Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/1--OTOGdNwHjglXPEc52oi9TMQv8.roa
File: 1--OTOGdNwHjglXPEc52oi9TMQv8.roa (raw, json)
Hash identifier: SmJR1pTFGzYR0olqyXKvujcGa7wOb9kjw0xIgnf+iEg=
Subject key identifier: FB:E3:93:38:67:4D:C0:78:E0:95:73:C4:73:9D:A8:8B:D4:CC:42:FF
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01872DAC74518B89122BBD065073DBED2390
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/1--OTOGdNwHjglXPEc52oi9TMQv8.roa
Signing time: Wed 29 Mar 2023 14:01:29 +0000
ROA not before: Wed 29 Mar 2023 14:01:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 81.29.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Mar 2023 12:36:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2d:ac:74:51:8b:89:12:2b:bd:06:50:73:db:ed:23:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Mar 29 14:01:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbe39338674dc078e09573c4739da88bd4cc42ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8f:02:6a:a2:9b:af:de:a4:61:7d:4d:a5:b5:
f6:1c:fb:d9:c0:f7:a0:bf:18:f7:f1:45:89:7e:cb:
8c:84:7b:7b:ea:fb:5d:69:7d:cc:dc:e1:7b:7e:3e:
76:9b:c4:d7:27:ca:df:3a:ad:0e:25:ca:8b:58:12:
71:76:d7:85:e4:09:c2:59:f9:2d:44:05:c5:41:cd:
55:f2:1d:1d:55:df:44:e9:d8:d6:8c:aa:04:91:dc:
ed:0c:92:ae:8a:4f:24:e0:28:c4:5c:bb:b7:06:40:
5c:d7:50:ae:00:88:cc:a4:b9:d3:bb:95:90:88:29:
7b:13:95:1d:55:7c:14:2d:5c:18:34:1e:2d:7a:22:
ee:f7:e9:63:c4:1e:f9:a5:8e:e0:f6:99:c2:80:dc:
9a:cc:7b:fd:e9:1a:74:ec:9e:d2:54:db:e6:bf:99:
d3:df:9d:c0:b4:da:6b:a8:de:b7:90:e6:17:b0:a9:
c7:9f:4b:8a:81:a0:1d:03:5d:17:87:bc:77:c9:97:
81:81:87:cf:10:4d:3a:97:94:85:0a:48:75:36:95:
98:cf:cf:3c:d7:f8:0a:98:84:15:1b:16:57:9f:46:
6f:df:35:4e:ac:1f:74:e6:46:5f:31:70:1e:5b:5e:
4a:18:ec:49:45:33:40:d8:b1:66:bd:e0:69:3b:81:
76:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E3:93:38:67:4D:C0:78:E0:95:73:C4:73:9D:A8:8B:D4:CC:42:FF
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/1--OTOGdNwHjglXPEc52oi9TMQv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.157.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:31:9a:c9:c5:62:13:50:c2:89:c7:77:98:2a:e4:0f:58:08:
dd:15:8e:5c:0e:94:c6:9b:e6:13:c0:5b:70:4a:b7:e3:8c:5c:
63:22:97:5a:c3:ed:58:d8:fe:d5:6b:cc:61:37:e5:34:d5:e1:
e8:27:8e:6a:b3:16:17:1f:b0:ba:56:a6:e2:a3:11:63:3b:b2:
06:d2:fc:47:60:b0:09:76:a7:ca:94:23:7b:73:c4:54:6d:4c:
46:02:8a:e6:94:47:97:73:e6:f1:3e:2b:ef:34:7d:71:17:6c:
1e:ee:db:8e:ec:b6:22:b0:6e:89:15:25:c0:98:37:06:bf:a8:
0f:55:b6:fd:6b:b2:3d:9b:89:af:d0:8b:4f:33:8a:fa:44:1d:
f4:5c:69:58:8c:80:94:f5:0c:a1:ba:e9:7e:9d:d2:43:52:7e:
26:29:7c:e6:dc:da:ab:c8:ca:fb:88:e1:1a:e0:90:73:52:1a:
a7:17:34:26:4c:0e:c4:68:92:8f:02:f7:75:a0:6c:3d:1d:bc:
b2:5b:f1:e8:21:58:52:65:2c:2d:f0:9a:5c:26:a7:d1:e1:85:
33:b2:5b:6b:81:8d:b8:54:0e:48:ae:0b:0b:87:d3:cd:66:18:
57:47:95:4c:fd:40:ae:64:66:2d:e8:e5:52:2a:da:3a:35:b0:
ba:d6:bb:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:35 2024 by rpki-client on console-ams.rpki-client.org