Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/huf1rf7eZnWwevS-UKhfoJnfOC0.roa
File: huf1rf7eZnWwevS-UKhfoJnfOC0.roa (raw, json)
Hash identifier: jLHl92iCBUiGUjjYw4B7RDjXNzELMKanEcyuofHvRrc=
Subject key identifier: 86:E7:F5:AD:FE:DE:66:75:B0:7A:F4:BE:50:A8:5F:A0:99:DF:38:2D
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 0189B07DE395989DA146D0CD6B7201EDA3B4
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/huf1rf7eZnWwevS-UKhfoJnfOC0.roa
Signing time: Tue 01 Aug 2023 09:46:27 +0000
ROA not before: Tue 01 Aug 2023 09:46:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209272
IP address blocks: 81.19.136.0/24 maxlen: 32
81.19.138.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b0:7d:e3:95:98:9d:a1:46:d0:cd:6b:72:01:ed:a3:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Aug 1 09:46:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86e7f5adfede6675b07af4be50a85fa099df382d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:36:a7:32:fe:3d:b4:db:d8:c4:88:c8:c7:a7:
4d:02:27:cf:99:db:26:96:33:93:9f:1f:14:2a:1b:
0b:96:6d:94:bb:9e:b3:40:2b:ba:81:54:71:5c:62:
df:8e:96:08:20:df:c5:47:eb:69:85:f1:b1:c9:cb:
b8:15:a5:f3:ca:ad:0a:6a:8a:00:d3:39:4c:3a:77:
be:9d:d4:a4:06:b2:f6:69:f2:24:64:25:21:ca:6a:
d1:42:be:79:4f:84:6d:45:81:40:36:f6:67:14:0e:
2e:f2:fb:c3:7a:d1:4a:94:1d:4b:ca:da:91:3c:91:
0f:42:0b:1a:12:76:f7:94:a8:48:4d:8d:87:92:e2:
06:0e:ec:51:9e:ce:93:49:9d:64:2a:b6:59:57:45:
f1:3d:b3:2a:16:e4:76:6a:f3:a1:40:4f:96:7b:22:
88:e9:ba:58:74:70:87:72:05:33:e5:53:82:30:b1:
17:72:7e:51:29:8e:2f:2c:f4:77:24:b2:37:a6:19:
76:54:67:83:20:42:ca:e5:94:b1:10:92:49:72:26:
d1:05:45:8b:ea:93:f8:93:05:81:c3:97:e5:82:c3:
f2:34:7a:75:25:b0:b8:d4:08:31:1f:31:81:92:bd:
89:67:78:5c:9c:fd:0f:09:90:13:f4:a2:9c:d9:8e:
ad:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E7:F5:AD:FE:DE:66:75:B0:7A:F4:BE:50:A8:5F:A0:99:DF:38:2D
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/huf1rf7eZnWwevS-UKhfoJnfOC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.136.0/24
81.19.138.0/24
Signature Algorithm: sha256WithRSAEncryption
27:7c:1a:4a:fa:8f:2d:3f:60:22:e3:ee:78:b4:00:51:cb:ea:
63:bc:42:4e:ba:b4:b4:74:35:68:62:5b:ce:bf:9d:6c:9e:72:
eb:c7:4c:c9:00:b2:b6:38:7c:54:96:4b:ce:84:7f:10:06:cf:
98:40:5b:2d:f3:9c:83:59:38:e8:7a:2f:e7:5a:f1:46:80:a9:
52:d7:cb:8d:50:31:1a:c7:d7:ff:73:48:68:28:8c:95:fb:51:
a5:34:f6:5c:95:70:37:3c:a6:bb:f4:5e:59:f7:49:d8:45:c9:
ce:95:96:dd:3d:e9:af:4b:f9:30:80:ba:ef:96:f3:cc:cd:7b:
f8:11:f3:6e:6e:54:66:e6:f5:12:96:0b:17:44:e3:10:cf:ab:
21:de:ca:ef:da:07:77:f9:05:60:e5:0c:17:93:d2:5e:56:55:
95:f6:12:1d:73:9e:a1:1b:2d:8a:06:35:e6:48:9d:e9:74:43:
06:40:9b:63:01:f5:3e:0f:f2:97:c3:fd:74:ec:2e:a9:69:24:
c9:f8:12:1f:c4:d7:82:9a:d5:33:32:ac:6d:ed:e5:2e:a8:6f:
28:87:f1:b8:c1:f3:05:dd:36:3a:f2:89:ee:8c:ce:38:a2:0e:
ad:f0:2a:78:28:28:95:a5:f0:df:ce:d7:4f:25:4e:88:e3:55:
8c:47:03:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:19 2024 by rpki-client on console-ams.rpki-client.org