV2zq4yX2aN0iSxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGQ0U1RnLUsyMDU5bFhiT3JqSmZabzNTSkxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9hYmUxMzQtMDA5My00NjUyLTkwNTct
NGY0YzliMzQzZTkwLzEvRHlWTWpwaDRka2RkVE5Fbmh4eThFWHh5dDhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9hYmUxMzQtMDA5My00NjUyLTkwNTctNGY0YzliMzQzZTkw
LzEvMGQ0U1RnLUsyMDU5bFhiT3JqSmZabzNTSkxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBUcccMA0G
CSqGSIb3DQEBCwUAA4IBAQAuUbMI0Hk7zR85TbsCxOqdLCpQlU+TqP/NVVQghrTZ
u/CWYXU/Q97UUCzXEU+Qksg9FRpQ38ZP0fTJzhddXoAfFop7xdOo1rBEAOmSrTn9
bA8k8kEIoEvMS8zbP6ihGY8nlcg9swjv3v4+OnIRxuf2xArY/yi67LjctKwd7oHy
zBirS/bvk2LzZagj37gknOMkvEVKlHLL4OySUXAG18gJwDzeR1Y0NtTZYujLBz/U
xmdH92CbAqu83CsWf9QrWK9SARz3pd2pvciEHdO5gAwsObDMJFYe7LW3TIkMiexZ
RCv/lLpAWIgAb3CPvk3h+dehjHdxSaZ/g4D063kH7M+K
-----END CERTIFICATE-----
Generated at Thu Nov 7 19:59:58 2024 by rpki-client on console-ams.rpki-client.org