Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/id3fN2yXDmH3votw8fNUjoDK8fw.roa
File: id3fN2yXDmH3votw8fNUjoDK8fw.roa (raw, json)
Hash identifier: mX0XYMwE4m7qK/fpibluwHWPfF3l1qSm7zaF69xNieU=
Subject key identifier: 89:DD:DF:37:6C:97:0E:61:F7:BE:8B:70:F1:F3:54:8E:80:CA:F1:FC
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 018937ACF97802021C19D7D4F803F51DA3DB
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/id3fN2yXDmH3votw8fNUjoDK8fw.roa
Signing time: Sat 08 Jul 2023 22:43:50 +0000
ROA not before: Sat 08 Jul 2023 22:43:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210644
IP address blocks: 81.19.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:37:ac:f9:78:02:02:1c:19:d7:d4:f8:03:f5:1d:a3:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jul 8 22:43:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89dddf376c970e61f7be8b70f1f3548e80caf1fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f1:81:4f:11:8f:04:ec:0c:32:5f:77:03:df:
82:9d:04:17:1f:f3:56:27:3f:db:4e:7b:96:7d:a2:
be:41:e8:03:2b:17:7e:bf:62:4d:3e:f2:21:60:f8:
16:57:6f:88:7f:f2:c0:95:b9:bb:a4:e5:5b:f5:30:
f6:1b:ea:8a:83:f8:98:01:55:05:c5:c1:39:a8:f7:
61:6a:94:ea:05:ca:24:82:d5:7c:14:7f:8b:e3:8b:
b1:85:bb:08:c1:2e:79:49:9e:94:c5:9c:7b:f5:f2:
00:71:85:14:f4:4e:10:5c:b6:46:0c:50:74:50:e6:
90:4d:b1:c1:bf:44:1b:f3:e6:45:24:90:a3:03:22:
b3:19:5b:52:3a:21:3d:4c:12:68:59:51:63:a1:2b:
0b:dd:ee:5b:9f:6f:df:9b:88:7c:61:1a:e2:f6:22:
3d:c0:2d:dc:00:8a:aa:1a:03:8b:25:08:79:a5:12:
0f:42:02:0d:92:ac:ec:8a:7e:41:7b:dd:62:bb:b5:
c0:72:d7:7c:de:3a:83:4c:2f:f9:9a:76:85:97:b2:
b8:83:e7:51:17:72:61:b5:63:56:88:ba:d7:8f:da:
04:3e:42:4d:d2:ec:5e:c5:63:0b:89:63:10:f3:ee:
29:0c:17:f4:60:38:e0:4d:d0:2a:b8:37:f4:5a:92:
4d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:DD:DF:37:6C:97:0E:61:F7:BE:8B:70:F1:F3:54:8E:80:CA:F1:FC
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/id3fN2yXDmH3votw8fNUjoDK8fw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.137.0/24
Signature Algorithm: sha256WithRSAEncryption
19:7e:cf:fa:41:36:1c:2d:b5:f9:7e:bf:7c:f1:fd:c3:bb:60:
e5:3e:8c:be:13:12:c9:c6:a7:4c:2f:d4:53:9a:21:0a:dd:f5:
b5:bb:78:2b:19:e5:1c:00:bb:54:29:44:f7:2d:df:5e:77:fc:
cd:b9:bb:4b:a8:e5:98:af:1d:8b:45:ee:9a:e3:e5:94:88:bd:
4f:5f:b9:f3:53:6d:4e:6e:a8:a9:f5:ae:80:10:52:bc:4b:57:
f6:65:17:08:91:1a:a3:e9:c7:c4:78:c2:38:27:3d:15:2f:d7:
89:a0:72:bf:f8:37:e3:4a:c4:dc:4e:70:15:20:ac:03:67:e8:
48:55:ce:07:04:28:af:1d:87:9f:5f:62:46:35:79:95:f8:64:
77:14:1e:a1:1b:86:90:88:8d:f3:2b:34:44:45:28:d0:27:5a:
d4:01:f5:f3:b6:2d:08:54:09:a0:ed:9a:b2:58:f9:c2:ca:e5:
4a:21:4a:d0:5f:85:39:73:49:ba:57:23:7f:43:2a:d0:0c:58:
a5:e0:cc:46:7f:d0:86:25:37:5f:85:f0:41:f9:a8:5d:06:d6:
ef:26:54:b7:4a:06:56:35:2b:24:72:9a:fc:80:cf:8f:2f:93:
80:fe:ef:42:30:2e:d2:f0:f2:35:69:9e:b2:33:b5:dc:7e:3a:
7f:e4:04:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:19 2024 by rpki-client on console-ams.rpki-client.org