Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/14TqDbMH3YS3iqC-yhpeC5_ZnYk.roa
File: 14TqDbMH3YS3iqC-yhpeC5_ZnYk.roa (raw, json)
Hash identifier: XfAArock6Au1U6TE+IsEXetg11wREkDRjErVTPtFC5g=
Subject key identifier: D7:84:EA:0D:B3:07:DD:84:B7:8A:A0:BE:CA:1A:5E:0B:9F:D9:9D:89
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018A65912E137C4D3BC460BD56FE66BE642C
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/14TqDbMH3YS3iqC-yhpeC5_ZnYk.roa
Signing time: Tue 05 Sep 2023 13:38:47 +0000
ROA not before: Tue 05 Sep 2023 13:38:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211318
IP address blocks: 81.29.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:91:2e:13:7c:4d:3b:c4:60:bd:56:fe:66:be:64:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Sep 5 13:38:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d784ea0db307dd84b78aa0beca1a5e0b9fd99d89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:08:a5:4c:af:b0:8b:34:d6:39:02:dd:b4:b5:
7c:42:e0:b9:33:e0:1a:bf:bb:7a:20:50:68:40:6c:
50:7b:21:78:1c:0d:a7:56:06:2e:67:c1:e8:29:77:
7e:fc:38:16:f9:ef:16:f1:a2:20:f9:25:bd:7f:25:
7e:c1:6c:ce:93:c6:5d:db:07:5c:cd:93:6d:a2:2e:
32:16:de:e2:9e:1c:c6:7c:90:7d:20:7b:fd:01:df:
1e:dd:ec:83:7d:91:c2:1d:93:50:8b:dc:2f:07:33:
54:90:79:9d:04:5b:5d:17:f7:20:88:d8:fb:db:c5:
2b:83:3a:04:36:eb:74:fe:3e:6b:03:3c:24:f4:8a:
53:d7:9a:78:05:9f:8f:d7:9a:6b:23:ab:5f:b5:a1:
48:46:2e:0f:f9:29:34:32:2a:bd:49:10:1b:7f:88:
dd:69:42:4b:ad:56:b2:2e:82:44:52:9e:72:cd:97:
02:5b:97:b9:7e:78:56:67:18:0b:74:73:53:c2:c3:
55:01:f7:66:b0:c6:8e:f9:e2:e4:88:b0:42:b4:1e:
94:49:8c:5f:53:b0:20:7c:06:eb:00:a6:35:42:3b:
d1:2a:c2:63:81:f3:cf:1f:cc:1e:04:d7:63:a4:da:
a6:f5:c7:c2:23:20:6d:4c:dd:c9:53:67:91:a3:c8:
1b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:84:EA:0D:B3:07:DD:84:B7:8A:A0:BE:CA:1A:5E:0B:9F:D9:9D:89
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/14TqDbMH3YS3iqC-yhpeC5_ZnYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.148.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:4e:6a:af:df:14:09:c7:d1:53:9c:03:c4:ac:a9:e1:f5:88:
d2:eb:71:37:3a:e7:be:cb:d4:7b:de:d1:a6:90:6d:96:5d:58:
2a:be:39:76:93:ac:93:f0:4d:55:36:4b:ce:8d:5e:92:d2:de:
87:97:18:18:c8:f3:0f:6a:76:dc:d8:54:84:1c:65:90:08:fb:
2f:34:7b:83:6f:e9:d9:9f:f7:7f:2f:b4:25:e0:b8:99:ea:43:
35:68:cd:a8:f5:c4:f2:25:b0:99:fa:07:23:bc:f1:01:80:76:
94:b2:bd:f0:81:73:7d:75:84:18:a3:1f:62:6f:0e:c9:2a:1c:
6e:68:af:e4:b7:03:d2:10:d6:85:b4:23:08:15:b6:ef:c8:ae:
70:07:6c:d3:ac:02:86:16:d1:9f:98:b3:91:16:4e:ad:50:8e:
80:ab:73:04:41:43:7d:3e:8c:29:a5:d9:89:6f:a2:05:bd:90:
87:18:1e:38:4f:c0:87:13:a6:a9:a2:fa:13:1f:22:fd:85:27:
1b:6d:9c:e1:9a:82:81:04:a8:7c:2a:4c:1a:d3:40:0f:89:a7:
67:3d:7c:01:ea:3f:de:6a:10:f1:49:33:0e:56:a3:5e:0b:87:
ab:bc:a0:1a:d0:94:1d:7e:4f:0f:f4:37:31:db:1c:28:4c:08:
26:6c:a4:3f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYplkS4TfE07xGC9Vv5mvmQsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjMwOTA1MTMzODQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzg0ZWEwZGIzMDdkZDg0Yjc4YWEwYmVjYTFhNWUwYjlmZDk5ZDg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQilTK+wizTWOQLdtLV8QuC5M+Aa
v7t6IFBoQGxQeyF4HA2nVgYuZ8HoKXd+/DgW+e8W8aIg+SW9fyV+wWzOk8Zd2wdc
zZNtoi4yFt7inhzGfJB9IHv9Ad8e3eyDfZHCHZNQi9wvBzNUkHmdBFtdF/cgiNj7
28UrgzoENut0/j5rAzwk9IpT15p4BZ+P15prI6tftaFIRi4P+Sk0Miq9SRAbf4jd
aUJLrVayLoJEUp5yzZcCW5e5fnhWZxgLdHNTwsNVAfdmsMaO+eLkiLBCtB6USYxf
U7AgfAbrAKY1QjvRKsJjgfPPH8weBNdjpNqm9cfCIyBtTN3JU2eRo8gb7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNeE6g2zB92Et4qgvsoaXguf2Z2JMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvMTRUcURiTUgzWVMzaXFDLXlocGVDNV9abllrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR2UMA0G
CSqGSIb3DQEBCwUAA4IBAQB8Tmqv3xQJx9FTnAPErKnh9YjS63E3Oue+y9R73tGm
kG2WXVgqvjl2k6yT8E1VNkvOjV6S0t6HlxgYyPMPanbc2FSEHGWQCPsvNHuDb+nZ
n/d/L7Ql4LiZ6kM1aM2o9cTyJbCZ+gcjvPEBgHaUsr3wgXN9dYQYox9ibw7JKhxu
aK/ktwPSENaFtCMIFbbvyK5wB2zTrAKGFtGfmLORFk6tUI6Aq3MEQUN9PowppdmJ
b6IFvZCHGB44T8CHE6apovoTHyL9hScbbZzhmoKBBKh8Kkwa00APiadnPXwB6j/e
ahDxSTMOVqNeC4ervKAa0JQdfk8P9Dcx2xwoTAgmbKQ/
-----END CERTIFICATE-----
Generated at Tue Sep 5 15:39:40 2023 by rpki-client on console-fra.rpki-client.org