Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/OvAk1KCB8DlxeHwzPAHl1rNTIVc.roa
File: OvAk1KCB8DlxeHwzPAHl1rNTIVc.roa (raw, json)
Hash identifier: Jd5NZsqm0jFd5h8a/rar5TFXgQsinszgwfQvp9inSx4=
Subject key identifier: 3A:F0:24:D4:A0:81:F0:39:71:78:7C:33:3C:01:E5:D6:B3:53:21:57
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01899C93516CDD9C30B6F682ADC9B791C308
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/OvAk1KCB8DlxeHwzPAHl1rNTIVc.roa
Signing time: Fri 28 Jul 2023 12:57:27 +0000
ROA not before: Fri 28 Jul 2023 12:57:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200017
IP address blocks: 81.29.146.0/24 maxlen: 24
81.29.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9c:93:51:6c:dd:9c:30:b6:f6:82:ad:c9:b7:91:c3:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jul 28 12:57:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3af024d4a081f03971787c333c01e5d6b3532157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c4:26:95:b0:10:4c:2a:3a:37:7f:c3:3f:04:
f5:dc:db:95:1d:5d:34:fd:21:50:25:c1:39:a3:ab:
74:4a:92:8a:2d:e1:e6:52:f9:f1:76:8b:84:79:6c:
70:71:cf:cf:cb:e9:48:a3:91:ef:65:c4:66:04:6a:
34:d2:78:3e:a2:72:3f:dc:b8:1e:d8:96:af:04:21:
47:f1:95:9b:0c:7c:5f:af:35:c7:87:ae:fc:17:cb:
31:77:36:6d:bf:ca:2f:e9:72:ae:b8:c6:30:80:02:
bd:f1:ab:79:3f:a9:e6:58:da:43:9c:6e:34:78:a3:
be:40:cf:57:17:d2:e2:48:44:f2:2c:fb:5f:2b:75:
6b:f3:bb:d3:b8:a4:70:ae:c0:dc:3f:02:95:a8:1c:
99:fe:4a:78:cb:38:1e:9e:81:c1:8d:de:34:19:46:
c8:ef:cb:72:05:c9:1a:9a:4f:fa:23:a0:50:d8:4b:
59:ab:95:82:0e:e6:64:24:e7:2a:99:e7:df:d1:0d:
53:3a:f5:ad:a6:07:a5:f2:c8:98:e0:cc:e9:1f:20:
ae:44:ad:5a:fe:4d:ee:58:f7:ee:6e:c0:1b:09:23:
50:23:d2:3b:b2:bc:8d:bd:bd:82:29:7e:5a:5b:0d:
1d:b4:6a:d7:c7:3b:50:a8:d6:b9:0b:d7:14:c0:33:
9c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F0:24:D4:A0:81:F0:39:71:78:7C:33:3C:01:E5:D6:B3:53:21:57
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/OvAk1KCB8DlxeHwzPAHl1rNTIVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.146.0/24
81.29.156.0/24
Signature Algorithm: sha256WithRSAEncryption
28:13:c6:39:e9:25:a9:69:33:56:ab:28:68:91:9e:f7:26:0b:
05:13:4e:0f:58:ba:f0:e7:4e:c3:f2:29:b1:99:ba:bb:81:23:
44:ab:02:d6:da:c1:99:eb:a8:6b:d8:9c:d6:69:50:fe:bc:e0:
2a:31:81:5c:24:97:74:9f:1a:5a:53:d4:54:12:f7:97:50:ef:
24:60:02:ba:e1:85:e7:f7:9e:7a:8e:6e:6b:5d:2a:67:82:94:
6e:f5:df:ea:23:a3:3a:22:77:9a:32:41:00:ef:47:08:e1:10:
4d:19:77:90:20:91:92:07:ba:66:b0:2b:50:aa:e8:13:fc:1b:
60:e2:ab:f1:24:90:ef:6e:35:4e:12:22:ce:f9:ea:a4:86:5b:
1f:82:76:07:36:b6:d4:63:9d:91:67:dd:b3:b6:e0:fc:2f:14:
d6:99:dd:bc:20:06:58:43:eb:20:fb:b8:14:4a:20:61:09:c6:
34:c3:4d:6e:e1:d8:fd:7a:6d:87:b7:3c:dc:ff:65:cf:15:e7:
5e:45:73:c7:03:c7:f9:78:cb:50:20:9d:46:4d:05:2d:4f:2b:
09:ab:be:dc:da:28:c6:9d:33:e8:1c:69:cc:d2:0e:3d:6e:cf:
41:21:03:5a:20:68:ab:d3:8e:4f:d5:0e:9f:07:18:48:5b:29:
f0:09:96:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:35 2024 by rpki-client on console-ams.rpki-client.org