Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/0EszxyKh--VfD2jPykD6Xsn_2MM.roa
File: 0EszxyKh--VfD2jPykD6Xsn_2MM.roa (raw, json)
Hash identifier: L2AOJmpPxko9ZlSQNK94XqFems25+ylLK7jJAb3977Y=
Subject key identifier: D0:4B:33:C7:22:A1:FB:E5:5F:0F:68:CF:CA:40:FA:5E:C9:FF:D8:C3
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018815E44AF3EFA9D698751CCDB64418D539
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/0EszxyKh--VfD2jPykD6Xsn_2MM.roa
Signing time: Sat 13 May 2023 16:14:22 +0000
ROA not before: Sat 13 May 2023 16:14:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46573
IP address blocks: 81.29.159.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:15:e4:4a:f3:ef:a9:d6:98:75:1c:cd:b6:44:18:d5:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: May 13 16:14:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d04b33c722a1fbe55f0f68cfca40fa5ec9ffd8c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3d:5c:86:3a:91:e0:53:1a:67:04:c0:95:04:
4a:77:49:1e:e6:c2:4d:ff:6e:fc:94:b8:c7:de:a7:
17:5f:e0:cb:02:95:0e:5e:17:7c:11:a7:27:0a:bd:
3d:5f:ef:d2:f0:26:ee:49:03:d7:8b:ee:cd:62:40:
96:a0:32:79:c8:c9:77:8a:e7:57:b1:fa:d4:c0:9c:
5c:91:81:54:3d:c7:89:8c:09:30:d5:37:d4:13:33:
b5:94:dd:46:c9:14:15:89:4e:e2:62:99:cb:c4:f1:
f8:fe:79:37:a1:d9:ce:06:b9:0b:f0:a3:66:6c:e9:
d7:19:d9:aa:55:76:32:98:b5:80:fa:5d:35:8a:76:
5a:af:42:9d:78:ee:31:03:3f:ec:c2:35:5e:cc:55:
99:99:fe:f8:32:72:8c:ca:f6:37:d7:0f:48:ff:50:
b7:95:8b:bb:f0:7d:16:f4:59:da:71:10:ff:79:dd:
f4:ae:7e:3c:be:29:00:5e:98:d8:68:94:cf:44:3b:
9f:3e:85:c6:34:dc:5e:f2:ef:b1:8a:28:1c:81:ed:
d9:88:de:ed:0c:23:e0:c0:20:9e:8b:3e:a0:c1:7a:
26:50:02:15:bd:b4:9d:4c:d5:71:6a:67:c2:4d:2a:
df:28:4e:ec:0b:46:e2:a7:0b:e6:d6:e1:d5:02:bd:
66:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4B:33:C7:22:A1:FB:E5:5F:0F:68:CF:CA:40:FA:5E:C9:FF:D8:C3
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/0EszxyKh--VfD2jPykD6Xsn_2MM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.159.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:e4:ea:d8:b7:72:49:39:c4:b2:db:9f:f7:ae:46:80:4a:43:
e0:4b:aa:bd:db:fa:e3:d4:f4:1d:e8:72:0c:b1:a5:8f:65:4e:
dc:9f:48:f5:0c:c0:04:06:fa:9c:c6:15:6e:d3:af:11:a3:2a:
2b:37:7f:f4:e3:bf:0f:e1:47:3f:3d:42:89:c5:bf:8e:32:d2:
64:f6:56:65:d4:80:d4:8c:4f:06:2f:86:e6:e0:94:66:dd:98:
cc:59:4d:b0:84:80:4c:43:2b:f5:bc:4e:ae:af:bb:8d:9b:7e:
71:6d:43:31:ec:79:a8:3d:0a:64:36:fb:9b:50:67:16:08:d1:
48:5e:18:b8:75:e0:e9:f1:f1:c8:9d:9e:74:0c:21:0a:0a:57:
b2:80:fb:bb:ba:4a:79:ab:5e:2b:fb:6d:2c:cf:62:80:8e:cb:
1b:4e:b9:e5:48:78:90:76:4d:4a:c3:c4:73:a6:f0:fd:97:ef:
d7:e5:77:fb:84:0d:96:0e:b9:75:54:76:d9:5c:ed:77:3e:f7:
ef:b7:09:5d:ff:18:da:ee:e1:82:7e:fa:6a:59:dd:4a:41:e6:
b9:81:6a:9f:cf:d7:a6:1c:25:e3:5a:e0:39:0b:4b:c1:4c:80:
bc:94:70:e6:c5:16:55:25:59:7c:66:f6:ba:8f:a5:bc:5e:6a:
6b:bf:6b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 06:05:55 2023 by rpki-client on console-ams.rpki-client.org