Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/TVikr6YR1FJdbvRlzkOCtrS8vRE.roa
File: TVikr6YR1FJdbvRlzkOCtrS8vRE.roa (raw, json)
Hash identifier: iS83Tcxf/CrCioAk5YFTRtPHEqTcv/strnyjOz3ejms=
Subject key identifier: 4D:58:A4:AF:A6:11:D4:52:5D:6E:F4:65:CE:43:82:B6:B4:BC:BD:11
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 018D5FBFB7FD0502133BB1EC9CF97AB943DD
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/TVikr6YR1FJdbvRlzkOCtrS8vRE.roa
Signing time: Wed 31 Jan 2024 13:40:16 +0000
ROA not before: Wed 31 Jan 2024 13:40:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 81.199.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Mar 2024 14:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:bf:b7:fd:05:02:13:3b:b1:ec:9c:f9:7a:b9:43:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Jan 31 13:40:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d58a4afa611d4525d6ef465ce4382b6b4bcbd11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:49:3f:5c:a8:50:fa:fb:b8:bb:3e:00:90:e4:
9d:8d:68:18:a5:a4:24:63:02:b7:4b:33:4f:10:66:
18:1e:5d:1e:e0:00:18:cc:d2:78:7a:72:fa:87:d7:
33:0e:40:b5:5d:f3:48:29:4f:82:90:8f:be:79:74:
cd:44:82:bf:f4:12:ee:4f:b4:0d:70:b5:a6:0b:f9:
89:ec:90:3a:f6:a3:57:3d:0c:0c:35:26:67:ae:df:
91:37:e0:44:fd:1f:be:52:19:e5:21:e7:a2:21:72:
91:d7:28:eb:20:52:c5:06:a9:c8:c3:b3:b5:a9:1b:
60:e3:ed:0e:83:cd:9f:60:8c:1b:aa:c5:f9:4e:87:
8d:82:87:30:04:c0:c4:ee:03:67:54:a4:ab:de:d6:
2e:99:0d:af:d9:2f:80:22:1f:27:cc:3c:9f:47:97:
61:47:dd:13:e7:80:44:49:89:32:2e:42:ca:a0:21:
16:2f:23:56:af:54:d2:87:a2:3e:fc:64:9f:85:92:
c2:f2:ad:dd:24:8f:d1:95:6c:28:92:95:bd:73:f6:
cc:1a:00:0d:84:33:a3:8d:65:28:42:24:e4:42:05:
f3:0a:6e:9e:9e:14:65:54:66:62:8b:2b:5d:26:af:
1c:e3:c6:61:3f:69:51:96:96:3d:00:5f:15:f5:45:
52:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:58:A4:AF:A6:11:D4:52:5D:6E:F4:65:CE:43:82:B6:B4:BC:BD:11
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/TVikr6YR1FJdbvRlzkOCtrS8vRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.26.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:36:32:8c:52:7f:bc:f6:b2:70:a2:f4:15:05:14:56:61:7a:
96:5f:d7:38:2a:59:23:81:2f:45:a6:4f:ca:0c:45:73:7f:b8:
35:34:d9:60:7a:28:8a:bb:49:72:19:7e:3c:a9:4d:c7:82:f8:
dd:5f:07:24:13:90:a5:36:37:5c:99:b7:f4:55:b2:a5:29:80:
b1:84:17:88:31:ea:f8:16:9c:fe:1b:3e:6b:61:83:31:e2:f5:
0d:76:40:05:de:8f:f1:b2:b5:6d:1d:fc:f2:45:b2:99:93:fa:
a0:03:73:d2:0d:95:39:23:8c:66:52:48:dc:2a:d0:28:52:b7:
aa:fa:1c:e9:4d:7e:2c:ad:b2:11:3b:68:96:ef:ef:46:c5:40:
32:89:fe:3c:c9:a4:ea:90:fd:08:c5:47:d2:1c:e1:47:a1:1d:
5c:10:6c:a5:da:4d:07:30:d1:16:19:8e:30:b0:d8:0f:b6:56:
eb:cb:16:43:f9:11:c8:38:e5:e0:23:fe:35:84:cf:40:45:9d:
12:21:68:66:24:71:1b:ee:fc:8e:61:fd:b1:79:1b:eb:55:b4:
40:17:d0:7c:e5:f6:19:97:96:6c:38:4d:64:aa:3f:db:33:84:
c3:07:cb:a3:3f:b7:d7:7a:99:c1:e0:cf:2b:cd:5c:de:22:85:
61:96:19:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 2 15:05:24 2024 by rpki-client on console-fra.rpki-client.org