Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/E8VcW8HYNNDzdrYCAiUjBJ6PFU4.roa
File: E8VcW8HYNNDzdrYCAiUjBJ6PFU4.roa (raw, json)
Hash identifier: PMCmfTMyojVSlz8jGP7dZq6/5wxMC/RFhpsKNDTCqBw=
Subject key identifier: 13:C5:5C:5B:C1:D8:34:D0:F3:76:B6:02:02:25:23:04:9E:8F:15:4E
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0185BE8E66AF7232006A520C18A760A6F119
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/E8VcW8HYNNDzdrYCAiUjBJ6PFU4.roa
Signing time: Tue 17 Jan 2023 07:08:01 +0000
ROA not before: Tue 17 Jan 2023 07:08:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29066
IP address blocks: 81.29.152.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:8e:66:af:72:32:00:6a:52:0c:18:a7:60:a6:f1:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 17 07:08:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13c55c5bc1d834d0f376b602022523049e8f154e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:41:85:50:30:ae:87:2d:9f:da:81:03:58:c4:
8a:e9:08:ea:26:06:1a:83:28:15:1b:19:6a:75:95:
4a:0b:72:b2:83:63:9d:cd:11:7d:11:8f:c6:17:73:
c3:4d:82:e4:21:01:6d:80:a9:7c:98:71:e9:ee:85:
67:47:5e:b6:ae:77:a2:64:8f:ac:48:f9:d9:54:86:
e7:28:b1:8f:cc:61:bb:3a:65:4c:b3:b0:2f:67:d4:
97:d8:08:02:7a:d5:59:8d:c7:f0:15:af:17:48:8d:
47:a2:0c:32:75:de:31:2e:0a:91:93:21:b3:dd:b3:
58:fa:85:29:a5:ad:62:64:ce:12:6d:f9:75:ba:a1:
de:e9:73:9a:dd:54:b9:a9:19:18:46:fe:2b:32:49:
b5:b2:8b:fc:3a:c4:d0:61:2b:5e:b2:d6:86:66:a6:
45:da:69:24:20:81:a1:8a:ce:59:9f:18:67:46:f1:
8a:e4:09:41:32:d2:ab:b2:93:4e:f8:1c:0b:53:6f:
20:b0:9a:9f:ac:56:8f:ec:0d:f9:8f:f2:77:75:6e:
4c:40:f2:6d:9a:da:f3:79:3a:bb:26:fa:7e:7c:bf:
fd:68:52:a7:84:a7:f2:e2:b0:6c:bb:48:f0:0e:24:
7e:f8:ae:b9:ae:65:03:41:5d:69:49:b0:7e:cc:cf:
d1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C5:5C:5B:C1:D8:34:D0:F3:76:B6:02:02:25:23:04:9E:8F:15:4E
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/E8VcW8HYNNDzdrYCAiUjBJ6PFU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.152.0/24
Signature Algorithm: sha256WithRSAEncryption
07:59:e0:d8:65:98:92:7f:3d:f7:0e:df:34:10:a3:94:63:25:
05:15:e1:32:70:bb:cb:a7:57:fc:1f:a2:43:1e:8f:ff:c4:5c:
57:3c:a5:eb:b5:51:6b:b0:b0:af:27:67:df:ad:17:db:48:2d:
8c:b2:31:20:80:c2:a6:84:57:d3:bc:00:37:33:f1:10:ba:a8:
b0:ca:62:e3:60:8f:50:04:15:2e:ba:ab:37:cb:74:75:bc:a9:
ce:db:85:6f:c8:7e:2a:23:83:14:79:98:14:ba:fc:eb:8e:76:
3d:8b:36:eb:30:91:5f:0a:26:e8:3a:70:b1:d5:07:2b:81:74:
a7:6c:42:e0:72:bb:10:6f:7a:75:97:04:fa:f0:78:72:2c:c5:
42:36:c3:f1:ba:5e:9f:36:06:c5:06:43:0c:13:bf:bb:79:12:
c0:b3:24:0c:d1:4c:74:01:f4:68:e3:65:ca:e1:17:41:bf:b2:
53:0e:62:2e:ed:32:4e:3d:3b:e5:4e:68:b4:79:cd:8e:ed:5a:
f2:c8:61:f2:6f:ec:98:91:b3:08:94:96:1a:d1:c4:b3:4c:0c:
5a:7c:df:a1:25:50:86:9a:8e:8c:d6:50:a2:d4:86:86:dc:28:
c4:94:83:a3:98:4c:84:18:b6:f4:9a:49:7d:f6:c9:4f:40:3f:
1d:fd:a4:e8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYW+jmavcjIAalIMGKdgpvEZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjMwMTE3MDcwODAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2M1NWM1YmMxZDgzNGQwZjM3NmI2MDIwMjI1MjMwNDllOGYxNTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlUGFUDCuhy2f2oEDWMSK6QjqJgYa
gygVGxlqdZVKC3Kyg2OdzRF9EY/GF3PDTYLkIQFtgKl8mHHp7oVnR162rneiZI+s
SPnZVIbnKLGPzGG7OmVMs7AvZ9SX2AgCetVZjcfwFa8XSI1Hogwydd4xLgqRkyGz
3bNY+oUppa1iZM4Sbfl1uqHe6XOa3VS5qRkYRv4rMkm1sov8OsTQYStestaGZqZF
2mkkIIGhis5ZnxhnRvGK5AlBMtKrspNO+BwLU28gsJqfrFaP7A35j/J3dW5MQPJt
mtrzeTq7Jvp+fL/9aFKnhKfy4rBsu0jwDiR++K65rmUDQV1pSbB+zM/RrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBPFXFvB2DTQ83a2AgIlIwSejxVOMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvRThWY1c4SFlOTkR6ZHJZQ0FpVWpCSjZQRlU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR2YMA0G
CSqGSIb3DQEBCwUAA4IBAQAHWeDYZZiSfz33Dt80EKOUYyUFFeEycLvLp1f8H6JD
Ho//xFxXPKXrtVFrsLCvJ2ffrRfbSC2MsjEggMKmhFfTvAA3M/EQuqiwymLjYI9Q
BBUuuqs3y3R1vKnO24VvyH4qI4MUeZgUuvzrjnY9izbrMJFfCiboOnCx1QcrgXSn
bELgcrsQb3p1lwT68HhyLMVCNsPxul6fNgbFBkMME7+7eRLAsyQM0Ux0AfRo42XK
4RdBv7JTDmIu7TJOPTvlTmi0ec2O7VryyGHyb+yYkbMIlJYa0cSzTAxafN+hJVCG
mo6M1lCi1IaG3CjElIOjmEyEGLb0mkl99slPQD8d/aTo
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:33 2023 by rpki-client on console-ams.rpki-client.org