Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/4iCtrkOBCHYZ7iPqI4SqKnfwY50.roa
File: 4iCtrkOBCHYZ7iPqI4SqKnfwY50.roa (raw, json)
Hash identifier: TJ7zDlUlPg8HBvu+d6t3EXEdAmz4FdoyHKtyWp9JWJ4=
Subject key identifier: E2:20:AD:AE:43:81:08:76:19:EE:23:EA:23:84:AA:2A:77:F0:63:9D
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018B900F2ED49D0456E0C8E65579FC9F7658
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/4iCtrkOBCHYZ7iPqI4SqKnfwY50.roa
Signing time: Thu 02 Nov 2023 12:43:16 +0000
ROA not before: Thu 02 Nov 2023 12:43:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60117
IP address blocks: 81.29.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:90:0f:2e:d4:9d:04:56:e0:c8:e6:55:79:fc:9f:76:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Nov 2 12:43:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e220adae4381087619ee23ea2384aa2a77f0639d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:91:ea:4d:c4:84:6e:2a:38:ff:71:0b:7f:c6:
95:59:b1:81:39:25:d5:bd:c4:bf:56:ca:ba:78:2f:
63:af:c6:97:a1:be:4e:87:9c:90:17:db:2d:2a:4f:
97:e8:70:92:2e:68:d8:d4:93:2a:3e:c2:63:f7:95:
fc:22:22:b3:52:2b:40:dd:04:1a:e9:48:9d:7b:ee:
76:67:e6:03:2f:59:43:0a:9d:83:18:90:22:81:1e:
f7:26:fa:e1:25:54:6d:b1:e4:55:bb:d2:29:4c:34:
a8:d8:72:23:17:0c:1d:38:f0:cd:d7:6c:0e:bc:cd:
bd:fd:52:75:ef:c5:04:44:b1:de:b5:b6:21:47:e9:
d6:14:45:ca:a0:2a:c0:ab:4c:d5:a0:c1:0c:80:5a:
0a:19:29:91:51:e2:a4:8d:bb:f5:b7:4d:c0:c2:1f:
13:8e:26:91:b4:fe:f3:88:65:97:f6:53:a9:9c:21:
dc:9e:77:bd:df:80:f8:44:df:8c:1b:40:82:34:54:
4f:05:50:84:71:d7:d8:c1:f8:31:95:37:16:10:4e:
6d:fd:f0:62:64:2d:e3:2f:8d:1f:06:af:14:f0:8a:
75:b9:89:1f:0e:2d:cf:25:aa:ac:49:f8:1e:2b:ae:
62:d9:75:39:5f:16:bc:08:14:39:b3:05:e3:bd:9a:
eb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:20:AD:AE:43:81:08:76:19:EE:23:EA:23:84:AA:2A:77:F0:63:9D
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/4iCtrkOBCHYZ7iPqI4SqKnfwY50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.148.0/24
Signature Algorithm: sha256WithRSAEncryption
15:5c:5f:32:f4:2d:4e:18:3a:2d:61:fc:ad:80:5e:f6:2e:94:
92:76:e1:4b:0f:bc:d2:d8:2f:5b:2f:7b:39:4c:4d:c9:4e:33:
41:6f:d1:27:0b:4c:3b:a5:6a:70:fc:7d:49:d1:5a:90:d5:2f:
22:82:8a:85:3d:02:96:a5:a9:5f:32:95:f7:0a:84:09:98:31:
b6:59:29:02:2b:31:79:30:31:35:e0:75:54:e5:35:06:15:9b:
cd:71:20:61:60:b0:91:ce:ee:6a:56:f3:74:3c:9c:60:04:87:
3d:5f:60:64:0c:f8:b3:c5:27:3d:12:a6:94:6e:16:4d:a8:88:
1c:dd:d1:3a:89:87:6f:f2:14:12:22:16:db:fa:2b:b0:b9:c4:
26:e5:81:77:f9:33:1c:78:9f:a9:a9:83:79:dc:8b:22:93:c2:
dd:ab:83:16:87:46:d3:3c:4d:8e:ee:02:86:1c:21:b2:da:fa:
f8:55:e4:ae:fb:17:e1:c8:90:19:4d:b5:42:f8:ff:99:46:69:
e6:9f:dc:55:b8:eb:ed:f6:44:ed:05:56:d3:2f:1e:b1:9d:b5:
9f:c6:81:cc:ef:8c:54:e9:06:47:03:8e:94:63:7d:aa:67:70:
8a:94:fb:4b:58:e0:0b:ac:49:22:7d:c0:5b:bb:5d:de:f4:28:
18:fe:ae:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuQDy7UnQRW4MjmVXn8n3ZYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjMxMTAyMTI0MzE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjIwYWRhZTQzODEwODc2MTllZTIzZWEyMzg0YWEyYTc3ZjA2MzlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5HqTcSEbio4/3ELf8aVWbGBOSXV
vcS/Vsq6eC9jr8aXob5Oh5yQF9stKk+X6HCSLmjY1JMqPsJj95X8IiKzUitA3QQa
6Uide+52Z+YDL1lDCp2DGJAigR73JvrhJVRtseRVu9IpTDSo2HIjFwwdOPDN12wO
vM29/VJ178UERLHetbYhR+nWFEXKoCrAq0zVoMEMgFoKGSmRUeKkjbv1t03Awh8T
jiaRtP7ziGWX9lOpnCHcnne934D4RN+MG0CCNFRPBVCEcdfYwfgxlTcWEE5t/fBi
ZC3jL40fBq8U8Ip1uYkfDi3PJaqsSfgeK65i2XU5Xxa8CBQ5swXjvZrrKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOIgra5DgQh2Ge4j6iOEqip38GOdMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvNGlDdHJrT0JDSFlaN2lQcUk0U3FLbmZ3WTUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR2UMA0G
CSqGSIb3DQEBCwUAA4IBAQAVXF8y9C1OGDotYfytgF72LpSSduFLD7zS2C9bL3s5
TE3JTjNBb9EnC0w7pWpw/H1J0VqQ1S8igoqFPQKWpalfMpX3CoQJmDG2WSkCKzF5
MDE14HVU5TUGFZvNcSBhYLCRzu5qVvN0PJxgBIc9X2BkDPizxSc9EqaUbhZNqIgc
3dE6iYdv8hQSIhbb+iuwucQm5YF3+TMceJ+pqYN53Isik8Ldq4MWh0bTPE2O7gKG
HCGy2vr4VeSu+xfhyJAZTbVC+P+ZRmnmn9xVuOvt9kTtBVbTLx6xnbWfxoHM74xU
6QZHA46UY32qZ3CKlPtLWOALrEkifcBbu13e9CgY/q7P
-----END CERTIFICATE-----
Generated at Sun Dec 3 21:36:14 2023 by rpki-client on console-ams.rpki-client.org