Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/7K3TrLVpAsKB5QgyqEQf8683slg.roa
File: 7K3TrLVpAsKB5QgyqEQf8683slg.roa (raw, json)
Hash identifier: 2WZWf0xUjEDk+LD/gwqieA4ql/L1yeNuNgv1mcmZRtM=
Subject key identifier: EC:AD:D3:AC:B5:69:02:C2:81:E5:08:32:A8:44:1F:F3:AF:37:B2:58
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 018572281A2A06D8A935378A55FA0C5B340F
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/7K3TrLVpAsKB5QgyqEQf8683slg.roa
Signing time: Mon 02 Jan 2023 11:05:08 +0000
ROA not before: Mon 02 Jan 2023 11:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209272
IP address blocks: 81.19.136.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 01 Aug 2023 09:46:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:1a:2a:06:d8:a9:35:37:8a:55:fa:0c:5b:34:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jan 2 11:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecadd3acb56902c281e50832a8441ff3af37b258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c5:b5:66:5a:2a:41:f4:d0:e1:77:80:7c:9a:
84:c8:d4:6a:02:86:5c:c2:06:6b:bc:1a:e1:8c:af:
8f:55:af:4b:56:5b:81:16:ac:88:f3:21:72:68:41:
ad:ad:fe:c4:0e:ae:c1:34:09:77:b0:31:f4:13:e8:
59:8e:3a:87:12:1c:4e:4a:a1:24:a6:58:cb:c4:a7:
f8:f2:ee:e8:ed:26:ea:aa:ed:88:ff:57:87:5e:a7:
36:6a:79:ac:16:9c:1e:2d:0b:cd:09:a2:b1:cc:a7:
3e:24:c8:54:88:07:8a:2d:cb:d6:b7:1b:e5:e2:5b:
1c:dd:ca:f2:3d:ec:03:61:0d:d9:fb:88:1e:e0:65:
00:c7:40:82:52:a6:76:23:cc:e0:85:cb:6b:59:14:
56:de:c6:b3:16:ee:80:fd:d1:43:86:36:50:63:a4:
ee:fb:19:8d:39:52:6c:02:33:13:47:27:1f:ff:ac:
99:26:6e:41:b9:1c:27:f0:14:54:ca:da:2f:07:85:
98:00:24:24:92:d0:0c:28:d8:fa:52:6f:20:91:98:
f3:df:5d:75:06:c3:cc:50:dc:2b:d2:83:92:f6:c3:
11:eb:a3:22:e1:d7:0d:b8:2d:c8:d5:60:7c:59:8d:
b0:6c:4f:0c:8b:76:51:4f:8f:50:bf:38:b6:13:58:
00:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:AD:D3:AC:B5:69:02:C2:81:E5:08:32:A8:44:1F:F3:AF:37:B2:58
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/7K3TrLVpAsKB5QgyqEQf8683slg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.136.0/24
Signature Algorithm: sha256WithRSAEncryption
18:ad:3f:da:6c:9e:f5:83:55:2a:7c:35:d8:1f:15:67:08:f8:
6e:2d:7f:0a:f0:99:28:75:d5:c8:58:a4:78:25:df:67:79:75:
f9:98:f1:fc:ca:ab:5f:7d:26:de:47:11:93:af:a3:6b:09:fa:
14:66:72:a2:8d:8e:b2:78:9a:8a:bd:56:9e:14:cc:7f:30:95:
51:59:b4:dd:19:80:c9:62:8f:a0:33:29:4f:e0:21:a0:e9:09:
14:23:0f:72:65:f3:96:84:39:56:a9:cc:0f:d4:65:15:85:cf:
ea:c0:a2:04:c8:73:23:0f:7d:92:ab:39:2d:4a:9b:fe:7b:8b:
1d:a3:bc:b6:be:5e:50:3b:16:f1:36:02:4c:ed:fb:e7:ea:c9:
d2:be:ce:66:df:da:5e:75:a2:88:f9:c9:05:b0:05:74:ef:e1:
86:d7:70:40:d8:27:d0:10:62:70:0e:46:07:37:c7:7b:a7:cc:
9c:2f:c5:26:df:eb:91:57:71:1e:4c:31:07:ee:82:dc:ae:26:
fe:c8:c6:24:5f:e3:31:bb:06:8d:cf:a4:31:94:6b:62:91:a6:
94:23:e2:81:86:07:8c:e3:53:77:20:cc:29:7a:e7:eb:59:a8:
b1:d1:52:0c:d2:05:c9:a5:06:7c:46:ce:5e:e5:91:da:b7:58:
60:3a:10:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org