Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/lfQYpHD1nESvRcIObmfvIW-8BT8.roa
File: lfQYpHD1nESvRcIObmfvIW-8BT8.roa (raw, json)
Hash identifier: jRdAilMSP0L1JIiHyKxuqD+NHf/5aYUHE8G7MqliVxE=
Subject key identifier: 95:F4:18:A4:70:F5:9C:44:AF:45:C2:0E:6E:67:EF:21:6F:BC:05:3F
Certificate issuer: /CN=50182bee9aa010c1ffd2d804f6aa7b14bddb91f7
Certificate serial: 018BAB96F0D13BC7F112BB212DEE8898A546
Authority key identifier: 50:18:2B:EE:9A:A0:10:C1:FF:D2:D8:04:F6:AA:7B:14:BD:DB:91:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UBgr7pqgEMH_0tgE9qp7FL3bkfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/lfQYpHD1nESvRcIObmfvIW-8BT8.roa
Signing time: Tue 07 Nov 2023 21:01:17 +0000
ROA not before: Tue 07 Nov 2023 21:01:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64444
IP address blocks: 81.199.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ab:96:f0:d1:3b:c7:f1:12:bb:21:2d:ee:88:98:a5:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50182bee9aa010c1ffd2d804f6aa7b14bddb91f7
Validity
Not Before: Nov 7 21:01:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95f418a470f59c44af45c20e6e67ef216fbc053f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:41:63:61:76:e8:46:10:b7:e4:65:ae:53:c4:
86:42:ae:f8:71:ef:0a:46:03:1d:af:43:b6:46:32:
28:d8:4d:c4:ad:52:62:3a:04:81:5a:f4:4a:3e:2a:
65:a8:3e:ee:3b:16:6d:7b:9f:03:46:a8:07:15:1a:
33:4c:bb:eb:ca:61:a7:5b:7a:ff:19:b2:35:82:1b:
50:ac:3d:96:08:0b:02:bc:3f:47:57:b3:03:64:69:
f5:b1:f6:dd:e5:21:10:51:98:2d:19:a9:c7:bf:29:
5b:9d:4e:a7:05:4c:ec:bd:16:45:8c:aa:78:c3:70:
c7:bf:8a:e3:a0:bc:a0:3b:e9:bc:2d:aa:53:e8:a0:
20:57:7e:5e:6d:2b:e4:c6:2a:ed:57:11:e5:94:c9:
f2:51:60:02:d3:c1:50:9d:ea:18:04:de:23:94:7a:
cf:5e:c6:d7:28:40:db:30:5c:92:71:cc:95:19:bd:
4b:cf:b7:d9:bd:38:7b:98:3c:38:cc:0e:74:db:16:
42:c6:94:61:65:55:c0:d5:88:3a:11:e3:20:0d:31:
6e:a3:37:cf:dd:ba:5e:e9:c3:69:2b:c6:ff:5e:e3:
23:14:2f:ca:68:53:53:89:73:15:9e:7c:51:85:00:
62:ea:76:36:6e:a2:08:30:fa:41:e6:61:2b:fd:b1:
2c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:F4:18:A4:70:F5:9C:44:AF:45:C2:0E:6E:67:EF:21:6F:BC:05:3F
X509v3 Authority Key Identifier:
keyid:50:18:2B:EE:9A:A0:10:C1:FF:D2:D8:04:F6:AA:7B:14:BD:DB:91:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UBgr7pqgEMH_0tgE9qp7FL3bkfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/lfQYpHD1nESvRcIObmfvIW-8BT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/bd4566-ac27-46f8-94f9-19d1bb61d9a7/1/UBgr7pqgEMH_0tgE9qp7FL3bkfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.199.89.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:ee:58:3c:c2:e5:16:da:45:af:ea:08:4a:85:fa:3f:be:0b:
00:5a:de:de:de:31:a2:cf:88:42:fb:ed:d7:65:97:ad:74:56:
38:a4:2f:b7:6c:cd:83:10:c3:da:42:b8:41:90:6a:5e:b2:77:
7b:62:5b:01:d8:c3:95:3f:4d:c3:bd:43:56:2a:fc:70:04:20:
e7:1c:7b:e1:24:18:ba:41:53:b8:9f:4c:9d:ae:b1:58:10:a7:
97:e1:83:4c:81:c9:24:36:2e:ed:9e:4c:b3:86:ff:6f:45:69:
55:51:bf:61:33:65:f5:34:b6:bd:e8:b4:bd:d2:66:f1:66:88:
9b:af:34:b6:f0:02:24:ae:86:ee:39:ef:bb:d6:62:da:37:c8:
e7:5d:d8:80:18:82:46:20:95:78:3c:da:9f:7d:c6:89:ad:5f:
a8:82:5e:0d:73:79:96:b3:27:8f:bc:32:d1:6d:36:7f:5c:2a:
3f:8c:86:03:c9:8f:40:0f:ae:35:32:20:49:d4:f6:02:08:be:
fe:5f:12:38:ee:ca:7f:fd:a3:ab:ff:9b:3c:43:00:ca:cf:9c:
14:78:4e:20:e7:e1:54:23:df:40:d6:8f:d0:02:21:02:a2:5c:
24:47:35:cc:51:42:0b:2b:88:f8:ff:df:29:3c:95:68:4c:ae:
0d:fa:9f:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:50 2024 by rpki-client on console-ams.rpki-client.org