Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/SliBl25bwg_gQ_GaYFXkinEp8yI.roa
File: SliBl25bwg_gQ_GaYFXkinEp8yI.roa (raw, json)
Hash identifier: Di3ru1YQWq0NCnan/7r8dzddfDfqV2F4gZfz5qE71QE=
Subject key identifier: 4A:58:81:97:6E:5B:C2:0F:E0:43:F1:9A:60:55:E4:8A:71:29:F3:22
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 0185715E59EB48FB774BBFEB69F4D873FE92
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/SliBl25bwg_gQ_GaYFXkinEp8yI.roa
Signing time: Mon 02 Jan 2023 07:24:46 +0000
ROA not before: Mon 02 Jan 2023 07:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212384
IP address blocks: 81.199.29.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:59:eb:48:fb:77:4b:bf:eb:69:f4:d8:73:fe:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Jan 2 07:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a5881976e5bc20fe043f19a6055e48a7129f322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:95:29:d4:d5:a9:9c:ba:3b:82:43:07:3b:f8:
9a:b4:25:bc:f6:c1:83:08:00:ad:28:ef:68:62:19:
59:30:90:7d:01:dc:cc:fa:0b:ad:eb:65:01:88:f1:
38:fb:99:b2:b0:08:d6:d6:b1:e7:6a:58:44:13:f4:
32:6a:a4:c7:b3:c6:50:24:9a:e9:58:d7:9f:8e:2b:
a4:67:79:3d:3b:97:96:31:5d:0b:5b:db:54:ad:db:
28:60:2c:d1:4e:b3:69:de:61:5a:dc:7c:ae:3e:45:
d7:2b:4a:c2:d0:0c:f6:b0:4f:eb:37:76:b1:4d:c7:
5c:f9:b4:86:43:5c:46:eb:3b:8b:e0:9d:cf:75:ae:
7e:3e:f2:14:24:1d:af:c5:c3:55:c9:ff:21:af:4d:
02:1c:91:13:b2:79:f0:af:89:59:88:87:21:07:73:
b3:03:4c:56:4f:01:09:e0:49:51:e2:6f:64:9f:d5:
df:f1:65:73:ce:fb:de:b2:23:7e:81:d5:aa:96:73:
69:e9:6e:6a:18:4c:6b:b1:f1:fa:32:e9:cb:b3:38:
07:c5:c6:f4:34:2a:8b:ff:60:cc:1b:3a:28:35:4e:
fc:e5:47:5a:4f:30:c8:c5:5d:46:8e:41:ff:19:a4:
a3:3f:b1:64:d6:5e:b0:cb:c9:a8:e8:d2:f7:7f:83:
7f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:58:81:97:6E:5B:C2:0F:E0:43:F1:9A:60:55:E4:8A:71:29:F3:22
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/SliBl25bwg_gQ_GaYFXkinEp8yI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.29.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:85:3f:15:f3:c1:28:84:17:9c:31:20:8d:c4:1a:52:58:6d:
12:4a:b1:ac:d9:38:5b:da:49:cd:04:a6:db:41:a8:0b:01:aa:
a6:bd:c4:8d:0a:0a:93:c8:cc:5e:cc:37:10:97:bd:a3:34:4e:
32:75:82:17:4d:1d:79:1a:76:53:6d:dd:d8:2c:e2:04:d2:a1:
84:96:a5:94:e2:08:8a:8c:d8:89:fa:bc:30:d4:e2:31:30:93:
0f:c5:50:4a:82:78:ad:9c:66:9f:f5:3d:6e:90:17:e6:6b:56:
ea:7a:80:1a:14:2a:55:8b:25:9a:dc:13:ff:e1:f9:68:6a:41:
12:31:14:73:35:7b:d0:b6:1e:d6:ee:6c:31:f3:ad:db:4a:1f:
d8:45:93:12:64:3a:67:ea:1e:bb:e4:af:c9:e1:07:71:14:89:
84:de:f2:4d:d5:b9:92:59:bc:26:ed:27:36:7b:e2:15:58:d0:
d8:c1:ec:26:e8:30:29:7f:2a:a1:9d:16:21:29:e8:db:2f:19:
04:a1:9a:81:02:f6:42:8a:51:db:1f:d0:8d:11:73:2b:c9:f4:
40:5e:1f:c1:21:b3:53:de:e5:ff:89:13:19:70:9c:e1:3e:56:
18:ad:e2:88:bd:fc:e3:42:9d:59:dc:64:aa:24:1e:e0:46:5e:
87:03:f3:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org