Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/6VM8q2F4Uu17XZnkJOFERSExGPY.roa
File: 6VM8q2F4Uu17XZnkJOFERSExGPY.roa (raw, json)
Hash identifier: DDLzDtMwfjj9kIfvIbrckFz27al4NUOQjGaiyhQ1dI4=
Subject key identifier: E9:53:3C:AB:61:78:52:ED:7B:5D:99:E4:24:E1:44:45:21:31:18:F6
Certificate issuer: /CN=d423a5be5e21ca460732ae48f385a3ea150a2be1
Certificate serial: 018C71CB1EAEFC361F4AF595115C94F7105B
Authority key identifier: D4:23:A5:BE:5E:21:CA:46:07:32:AE:48:F3:85:A3:EA:15:0A:2B:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/6VM8q2F4Uu17XZnkJOFERSExGPY.roa
Signing time: Sat 16 Dec 2023 08:43:06 +0000
ROA not before: Sat 16 Dec 2023 08:43:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16589
IP address blocks: 81.31.128.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:71:cb:1e:ae:fc:36:1f:4a:f5:95:11:5c:94:f7:10:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d423a5be5e21ca460732ae48f385a3ea150a2be1
Validity
Not Before: Dec 16 08:43:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9533cab617852ed7b5d99e424e14445213118f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6a:8a:39:1b:05:a9:fd:89:90:1e:86:c2:34:
85:7b:18:00:94:a3:4f:42:2d:53:03:18:01:8a:d8:
4e:fa:3e:c0:91:3b:9a:b3:7e:77:6c:cc:e5:f5:ad:
1c:2b:6f:36:14:cb:8f:88:cf:88:13:6c:c5:62:fc:
2b:cf:eb:16:27:04:c5:c5:f0:11:c9:84:c1:f4:f4:
ec:1e:d2:de:3c:bf:8c:7d:d4:86:c9:f5:3e:a8:87:
17:89:5b:d7:b3:99:f7:cb:c4:84:b6:d8:b5:4f:db:
75:05:f3:ad:e0:64:ca:7f:8b:70:44:d8:42:2e:c5:
9c:4d:a9:ec:24:02:88:c3:b4:96:30:7c:c2:af:fd:
a1:71:d2:4b:48:8b:70:0e:c2:ab:91:32:ce:60:dc:
0e:bf:8a:69:da:9f:3b:1b:03:35:59:d8:11:31:af:
31:62:e9:2e:5d:7b:e5:77:56:23:80:0c:4a:bb:0b:
6c:cb:86:12:79:9b:b4:a4:c1:f0:8c:68:b4:51:85:
f0:df:2d:16:9d:e0:e4:99:94:65:66:d8:f7:68:b4:
a2:42:3b:37:c5:d9:1f:c4:09:37:d9:ff:b1:10:4c:
ab:b0:51:29:e9:f6:22:6f:37:7f:11:79:8d:58:a8:
21:da:29:4b:23:fd:b7:84:b8:16:be:96:d8:99:f5:
43:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:53:3C:AB:61:78:52:ED:7B:5D:99:E4:24:E1:44:45:21:31:18:F6
X509v3 Authority Key Identifier:
keyid:D4:23:A5:BE:5E:21:CA:46:07:32:AE:48:F3:85:A3:EA:15:0A:2B:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/6VM8q2F4Uu17XZnkJOFERSExGPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/1COlvl4hykYHMq5I84Wj6hUKK-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
89:4f:5b:6a:76:20:42:ad:0e:9d:e4:ec:30:e2:89:9f:61:6f:
88:f4:ad:c0:e9:86:c8:8c:a3:88:ef:1c:65:a3:d1:8e:d1:0e:
53:f2:0d:f4:a9:28:a0:4c:41:87:a4:3f:32:67:69:14:6c:3d:
70:ff:18:b8:7c:c8:0f:17:d3:9d:af:d0:58:8b:cf:c9:68:b6:
27:1b:5c:16:8a:70:c6:a6:2a:73:05:ab:69:c7:13:d5:09:69:
ec:ce:be:8c:b4:03:e8:cd:c8:a4:55:ad:51:9e:da:73:13:80:
4d:77:9c:5a:c2:9a:7f:ac:4b:22:22:89:60:5d:91:57:14:d3:
23:5b:ee:0a:a0:2a:7a:f2:d4:47:a8:9c:92:76:1c:30:4c:92:
ba:bd:34:6c:2f:d2:03:b7:3b:d4:fd:c4:ed:22:27:25:39:1a:
4d:63:35:f0:7f:f1:fa:b9:0b:1c:86:c9:5a:c6:42:19:0c:2d:
12:56:c1:01:f3:ea:42:88:01:61:a4:54:cb:28:50:78:e7:b9:
69:b4:ce:52:27:3e:8f:4c:99:bf:cf:fc:f7:eb:c0:bf:b5:70:
47:df:b9:3a:fc:b2:18:fe:74:df:0d:c8:f1:ca:08:b2:8c:00:
65:0f:d4:6c:ed:c4:8f:6f:31:a3:4a:1f:d7:ba:3d:91:be:13:
ad:3e:e2:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:22 2024 by rpki-client on console-fra.rpki-client.org