Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/p-kmFtSu7k9Zq5226kSGK6hgvH8.roa
File: p-kmFtSu7k9Zq5226kSGK6hgvH8.roa (raw, json)
Hash identifier: 4t/Dl/4qFWnhOuNcSQCDIDpLyHbmmYng1PKuo3LKVys=
Subject key identifier: A7:E9:26:16:D4:AE:EE:4F:59:AB:9D:B6:EA:44:86:2B:A8:60:BC:7F
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 0185722818074FA4880287D597B0763F8A06
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/p-kmFtSu7k9Zq5226kSGK6hgvH8.roa
Signing time: Mon 02 Jan 2023 11:05:08 +0000
ROA not before: Mon 02 Jan 2023 11:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31133
IP address blocks: 81.19.132.0/24 maxlen: 32
Validation: Failed, certificate revoked on Wed 12 Jul 2023 11:58:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:18:07:4f:a4:88:02:87:d5:97:b0:76:3f:8a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Jan 2 11:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7e92616d4aeee4f59ab9db6ea44862ba860bc7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:fe:6a:87:69:80:00:59:32:ec:3e:46:4b:62:
f5:44:75:7f:88:2b:8e:24:b3:5f:56:63:dc:c5:59:
1c:16:a7:56:cd:3f:4d:30:f5:46:75:30:34:f8:98:
2b:73:b7:0c:47:54:15:c8:dc:52:f4:61:51:d7:ee:
10:f8:d1:99:1d:f7:34:af:73:9d:4e:67:94:f4:b6:
26:d3:16:39:b2:70:08:81:82:01:f0:54:41:b5:61:
36:e0:25:f3:c6:4d:6f:e6:c8:35:75:90:0a:d8:8b:
da:53:26:ee:40:03:0a:8a:c5:d2:b5:44:5a:6c:60:
0a:0b:a3:f3:60:29:d8:12:5b:a9:34:b3:f6:5e:fd:
8f:c5:8b:46:39:78:f4:91:1a:b0:17:11:d6:60:c8:
17:e8:ab:6c:00:1b:69:46:39:e3:5b:a0:35:d9:91:
91:03:82:ea:56:de:b4:91:37:4d:0f:6d:37:fb:1b:
88:fc:ed:46:66:95:04:a8:74:1a:1c:37:1b:58:77:
8b:ab:f8:54:2a:ba:ce:c4:95:c7:77:82:c0:a9:72:
45:c0:bb:77:59:4c:36:da:96:44:97:be:6b:16:b6:
bc:5e:d6:5f:33:9e:33:bb:da:41:82:d2:f2:af:68:
29:b6:25:09:0b:9c:e2:69:2d:f2:a1:1b:a7:06:b7:
77:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E9:26:16:D4:AE:EE:4F:59:AB:9D:B6:EA:44:86:2B:A8:60:BC:7F
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/p-kmFtSu7k9Zq5226kSGK6hgvH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.132.0/24
Signature Algorithm: sha256WithRSAEncryption
94:88:ae:00:7c:3c:1c:8a:76:c5:85:93:80:8b:09:72:28:67:
02:71:d6:af:f6:c8:b8:ff:5f:dc:d7:95:df:d8:ac:9a:5a:d4:
40:91:9d:13:83:c7:b4:a0:1e:7f:7a:2c:a8:13:1d:6a:89:12:
81:c5:ac:ab:7b:31:de:63:c1:67:70:82:cc:9c:a2:bb:fa:a9:
06:7d:98:07:29:db:e5:05:cd:19:d7:20:86:b7:6d:69:34:dd:
84:c8:d1:0b:f1:24:70:e0:b1:e3:bf:80:7c:25:48:fd:44:44:
76:84:c1:36:2d:7c:a5:3f:03:72:b4:50:27:50:1b:aa:19:1d:
8f:8f:d7:b1:8f:b3:ad:1e:7d:2c:00:f8:5b:64:bd:91:29:ab:
41:e9:f4:cd:d1:b2:08:24:d2:c1:e2:ac:55:e0:b2:4f:3c:77:
55:56:18:2e:6f:e4:4f:d0:a3:a1:28:22:59:e6:40:1b:6f:d0:
e2:52:7f:8b:fc:1d:18:8e:5e:da:46:37:ea:0f:8a:08:31:4d:
65:1f:87:a9:b2:17:9c:14:96:89:11:34:3e:91:83:be:21:42:
8b:7d:f3:e6:77:b0:3e:d1:37:b2:96:99:03:87:b0:25:7f:68:
c5:7a:f7:3a:85:d6:ca:a4:7c:53:a5:bf:7a:46:80:38:a4:c1:
c2:9a:dd:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org