Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SuHbkwogVw-1VhWLdA3Q-zXV3C8.roa
File: SuHbkwogVw-1VhWLdA3Q-zXV3C8.roa (raw, json)
Hash identifier: VkrCNEomu57//zgPugwUoGBVuJCPxEHp6DtNFuY6rp8=
Subject key identifier: 4A:E1:DB:93:0A:20:57:0F:B5:56:15:8B:74:0D:D0:FB:35:D5:DC:2F
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0185ECF232A737412CA82E1375858BB63241
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SuHbkwogVw-1VhWLdA3Q-zXV3C8.roa
Signing time: Thu 26 Jan 2023 07:19:33 +0000
ROA not before: Thu 26 Jan 2023 07:19:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209408
IP address blocks: 45.66.224.0/22 maxlen: 22
81.29.149.0/24 maxlen: 24
2a09:6c40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 06 Feb 2023 08:59:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ec:f2:32:a7:37:41:2c:a8:2e:13:75:85:8b:b6:32:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 26 07:19:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ae1db930a20570fb556158b740dd0fb35d5dc2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fb:b9:d0:9b:64:e6:59:18:fa:eb:de:20:76:
fe:9b:b7:92:7d:4c:75:db:fb:47:a8:36:f0:03:e4:
16:b3:a4:df:46:95:57:0f:45:eb:47:53:3b:c4:41:
0c:e9:c8:64:f4:15:91:8e:ac:ef:87:3d:2a:48:71:
b6:75:78:03:b4:ee:eb:07:17:d5:78:2a:25:47:3e:
6b:5b:94:63:c0:ba:45:70:cb:29:03:dc:f0:ee:7e:
03:47:81:f9:a2:f3:89:10:f7:a2:96:26:8b:b0:f0:
df:84:bf:49:d1:52:10:01:c2:ca:23:f3:89:18:b6:
16:67:dd:43:dc:69:e8:3a:0a:58:19:57:2e:4f:22:
6c:a6:36:d0:ed:de:6e:49:65:59:a0:56:fe:a5:6e:
cc:ed:82:84:00:e0:57:a6:28:3c:aa:20:d3:9a:e6:
70:b1:f4:c2:0a:05:9f:49:69:3a:fa:a8:92:09:fe:
ce:de:62:e7:f0:fc:4f:53:de:f9:a4:27:e7:21:e2:
b7:f1:bc:29:a3:3d:59:4e:59:cd:c7:18:39:72:5b:
bd:1d:b9:64:64:e5:ab:9a:b7:7f:b6:17:8e:f8:1c:
28:09:30:d9:33:b9:a2:25:72:bf:6c:90:2d:9a:74:
c2:01:dd:c7:ae:55:d4:94:ad:f0:cf:34:40:2e:71:
42:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E1:DB:93:0A:20:57:0F:B5:56:15:8B:74:0D:D0:FB:35:D5:DC:2F
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SuHbkwogVw-1VhWLdA3Q-zXV3C8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.224.0/22
81.29.149.0/24
IPv6:
2a09:6c40::/29
Signature Algorithm: sha256WithRSAEncryption
36:e8:3b:be:2f:57:55:d3:19:f3:fb:a7:7f:66:27:20:0a:92:
8f:48:06:4a:6c:7e:d7:00:ae:30:20:7c:89:b4:40:26:47:50:
1c:6d:99:19:57:41:1e:e8:b8:1f:aa:a0:19:cb:ad:e1:d3:21:
c7:d4:fc:b8:fc:a1:7a:c5:f5:1b:3a:4b:62:19:da:49:98:86:
02:c3:9b:3c:8b:31:34:62:b9:e5:d1:78:f2:fc:2a:71:4d:1e:
ba:47:56:f0:d1:95:02:8c:23:3c:c3:dc:78:8f:d9:c4:7b:8e:
94:cc:0b:d6:26:f7:62:2e:7e:a7:f7:35:78:bd:98:bf:a7:01:
38:78:d9:e3:f9:ca:9f:10:42:20:29:4f:e9:9b:6a:dc:91:16:
4b:d2:13:19:a0:f3:63:c7:bd:7d:70:d6:98:4d:26:08:52:72:
61:51:fb:84:79:42:ad:cc:6e:aa:1f:3c:5b:28:6e:b3:33:09:
91:31:66:34:28:ca:ee:b3:eb:7a:f1:b1:1d:fb:3e:ec:c4:3b:
23:4a:86:34:61:56:0a:b9:f5:73:7a:f3:7b:af:80:f8:ed:99:
5a:b1:31:1f:01:eb:8e:2b:38:56:1b:63:7f:8e:bd:e6:46:2c:
15:a2:c3:67:ce:ce:a9:7e:6e:73:5e:4d:18:3f:98:ad:95:9e:
69:ca:27:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:39 2024 by rpki-client on console-fra.rpki-client.org