Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/Z0EMgF_xoOoz34z3FvA01_sXY60.roa
File: Z0EMgF_xoOoz34z3FvA01_sXY60.roa (raw, json)
Hash identifier: DSgMeAxiGKITtkTNLOnuxLFPnkc2VghAPhrrZEtkSBg=
Subject key identifier: 67:41:0C:80:5F:F1:A0:EA:33:DF:8C:F7:16:F0:34:D7:FB:17:63:AD
Certificate issuer: /CN=68383ffa9f20bf021c090262994212d71667ed02
Certificate serial: 01856CCAFA8F5788F3799A80C59139E4B147
Authority key identifier: 68:38:3F:FA:9F:20:BF:02:1C:09:02:62:99:42:12:D7:16:67:ED:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDg_-p8gvwIcCQJimUIS1xZn7QI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/Z0EMgF_xoOoz34z3FvA01_sXY60.roa
Signing time: Sun 01 Jan 2023 10:05:19 +0000
ROA not before: Sun 01 Jan 2023 10:05:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 81.90.143.0/24 maxlen: 24
2a00:e27:143::/48 maxlen: 48
2a00:e20:150::/44 maxlen: 48
2a00:e20:143::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:fa:8f:57:88:f3:79:9a:80:c5:91:39:e4:b1:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68383ffa9f20bf021c090262994212d71667ed02
Validity
Not Before: Jan 1 10:05:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67410c805ff1a0ea33df8cf716f034d7fb1763ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e1:a6:c6:30:12:f7:37:b0:0d:d4:8c:e3:b0:
97:0d:e7:4a:e6:44:18:2d:3f:92:64:e2:39:39:8e:
59:3d:78:b3:0f:f1:5c:06:e5:13:14:39:03:bc:dd:
77:c3:c8:23:b1:db:ec:16:82:f3:76:b8:cd:27:0e:
46:ae:5b:20:37:74:87:5a:3b:dd:0d:38:87:59:93:
e8:30:53:6b:2b:92:85:59:d6:7f:ca:7f:84:f4:a2:
d6:b3:f8:62:e6:5d:de:3b:8d:68:bf:c9:93:d9:aa:
f0:e5:cb:3b:e7:80:99:d4:9c:df:7e:98:e0:88:0b:
52:f5:ff:92:84:7e:47:af:24:9d:83:da:8a:df:3f:
a2:1b:36:97:c4:7f:41:6d:46:8d:9b:4c:c9:1d:74:
2b:e6:40:89:5f:cf:ed:57:67:c9:f6:01:fe:8a:04:
5e:c7:6b:c0:e8:ac:16:1f:c2:9c:1c:38:fc:7d:e5:
9c:c7:53:5e:53:2e:78:1c:6b:af:69:01:68:0a:d5:
5f:5e:ca:17:99:02:96:6b:a9:f5:f6:77:47:93:27:
03:8e:36:5d:a6:7c:07:49:cc:89:dd:1a:06:d7:df:
e2:16:39:3c:7b:73:4a:68:75:02:68:90:9f:eb:92:
2a:c5:f2:3e:15:e4:79:95:f7:45:77:f6:db:3f:49:
8f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:41:0C:80:5F:F1:A0:EA:33:DF:8C:F7:16:F0:34:D7:FB:17:63:AD
X509v3 Authority Key Identifier:
keyid:68:38:3F:FA:9F:20:BF:02:1C:09:02:62:99:42:12:D7:16:67:ED:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDg_-p8gvwIcCQJimUIS1xZn7QI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/Z0EMgF_xoOoz34z3FvA01_sXY60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/b8e940-2201-406e-8aaf-4060e9eeeb9e/1/aDg_-p8gvwIcCQJimUIS1xZn7QI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.143.0/24
IPv6:
2a00:e20:143::/48
2a00:e20:150::/44
2a00:e27:143::/48
Signature Algorithm: sha256WithRSAEncryption
08:0f:4a:2d:4d:19:22:2e:a8:dc:7a:41:05:e1:64:4e:c4:25:
26:e1:66:d5:7d:47:bb:1d:ea:f5:ee:3a:c3:1a:cd:78:fc:82:
18:cc:a5:6e:2d:9e:22:fa:b9:57:04:94:a7:99:eb:4a:66:e2:
38:19:15:26:4c:f7:93:75:8c:3a:eb:8a:6c:8b:3e:6b:a6:eb:
dc:b4:d0:e8:d4:60:90:01:2f:90:0d:7c:4d:19:33:f8:a7:35:
19:11:d9:c3:d8:64:0f:b3:18:97:cf:04:75:47:4d:3e:6e:8c:
02:82:77:b6:c6:a9:5a:b3:f9:dc:1e:8c:41:0c:45:3a:d3:4c:
9b:43:74:3a:3c:04:13:09:5d:8b:86:ad:0e:29:b3:38:9a:8d:
7e:2a:12:a6:38:d6:60:90:94:00:7c:c8:81:9f:8d:01:2e:97:
38:ef:7b:2a:22:65:1e:4f:81:e6:cf:39:0d:ea:22:e2:b1:63:
62:31:05:1e:cf:a4:fd:7c:cc:16:a3:20:ed:5f:23:0d:56:07:
b3:a2:60:9a:89:96:d6:e3:91:dc:69:7e:d9:5d:e8:42:ea:7e:
e3:b3:47:5d:5b:52:68:82:79:4e:7e:89:62:e4:12:11:db:46:
a7:a4:94:7c:e4:2f:b3:39:60:fd:e5:e5:65:e8:a1:e1:19:49:
e4:90:5b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:04 2024 by rpki-client on console-fra.rpki-client.org