Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/x1DtmaETFLQXJbeSV3LK45EQ6DQ.roa
File: x1DtmaETFLQXJbeSV3LK45EQ6DQ.roa (raw, json)
Hash identifier: lsc9NdawJOWHbl9QaX2taMEz/YmKBrkmibL/RJnsr9E=
Subject key identifier: C7:50:ED:99:A1:13:14:B4:17:25:B7:92:57:72:CA:E3:91:10:E8:34
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 0187504F32EE9BBACE143A98C2412B786A0A
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/x1DtmaETFLQXJbeSV3LK45EQ6DQ.roa
Signing time: Wed 05 Apr 2023 07:26:20 +0000
ROA not before: Wed 05 Apr 2023 07:26:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60602
IP address blocks: 81.19.131.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:50:4f:32:ee:9b:ba:ce:14:3a:98:c2:41:2b:78:6a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Apr 5 07:26:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c750ed99a11314b41725b7925772cae39110e834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:38:69:8b:a1:46:a5:62:7d:f8:d9:b4:f3:e1:
b3:6b:4e:c9:a5:e4:03:9a:eb:e9:f4:ae:1a:61:28:
76:42:50:2a:da:95:1e:08:12:95:e9:eb:97:98:04:
a0:34:49:65:01:27:48:77:35:66:cd:48:28:35:b9:
e5:18:57:f7:2c:bb:76:36:98:88:74:b8:ed:de:1c:
a7:45:08:45:a8:a2:41:2a:cf:91:0e:ce:79:9a:40:
a2:10:c9:09:01:f3:26:b3:03:6e:d7:7b:7b:a0:73:
d3:1c:83:23:03:06:22:7f:ab:01:23:ce:31:0c:45:
d8:7d:ff:0b:5e:f0:5f:5f:8a:6a:a4:4b:b2:8e:38:
8f:01:98:7f:de:c6:c4:47:a6:74:e8:e7:d5:c1:d2:
67:2b:77:a6:6b:a2:7c:48:d0:17:5e:6e:71:29:32:
1a:7d:b8:ac:a9:4c:d6:50:25:f5:f5:f3:80:a6:b0:
0e:2d:03:1b:0f:cc:3d:5f:53:f8:54:9f:92:3d:22:
25:8c:3a:6f:c3:07:a2:e0:a9:41:af:4e:ed:cc:dc:
03:77:9a:33:1a:9f:e3:e0:9f:a5:42:9a:e7:cc:35:
51:cf:3a:ab:80:b3:cc:63:a1:f0:0b:c5:a1:d8:4c:
1c:0e:1f:da:a1:13:c8:40:21:19:bd:12:c5:0f:22:
5b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:50:ED:99:A1:13:14:B4:17:25:B7:92:57:72:CA:E3:91:10:E8:34
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/x1DtmaETFLQXJbeSV3LK45EQ6DQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.131.0/24
Signature Algorithm: sha256WithRSAEncryption
32:b3:cb:6b:58:f6:e9:9a:19:d3:12:6b:8c:e9:c8:58:d6:d7:
8c:23:ea:43:06:14:d6:f9:ff:80:c5:2f:ad:25:ae:5c:13:33:
16:eb:90:4a:4a:c9:2b:16:09:0c:87:93:e5:a3:04:f8:8b:30:
60:eb:42:dd:c6:60:bf:dc:86:d5:2e:b3:52:8d:d7:1c:9f:be:
1d:60:48:41:b9:7b:60:49:2e:0d:16:55:b6:3f:2c:eb:64:3e:
76:32:74:11:b4:97:69:92:d5:fb:3e:d4:04:54:e2:11:f3:40:
4d:80:4d:3c:86:bb:40:3c:47:cd:72:b5:42:bd:3d:10:1b:27:
bf:16:02:f3:48:65:fe:ab:57:75:7f:49:db:74:eb:ff:9b:bc:
03:55:f8:3f:91:35:9a:8d:85:c0:70:34:b0:f9:04:74:f6:e5:
f3:88:f2:07:bf:27:16:d8:9b:17:25:9c:f0:83:35:44:95:58:
61:1b:5f:47:4e:69:27:b8:51:50:50:3b:ce:d9:99:41:dd:77:
c1:5e:12:71:ec:6c:3b:ed:00:1f:53:ba:a3:31:df:23:16:d1:
87:d8:70:26:df:39:48:c9:fa:9e:50:bf:9e:30:45:95:a9:56:
89:5e:c9:94:c1:b7:37:86:9c:41:0e:6a:d9:7f:b3:03:c1:97:
4a:12:a2:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdQTzLum7rOFDqYwkEreGoKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0Y2U5NjQwYTNlZjJmZWExOTM3NGFkOGY5OWY0MjNkN2Fh
N2M3NmIwHhcNMjMwNDA1MDcyNjIwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzUwZWQ5OWExMTMxNGI0MTcyNWI3OTI1NzcyY2FlMzkxMTBlODM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDhpi6FGpWJ9+Nm08+Gza07JpeQD
muvp9K4aYSh2QlAq2pUeCBKV6euXmASgNEllASdIdzVmzUgoNbnlGFf3LLt2NpiI
dLjt3hynRQhFqKJBKs+RDs55mkCiEMkJAfMmswNu13t7oHPTHIMjAwYif6sBI84x
DEXYff8LXvBfX4pqpEuyjjiPAZh/3sbER6Z06OfVwdJnK3ema6J8SNAXXm5xKTIa
fbisqUzWUCX19fOAprAOLQMbD8w9X1P4VJ+SPSIljDpvwwei4KlBr07tzNwDd5oz
Gp/j4J+lQprnzDVRzzqrgLPMY6HwC8Wh2EwcDh/aoRPIQCEZvRLFDyJbjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMdQ7ZmhExS0FyW3kldyyuOREOg0MB8GA1UdIwQY
MBaAFKTOlkCj7y/qGTdK2PmfQj16p8drMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcE02V1FLUHZMLW9aTjByWS1aOUNQWHFueDJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9mOGE1ZDEtMjYwYS00NmE0LWE4ZTQt
MjgzZmU1NGE2ZjJmLzEveDFEdG1hRVRGTFFYSmJlU1YzTEs0NUVRNkRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9mOGE1ZDEtMjYwYS00NmE0LWE4ZTQtMjgzZmU1NGE2ZjJm
LzEvcE02V1FLUHZMLW9aTjByWS1aOUNQWHFueDJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURODMA0G
CSqGSIb3DQEBCwUAA4IBAQAys8trWPbpmhnTEmuM6chY1teMI+pDBhTW+f+AxS+t
Ja5cEzMW65BKSskrFgkMh5PlowT4izBg60LdxmC/3IbVLrNSjdccn74dYEhBuXtg
SS4NFlW2PyzrZD52MnQRtJdpktX7PtQEVOIR80BNgE08hrtAPEfNcrVCvT0QGye/
FgLzSGX+q1d1f0nbdOv/m7wDVfg/kTWajYXAcDSw+QR09uXziPIHvycW2JsXJZzw
gzVElVhhG19HTmknuFFQUDvO2ZlB3XfBXhJx7Gw77QAfU7qjMd8jFtGH2HAm3zlI
yfqeUL+eMEWVqVaJXsmUwbc3hpxBDmrZf7MDwZdKEqKT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org